CVE-2024-5241

A vulnerability was found in Huashi Private Cloud CDN Live Streaming Acceleration Server up to 20240520. It has been classified as critical. Affected is an unknown function of the file /manager/ipconfignew.php. The manipulation of the argument dev leads to os command injection. It is possible to...

📄 ABB Cylon Aspect 3.08.03 Network Manipulation

ABB Cylon Aspect MIX's IPConfigServlet allows unauthenticated network config changes via the Host: 127.0.0.1 bypass, writing to /etc/hosts and config files. Attackers can redirect traffic e.g. localhost to 1.2.3.4 or disrupt connectivity, amplifying impact with network restarts. Version 3.08.03 i...

OneDrive Phishing Scam Tricks Users into Running Malicious PowerShell Script

Cybersecurity researchers are warning about a new phishing campaign that targets Microsoft OneDrive users with the aim of executing a malicious PowerShell script. "This campaign heavily relies on social engineering tactics to deceive users into executing a PowerShell script, thereby compromising...

Magic Hound Exploiting Old Microsoft Exchange ProxyShell Vulnerabilities

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here APT35 aka Magic Hound, an Iranian-backed threat group, has begun using Microsoft Exchange ProxyShell vulnerabilities as an initial attack vector and to execute code through multiple web shells. The group has primarily targeted...

curl (>=0.4.7 <=0.4.8), dns-lookup (>=0.7.0 <=0.8.1) +5 more potentially affected by CVE-2020-35919 +1 more via socket2 (=0.2.4)

socket2 CARGO version =0.2.4 is affected by a known vulnerability. The following packages have a transitive dependency on socket2 and may be impacted: - curl =0.4.7, =0.7.0, =0.3.0, =0.1.0, =0.2.2, =0.2.4 - miow =0.3.0 Source cves: CVE-2020-35919, CVE-2020-35920 Source advisory:...

curl (>=0.4.7 <=0.4.8), dns-lookup (>=0.7.0 <=0.8.1) +5 more potentially affected by CVE-2020-35919 +1 more via socket2 (=0.2.4)

socket2 CARGO version =0.2.4 is affected by a known vulnerability. The following packages have a transitive dependency on socket2 and may be impacted: - curl =0.4.7, =0.7.0, =0.3.0, =0.1.0, =0.2.2, =0.2.4 - miow =0.3.0 Source cves: CVE-2020-35919, CVE-2020-35920 Source advisory:...

CVE-2011-1930

In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote attacker to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DHCP options...

CVE-2011-1930

CVE-2011-1930 affects klibc 1.5.20 and 1.5.21; DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped, enabling a remote attacker to craft a DHCP reply that could execute arbitrary code with the privileges of the process sourcing DHCP options. Multiple advisories (RH, ...

Microsoft Windows DNS Cache Output (Windows SMB Login)

This plugin creates a comma-separated CSV output of the target SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 201309-21

Gentoo Linux Local Security Checks GLSA 201309-21 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

klibc: Command Injection

Background klibc is a minimalistic libc used for making an initramfs. Description The ipconfig utility in klibc writes DHCP options to /tmp/net-$DEVICE.conf, and this file is later sourced by other scripts to get defined variables. The options written to this file are not properly escaped. Impact...

Blade API Monitor Unicode Bypass (Serial Number BOF)

Exploit for windows platform in category local exploits !/usr/bin/python -w --------------------------------------------------------------------------------- Exploit: Blade API Monitor Unicode Bypass Serial Number BOF Author: b33f Ruben Boonen - http://www.fuzzysecurity.com...

Blade API Monitor Unicode Bypass Buffer Overflow

!/usr/bin/python -w --------------------------------------------------------------------------------- Exploit: Blade API Monitor Unicode Bypass Serial Number BOF Author: b33f Ruben Boonen - http://www.fuzzysecurity.com http://www.fuzzysecurity.com/exploits/8.html OS: WinXP PRO SP3 Software:...

HMS HICP Modification / Intellicom NetBiterConfing.exe Stack Overflow

----- More info http://reversemode.com/index.php?option=comcontent&task=view&id=65&Itemid=1 ----- 1st PART "HMS HICP Protocol" AFAIK there is no public documentation about this protocol, if not so please let me know and I'll repeatedly hit myself with a sharpened stick.All the information present...

HMS HICP Protocol + Intellicom - NetBiterConfig.exe Remote Buffer Overflow

HMS HICP Protocol + Intellicom - NetBiterConfig.exe Remote Buffer Overflow More info http://reversemode.com/index.php?option=comcontent&task=view&id=65&Itemid=1 ----- 1st PART "HMS HICP Protocol" AFAIK there is no public documentation about this protocol, if not so please let me know and I'll...

HMS HICP Protocol + Intellicom NetBiterConfig.exe Remote BOF

Exploit for unknown platform in category remote exploits ======================================================================== HMS HICP Protocol + Intellicom NetBiterConfig.exe Remote Buffer Overflow ======================================================================== Title: HMS HICP...

NetWin Surgemail 3.8k4-4 - IMAP (Authenticated) Remote LIST Universal

NetWin Surgemail 3.8k4-4 - IMAP Authenticated Remote LIST Universal !/usr/bin/python NetWin Surgemail 0DAY IMAP POST AUTH Remote LIST Universal Exploit Discovered and coded by Matteo Memelli aka ryujin http://www.gray-world.net http://www.be4mind.com Affected Versions : Version 3.8k4-4 Windows...