CVE-2014-3684

The tmadopt function in lib/Libifl/tm.c in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager 5.0.x, 4.5.x, 4.2.x, and earlier does not validate that the owner of the process also owns the adopted session id, which allows remote authenticated users to kill arbitrary...

Debian DSA-3058-1 : torque - security update

Chad Vizino reported a vulnerability in torque, a PBS-derived batch processing queueing system. A non-root user could exploit the flaw in the tmadopt library call to kill any process, including root-owned ones on any node in a job. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

[SECURITY] [DLA 78-1] torque security update

Package : torque Version : 2.4.8+dfsg-9squeeze5 CVE ID : CVE-2014-3684 Chad Vizino reported a vulnerability in torque, a PBS-derived batch processing queueing system. A non-root user could exploit the flaw in the tmadopt library call to kill any process, including root-owned ones on any node in a...

7 Things About Android Lollipop 5.0 You Need To Know

After offering chocolate Kit-Kat, now Google is ready to serve you Lollipops. Google on Wednesday finally revealed the official name of its next version Android L — Android 5.0 Lollipop. The newly released Android 5.0 Lollipop ships with the latest Motorola-made Nexus 6 smartphone and Nexus 9...

Linux/ARM - setuid(0) & kill(-1, SIGKILL) - 28 bytes

No description provided by source. / Title: Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes Kill all processes Date: 2010-06-29 Tested: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan ! Dtabase of shellcodes...

ManTrap 1.6.1 Hidden Process Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1908/info ManTrap is a honeypot intrusion detection system designed to lure attackers into it for analysis. The honeypot is implemented as a chroot'ed Solaris environment, designed to look and feel real to an attacker who...

Glider collectn kill <= 1.0.0.0 - Buffer Overflow (PoC)

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h...

Joomla com_facebook - SQL Injection

No description provided by source. Joomla Component comfacebook SQL injection vulnerability - id Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : September 22, 2009 //////\ ///////\ //////\ //////\ //////\ -=- KILL-9 CREW -=-...

KingView 6.53 - ActiveX Remote File Creation / Overwrite (KChartXY)

No description provided by source. !-- KingView ActiveX Control KChartXY Remote File Creation / Overwrite Vendor: http://www.wellintech.com Version: KingView 6.53 Tested on: Windows XP SP3 / IE Download: http://www.wellintech.com/documents/KingView6.53EN.zip Author: Blake CLSID:...

WS_FTP Server <= 5.03 (RNFR) Buffer Overflow Exploit

No description provided by source. ===== Start WSFTPOverflow.pl ===== Usage: WSFTPOverflow.pl ip ftp user ftp pass WSFTPOverflow.pl 127.0.0.1 hello moto WSFTP Server Version 5.03, 2004.10.14 Download: http://www.ipswitch.com/ use IO::Socket; use strict; my$socket = ; if $socket =...

McKesson ActiveX File/Environmental Variable Enumeration

No description provided by source. html !-- McKesson ActiveX File/Environmental Variable Enumeration Vendor: McKesson Version: 11.0.10.38 Tested on: Windows XP SP3 / IE Download: N/A Author: Blake Additional Details: This activex control is packaged with the Horizon Rad Station software used by...

PhpMyDesktop/Arcade 1.0 Final - (phpdns_basedir) RFI Vulnerability

No description provided by source. Name : PhpMyDesktop|arcade 1.0 Final phpdnsbasedir Remote File Include Download From : http://mesh.dl.sourceforge.net/sourceforge/pmd-arcade/pmdarcade10final.zip Found By : RoMaNcYxHaCkEr Home Page : Not Yet : Google Dork : Powered by phpMyDesktop|arcade v1.0...

Intel Developing RFID Tracking and Remote Controlled 'Kill Switch' for Laptops

Kill Switch - the ability to render devices non-operational to prevent theft - has become a hot topic nowadays. The ability to remotely destroy data of the device lost or stolen has been available for quite some time now, but Kill switch not only remotely destroy the devices’ data but also the...

Google, Microsoft to Implement Mobile 'Kill Switch'

Google and Microsoft will incorporate remote kill switch features into the default builds of their respective mobile operating systems for the first time. Oddly enough, the announcement comes in a joint press release issued by New York Attorney General, Eric Schneiderman, and San Francisco Distri...

DLA-0007-1 linux-2.6 - security update

Bulletin has no description...

74cms the latest through the kill injection vulnerability-vulnerability warning-the black bar safety net

A iconv raised pork The tested website didn't fill it. ! the md5 solution does not open, but can be used to proof a variety of information, you know. exp:http://demo. 74cms. com/plus/ajaxcommon. php? act=hotword&query=%E9%8C%A6%27union+/!...

Target Kill Chain Analysis

Last week, I talked with Wall Street Journal reporter Ben DiPietro about the persistent communications gap between the data center and the board room when it comes to recognizing and tackling security threats: In almost every breach situation after his company completes a forensic analysis, Mr...

Ubuntu 12.10 : linux vulnerabilities (USN-2138-1)

Mathy Vanhoef discovered an error in the the way the ath9k driver was handling the BSSID masking. A remote attacker could exploit this error to discover the original MAC address after a spoofing atack. CVE-2013-4579 Andrew Honig reported a flaw in the Linux Kernel's kvmvmioctlcreatevcpu function ...

MariaDB Server 5.5.x < 5.5.36 Remote Multiple Denial of Service Vulnerabilities

Binary data 8132.prm...

Mandriva Linux Security Advisory : kernel (MDVSA-2014:038)

Multiple vulnerabilities has been found and corrected in the Linux kernel : The compatsysrecvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIGX86X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter...