17002 matches found
CVE-2006-7254
The nscd daemon in the GNU C Library glibc before version 2.5 does not close incoming client sockets if they cannot be handled by the daemon, allowing local users to carry out a denial of service attack on the daemon...
CVE-2005-3590
The getgrouplist function in the GNU C library glibc before version 2.3.5, when invoked with a zero argument, writes to the passed pointer even if the specified array size is zero, leading to a buffer overflow and potentially allowing attackers to corrupt memory...
CVE-2006-7254
The CVE concerns the nscd daemon in the GNU C Library (glibc) prior to 2.5. The vulnerability arises because nscd does not close incoming client sockets that it cannot handle, enabling local users to perform a denial of service against the daemon. Affected component: nscd within glibc (before 2.5...
CVE-2005-3590
The getgrouplist function in the GNU C library glibc before version 2.3.5, when invoked with a zero argument, writes to the passed pointer even if the specified array size is zero, leading to a buffer overflow and potentially allowing attackers to corrupt memory...
[SECURITY] Fedora 28 Update: wget-1.20.3-1.fc28
GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...
[SECURITY] Fedora 30 Update: wget-1.20.3-1.fc30
GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...
Linux/x64 - XANAX Encoder Shellcode (127 bytes)
Linux/x64 - XANAX Encoder Shellcode 127 bytes ; Date: 08/04/2019 ; XANAX Encoder ; Author: Alan Vivona ; Description: Uses xor-add-not-add-xor sequence with a 4 byte key and writes the encoded version to stdout ; Tested on: x86-x64 GNU/Linux global start segment .data keys.xor1 equ 0x29 keys.add1...
Fedora Update for kernel-tools FEDORA-2019-65c6d11eba
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Apache 2.4.17 2.4.38 - apache2ctl graceful logrotate Local Privilege Escalation
Apache 2.4.17 2.4.38 - apache2ctl graceful logrotate Local Privilege Escalation ?php CARPE DIEM: CVE-2019-0211 Apache Root Privilege Escalation Charles Fol @cfreal 2019-04-08 INFOS https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html USAGE 1. Upload exploit to Apache HTTP serv...
CARPE (DIEM) Apache 2.4.x Local Privilege Escalation
?php CARPE DIEM: CVE-2019-0211 Apache Root Privilege Escalation Charles Fol @cfreal 2019-04-08 INFOS https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html USAGE 1. Upload exploit to Apache HTTP server 2. Send request to page 3. Await 6:25AM for logrotate to restart Apache 4...
Apache 2.4.17 < 2.4.38 - 'apache2ctl graceful' 'logrotate' Local Privilege Escalation
?php CARPE DIEM: CVE-2019-0211 Apache Root Privilege Escalation Charles Fol @cfreal 2019-04-08 INFOS https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html USAGE 1. Upload exploit to Apache HTTP server 2. Send request to page 3. Await 6:25AM for logrotate to restart Apache 4...
Pyrit - The Famous WPA Precomputed Cracker
Pyrit allows you to create massive databases of pre-computed WPA/WPA2-PSK authentication phase in a space-time-tradeoff. By using the computational power of Multi-Core CPUs and other platforms through ATI-Stream,Nvidia CUDA and OpenCL, it is currently by far the most powerful attack against one o...
The vulnerability of the `load_specificdebug_section` function in the GNU Binutils, related to integer overflow, allows a attacker to cause a service failure.
The vulnerability of the loadspecificdebugsection function in objdump.c within the GNU Binutils package is related to integer overflow, which can lead to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the processmetadata function in the GNU Libextractor library, related to reading beyond the memory boundaries, allows attackers to cause service failures or disclose protected information.
The vulnerability of the processmetadata function in the GNU Libextractor library is related to the issue of reading beyond the memory boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures or expose protected information...
The vulnerability of the processmetadata function in the GNU Libextractor library is related to the pointer manipulation during the processing of OLE files. This allows an attacker to trigger a service failure or disclose protected information using a specially created OLE file.
The vulnerability of the processmetadata function in the GNU Libextractor library is related to the assignment of a null pointer during the processing of OLE files. Exploiting this vulnerability could allow an attacker to cause service failures or reveal memory contents using a specially crafted...
The vulnerability of the elf_link_add_object_symbols function in the GNU Binutils, related to the pointer manipulation involving NULL, allows a malicious actor to trigger a denial-of-service attack.
The vulnerability of the elflinkaddobjectsymbols function elflink.c in the BFD library, which is part of the GNU Binutils, relates to the dereferencing of the NULL pointer for ETDYN files without a program header. Exploitation of this vulnerability could allow an attacker to cause a service failu...
The vulnerability in the elfcomm.c file of the GNU Binutils, related to memory access after its release, allows a hacker to cause a service failure.
The vulnerability in the elfcomm.c file of the GNU Binutils relates to memory access after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...
EulerOS Virtualization 2.5.3 : tar (EulerOS-SA-2019-1262)
According to the version of the tar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of...
EulerOS 2.0 SP3 : binutils (EulerOS-SA-2019-1278)
According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in processmipsspecific in readelf.c via a malformed MIPS opti...
CVE-2019-5953
Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service DoS or may execute an arbitrary code via unspecified vectors...