netbsd/x86 kill all processes shellcode 23 bytes

Exploit for netbsd/x86 platform in category shellcode ================================================ netbsd/x86 kill all processes shellcode 23 bytes ================================================ / netbsd/x86 kill all processes shellcode this shellcode is using syscall number 37 or 0x25 37 S...

McAfee 3.6.0.608 naPolicyManager.dll ActiveX Arbitrary Data Write Vuln

No description provided by source. GOODFELLAS Security Research TEAM http://goodfellas.shellcode.com.ar Greetings to str0ke McAfee, Inc. 3.6.0.608 Policy Manager naPolicyManager.dll Arbitrary Data Write ============================================================================== Internal ID:...

McAfee 3.6.0.608 - naPolicyManager.dll ActiveX Arbitrary Data Write

McAfee 3.6.0.608 - naPolicyManager.dll ActiveX Arbitrary Data Write GOODFELLAS Security Research TEAM http://goodfellas.shellcode.com.ar Greetings to str0ke McAfee, Inc. 3.6.0.608 Policy Manager naPolicyManager.dll Arbitrary Data Write...

McAfee 3.6.0.608 Active-X Data Write

GOODFELLAS Security Research TEAM http://goodfellas.shellcode.com.ar Greetings to str0ke McAfee, Inc. 3.6.0.608 Policy Manager naPolicyManager.dll Arbitrary Data Write ============================================================================== Internal ID: VULWAR20090616. -----------...

McAfee 3.6.0.608 - 'naPolicyManager.dll' ActiveX Arbitrary Data Write

GOODFELLAS Security Research TEAM http://goodfellas.shellcode.com.ar Greetings to str0ke McAfee, Inc. 3.6.0.608 Policy Manager naPolicyManager.dll Arbitrary Data Write ============================================================================== Internal ID: VULWAR20090616. -----------...

kernel: 'kill sig -1' must only apply to caller's pid namespace

The killsomethinginfo function in kernel/signal.c in the Linux kernel before 2.6.28 does not consider PID namespaces when processing signals directed to PID -1, which allows local users to bypass the intended namespace isolation, and send arbitrary signals to all processes in all namespaces, via ...

kernel: exit_notify: kill the wrong capable(CAP_KILL) check

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

kernel: exit_notify: kill the wrong capable(CAP_KILL) check

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

Secunia Research: Garmin Communicator Plug-In Domain Locking Security Bypass

====================================================================== Secunia Research 07/05/2009 - Garmin Communicator Plug-In Domain Locking Security Bypass - ====================================================================== Table of Contents Affected...

Symantec Norton Ghost Symantec.EasySetup.1 ActiveX控件拒绝服务漏洞

BUGTRAQ ID: 34696 CVECAN ID: CVE-2009-1517 Symantec Norton Ghost是一个备份恢复系统，允许用户将系统恢复到之前的快照状态。 Norton Ghost的EasySetup安装向导的EasySetupInt.dll库提供了名为Symantec.EasySetup.1的ActiveX控件，该控件没有正确地验证对GetBackupLocationPath、CallUninstall、SetupDeleteVolume、...

kernel: exit_notify: kill the wrong capable(CAP_KILL) check

The exitnotify function in kernel/exit.c in the Linux kernel before 2.6.30-rc1 does not restrict exit signals when the CAPKILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exitsignal field and then uses an exec system...

Microsoft Whale Intelligent Application Gateway Whale Client Components ActiveX control stack buffer overflows

Overview The Microsoft Whale Intelligent Application Gateway Whale Client Components ActiveX control contains multiple stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Whale Communications Intelligent...

IntraLaunch ActiveX控件多个方式不安全调用漏洞

BUGTRAQ ID: 34395 CVECAN ID: CVE-2009-0218 IntraLaunch ActiveX控件允许网页链接本地或跨网络执行Word或PDF等文档所关联的应用程序。 IntraLaunch ActiveX控件（由IntraLaunch.ocx提供）没有限定到特定的域或Internet Explorer区，这允许任何站点都可以在安装了该控件的系统上通过调用该控件导致运行任意代码。 Particle Software IntraLaunch Particle Software -----------------...

Particle Software IntraLaunch Application Launcher ActiveX control fails to restrict access to dangerous methods

Overview The Particle Software IntraLaunch Application Launcher ActiveX control allows arbitrary code execution. Description Particle Software IntraLaunch is an ActiveX control that "... allows web page links to execute anything from applications to associations such as Word or Acrobat PDF...

SAP AG WebViewer3D ActiveX控件栈溢出漏洞

BUGTRAQ ID: 34310 CVECAN ID: CVE-2007-4475,CVE-2009-1205 SAPgui是SAP软件的图形用户界面客户端。 SAPgui提供了一个名为EAI WebViewer3D的ActiveX控件（webviewer3d.dll），该控件没有正确地验证对 SaveViewToSessionFile方式所传送的参数。如果用户受骗访问了恶意网页并向该方式传送了超长参数的话，就可以触发栈溢出，导致执行任意代码。 SAP Sapgui 7.10 Patch Level 8 临时解决方法： 在IE中禁用EAI WebViewer3D...

kernel security and bug fix update

2.6.18-128.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...

Symantec AppStream Client LaunchObj ActiveX Control installAppMgr vulnerability

Added: 03/31/2009 CVE: CVE-2008-4388 BID: 33247 OSVDB: 51410 Background Symantec AppStream is an application deployment framework. Problem The LaunchObj ActiveX control exposes the installAppMgr method, which can be used to download and execute arbitrary code. This could allow command execution...

Symantec AppStream Client LaunchObj ActiveX Control installAppMgr vulnerability

Added: 03/31/2009 CVE: CVE-2008-4388 BID: 33247 OSVDB: 51410 Background Symantec AppStream is an application deployment framework. Problem The LaunchObj ActiveX control exposes the installAppMgr method, which can be used to download and execute arbitrary code. This could allow command execution...

GeoVision LiveAudio ActiveX控件GetAudioPlayingTime()方式代码执行漏洞

BUGTRAQ ID: 34115 GeoVision LiveAudio ActiveX控件是GeoVision监控软件中用于同步音频的工具。 GeoVision LiveAudio ActiveX控件（CLSID：814A3C52-B6F7-4AEA-A9BC-7849B9B0ECA8，Progid：LIVEAUDIO.LiveAudioCtrl.1）没有正确地验证对GetAudioPlayingTime方式所提供的输入参数。如果用户受骗访问了恶意网页的话，就可能导致访问已经释放的内存。成功利用这个漏洞的攻击者可以在用户系统上执行任意代码。 GeoVision LiveAudio...

Analyze page Trojan how to encrypt code to evade kill-vulnerability warning-the black bar safety net

As the web hang horse popular, the virus also began to keep tabs on various web hang horse way, this let many hackers very annoyed. But hackers soon found a coping method, this method iswill hang horse web page code to be encrypted, disrupting the original code looks like, let the antivirus...