Juniper Networks Junos OS RDP Crash Vulnerability

RDP crash when receiving BGP UPDATE with malformed inetflow prefix. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos...

openSUSE Security Update : kernel (openSUSE-SU-2014:0678-1)

This Linux kernel security update fixes various security issues and bugs. The Linux Kernel was updated to fix various security issues and bugs. Main security issues fixed : A security issue in the tty layer that was fixed that could be used by local attackers for code execution CVE-2014-0196. Two...

kernel: net: inet frag code race condition leading to user-after-free

Race condition in the inetfragintern function in net/ipv4/inetfragment.c in the Linux kernel through 3.13.6 allows remote attackers to cause a denial of service use-after-free error or possibly have unspecified other impact via a large series of fragmented ICMP Echo Request packets to a system wi...

kernel: security and bugfix update (important)

This Linux kernel security update fixes various security issues and bugs. The Linux Kernel was updated to fix various security issues and bugs. Main security issues fixed: A security issue in the tty layer that was fixed that could be used by local attackers for code execution CVE-2014-0196. Two...

HP Laser Jet - JavaScript Persistent XSS via PJL Directory Traversal

Exploit for hardware platform in category web applications !/usr/bin/perl use strict; use warnings; use IO::Socket::INET; my $host = $ARGV0; Exploit Title: HP Laser Jet Persistent Javascript Cross Site Scripting via PJL Google Dork: n/a Date: 4/22/14 Exploit Author: @0x00string Vendor Homepage:...

Symantec Endpoint Protection Manager 12.1.x - Overflow (SEH) (PoC)

Symantec Endpoint Protection Manager 12.1.x - Overflow SEH PoC Exploit-DB Mirror: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/33056-sepm-secars-poc-v0.3.tar.gz !/usr/bin/perl -w Exploit Title: Symantec Endpoint Protection Manager 12.1.x - SEH Overflow POC...

HP Laser Jet - JavaScript Persistent Cross-Site Scripting via PJL Directory Traversal

HP Laser Jet - JavaScript Persistent Cross-Site Scripting via PJL Directory Traversal !/usr/bin/perl use strict; use warnings; use IO::Socket::INET; my $host = $ARGV0; Exploit Title: HP Laser Jet Persistent Javascript Cross Site Scripting via PJL Google Dork: n/a Date: 4/22/14 Exploit Author:...

HP-UX rlpdaemon Local .rhosts Append

!/opt/perl5/bin/perl -w HP-UX rlpdaemon local exploit Bulletin HPSBUX0111-176 November 2001 For use only on machines where you have legitimate root. This attempts to add junk including "localhost +" to /.rhosts. Obvious variants could include /etc/passwd. use IO::Socket; $PORT = 9000; pick...

FreePBX 2.11.0 - Remote Command Execution

FreePBX 2.11.0 - Remote Command Execution !/usr/bin/perl use strict; use warnings; use IO::Socket::INET; Exploit Title: FreePBX 2.9,2.10,2.11,12 Remote Command Execution Google Dork: n/a Date: 2/25/14 Exploit Author: @0x00string Vendor Homepage: http://www.freepbx.org/ Software Link:...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2014-3010)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-3010 advisory. - inet: fix addrlen/msg-msgnamelen assignment in recverror and rxpmtu functions Hannes Frederic Sowa 18247290 CVE-2013-7263 CVE-2013-7265 -...

Unbreakable Enterprise kernel security update

3.8.13-26.1.1.el6uek - inet: fix addrlen/msg-msgnamelen assignment in recverror and rxpmtu functions Hannes Frederic Sowa 18247287 CVE-2013-7263 CVE-2013-7265 - inet: prevent leakage of uninitialized memory to user in recv syscalls Hannes Frederic Sowa 18238377 CVE-2013-7263 CVE-2013-7265 -...

iNET Business Hub SQL Injection

==== Exploit Author:Ʈɦƹ RǿȼƙȿƮƹř ==== Exploit Title: iNET Business Hub SQL injetion Date: 04.02.2014 Email: [email protected] Vendor: http://www.inetbusinesshub.com/ Facebook: Facebook.com/thee.rocksTer Google Dork: inurl:.php?id= intext:Website Designed & Developed by iNET Business Hub Proof...

OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information...

OpenJDK: Inet6Address class IPv6 address processing errors (Libraries, 8015743)

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries...

Debian Security Advisory DSA 2389-1 (linux-2.6 - privilege escalation/denial of service/information leak)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-2183Andrea Righi reported an issue in KSM, a memory-saving de-duplication...

freeFTPd 1.0.10 - 'PASS' Remote Buffer Overflow (SEH)

!/usr/bin/perl freeFTPd 1.0.10 anonymous-auth PASS SEH buffer overflow PoC by Wireghoul - www.justanotherhacker.com Date: 20130820 Tested on: XPSP3 Similar exploits: EDB 23079 1330 1339 Greetz corelan, TecR0C, mrme, jjkakakk if scalar@ARGV != 2 "Usage $0 host port\n"; exit; use IO::Socket::INET;...

AIX 7.1 TL 0 : inet (IV42264)

If an AIX machine has IPv6 address configured, and if a malformed IPv6 packet in a specific format is sent to that machine, the machine can hang while processing that packet. The problem can happen only if an IPv6 address is configured on any of the network interfaces. %NASLMINLEVEL 70300 C Tenab...

AIX 7.1 TL 1 : inet (IV42229)

If an AIX machine has IPv6 address configured, and if a malformed IPv6 packet in a specific format is sent to that machine, the machine can hang while processing that packet. The problem can happen only if an IPv6 address is configured on any of the network interfaces. %NASLMINLEVEL 70300 C Tenab...

OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the...

OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to Networking. NOTE: the...