271 matches found
Corona iOS Jailbreak Tool Released
A security researcher has released a tool that will untether iPhones and other devices running iOS 5.01, allowing them to run unsigned code. The tool relies on a pair of exploits, one in an iOS binary and another in the kernel, and the jailbreak will survive after a reboot. The tool, called Coron...
Duqu Analysis and Detection Tool by NSS Labs
Duqu Analysis and Detection Tool by NSS Labs NSS Labs has built a new, free tool that detects known and newly created Duqu drivers that have infiltrated systems, thus allowing security experts to further analyze the "functionality, capabilities and ultimate purpose of DuQu.". The Tool is availabl...
Linux Kernel 2.6.37-rc1 - 'serial_multiport_struct' Local Information Leak
/ Linux include include include include include define DEVICE "/dev/ttyS1" int mainint argc, char argv int ret = 0; int i, fd, reservedsize; char buf; struct serialmultiportstruct buffer; printf"\m/ Linux \n", argv0; exit-1; if argc 2 if reservedsize = atoiargv2 == 0 fprintfstderr, " - Sorry: ato...
Linux <= 2.6.37-rc1 serial_multiport_struct Local Info Leak Exploit
Exploit for linux platform in category local exploits / Linux include include include include include define DEVICE "/dev/ttyS1" int mainint argc, char argv int ret = 0; int i, fd, reservedsize; char buf; struct serialmultiportstruct buffer; printf"\m/ Linux \n", argv0; exit-1; if argc 2 if...
Linux kernel-2.6.18-6 x86 Local Root Exploit
No description provided by source. include include include include include include include include define NUMCPUS 8 define ATM "/proc/net/atm/avc" int mainvoid char err, adurit2000; int i, ret, sock, proc; struct atmqos dj; struct sockaddratmsvc addr; sock = socketPFATMSVC, SOCKDGRAM, 0; memset&d...
Linux Kernel 2.6.9-34 Local root Exploit
Exploit for linux platform in category local exploits / ========================================== Linux Kernel 2.6.9-34 Local root Exploit ========================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ ...
Ubuntu 10.04 LTS : linux-mvl-dove vulnerabilities (USN-1162-1)
Brad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. CVE-2010-4243 Alexander Duyck discovered that the Intel Gigabit Ethernet driver...
Linux distributor security list destroyed after hacker compromise !
Hackers have compromised a private e-mail list used by Linux and BSD distributors to share information on embargoed security vulnerabilities and used a backdoor to sniff e-mail traffic, according to the moderator of the list. In a note to "Vendor-Sec" members, moderator Marcus Meissner said he...
DESlock+ <= 4.1.10 vdlptokn.sys Local Kernel ring0 SYSTEM Exploit
Exploit for windows platform in category local exploits / deslock-vdlptokn.c Copyright c 2009 by DESlock+ include include include define VDLPTOKNIOCTL 0x00222010 define DLKFDISKRIOCTL 0x80002008 define DLKFDISKSLOT 0x00000CF8 define ARGSIZEa a/sizeof void / Win2k3 SP1/2 - kernel EPROCESS token...
Linux Kernel (Solaris 10 / < 5.10 138888-01) - Local Privilege Escalation
/ hoagiesolarissiocgtunparam.c LOCAL SOLARIS KERNEL ROOT EXPLOIT ipifill is used for mutex enter so we have to set the offet for an illt structure. Later putnext will be called with a queue see illt. We can use this queue to add a custom callback function that is used by putnext. ipif.c /...
Linux Kernel 2.6.37 - Unix Sockets Local Denial of Service
/ Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to protect : Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to protect : See source attached. Process become in state 'Running' but not killalble via kill...
G Data TotalCare 2011 Local Kernel Exploit
/ Exploit Title: G Data TotalCare 2011 0day Local Kernel Exploit Date: 2010-11-08 Author: Nikita Tarakanov CISS Research Team Software Link: http://www.gdata.de/ Version: up to date, version 21.1.0.5, MiniIcpt.sys version 1.0.8.9 Tested on: Win XP SP3 CVE : CVE-NO-MATCH Status : Unpatched / inclu...
Trend Micro Titanium Maximum Security 2011 0day Local Kernel Exploit
No description provided by source. 1.Description: The tmtdi.sys kernel driver distributed with Trend Micro Titanium Maximum Security 2011 contains a pointer overwrite vulnerability in the handling of IOCTL 0x220404. Exploitation of this issue allows an attacker to execute arbitrary code within th...
Trend Micro Titanium Maximum Security 2011 0day Local Kernel Exploit
Exploit for windows platform in category local exploits ==================================================================== Trend Micro Titanium Maximum Security 2011 0day Local Kernel Exploit ==================================================================== 1.Description: The tmtdi.sys kerne...
Linux RDS Protocol Local Privilege Escalation
Exploit for linux platform in category local exploits ============================================= Linux RDS Protocol Local Privilege Escalation ============================================= / Linux Kernel Copyright 2010 Virtual Security Research, LLC The handling functions for sending and...
FreeBSD Kernel mountnfs() Exploit
No description provided by source. / mountnfsex.c -- Patroklos Argyroudis, argp at domain census-labs.com Local kernel exploit for FreeBSD 8.0, 7.3 and 7.2. Discovered and exploited by Patroklos argp Argyroudis. The vulnerability is in mountnfs which is reachable by the mount2 and nmount2 system...
FreeBSD Kernel nfs_mount() Exploit
No description provided by source. / nfsmountex.c -- Patroklos Argyroudis, argp at domain census-labs.com Local kernel exploit for FreeBSD 8.0, 7.3 and 7.2. FreeBSD 8.0-RELEASE: Local kernel crash/denial-of-service. FreeBSD 7.3/7.2-RELEASE: Local privilege escalation. Discovered and exploited by...
FreeBSD - mountnfs() Denial of Service
FreeBSD - mountnfs Denial of Service / mountnfsex.c -- Patroklos Argyroudis, argp at domain census-labs.com Local kernel exploit for FreeBSD 8.0, 7.3 and 7.2. Discovered and exploited by Patroklos argp Argyroudis. The vulnerability is in mountnfs which is reachable by the mount2 and nmount2 syste...
FreeBSD 8.07.37.2 - nfs_mount() Local Privilege Escalation
FreeBSD 8.07.37.2 - nfsmount Local Privilege Escalation / nfsmountex.c -- Patroklos Argyroudis, argp at domain census-labs.com Local kernel exploit for FreeBSD 8.0, 7.3 and 7.2. FreeBSD 8.0-RELEASE: Local kernel crash/denial-of-service. FreeBSD 7.3/7.2-RELEASE: Local privilege escalation...
FreeBSD - 'mountnfs()' Denial of Service
/ mountnfsex.c -- Patroklos Argyroudis, argp at domain census-labs.com Local kernel exploit for FreeBSD 8.0, 7.3 and 7.2. Discovered and exploited by Patroklos argp Argyroudis. The vulnerability is in mountnfs which is reachable by the mount2 and nmount2 system calls. In order for them to be...