1165 matches found
McKesson ActiveX File/Environmental Variable Enumeration
No description provided by source. html !-- McKesson ActiveX File/Environmental Variable Enumeration Vendor: McKesson Version: 11.0.10.38 Tested on: Windows XP SP3 / IE Download: N/A Author: Blake Additional Details: This activex control is packaged with the Horizon Rad Station software used by...
Glider collectn kill <= 1.0.0.0 - Buffer Overflow (PoC)
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h...
Linux/ARM - setuid(0) & kill(-1, SIGKILL) - 28 bytes
No description provided by source. / Title: Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes Kill all processes Date: 2010-06-29 Tested: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan ! Dtabase of shellcodes...
Joomla com_facebook - SQL Injection
No description provided by source. Joomla Component comfacebook SQL injection vulnerability - id Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : September 22, 2009 //////\ ///////\ //////\ //////\ //////\ -=- KILL-9 CREW -=-...
Intel Developing RFID Tracking and Remote Controlled 'Kill Switch' for Laptops
Kill Switch - the ability to render devices non-operational to prevent theft - has become a hot topic nowadays. The ability to remotely destroy data of the device lost or stolen has been available for quite some time now, but Kill switch not only remotely destroy the devices’ data but also the...
Google, Microsoft to Implement Mobile 'Kill Switch'
Google and Microsoft will incorporate remote kill switch features into the default builds of their respective mobile operating systems for the first time. Oddly enough, the announcement comes in a joint press release issued by New York Attorney General, Eric Schneiderman, and San Francisco Distri...
DLA-0007-1 linux-2.6 - security update
Bulletin has no description...
74cms the latest through the kill injection vulnerability-vulnerability warning-the black bar safety net
A iconv raised pork The tested website didn't fill it. ! the md5 solution does not open, but can be used to proof a variety of information, you know. exp:http://demo. 74cms. com/plus/ajaxcommon. php? act=hotword&query=%E9%8C%A6%27union+/!...
Target Kill Chain Analysis
Last week, I talked with Wall Street Journal reporter Ben DiPietro about the persistent communications gap between the data center and the board room when it comes to recognizing and tackling security threats: In almost every breach situation after his company completes a forensic analysis, Mr...
Ubuntu 12.10 : linux vulnerabilities (USN-2138-1)
Mathy Vanhoef discovered an error in the the way the ath9k driver was handling the BSSID masking. A remote attacker could exploit this error to discover the original MAC address after a spoofing atack. CVE-2013-4579 Andrew Honig reported a flaw in the Linux Kernel's kvmvmioctlcreatevcpu function ...
MariaDB Server 5.5.x < 5.5.36 Remote Multiple Denial of Service Vulnerabilities
Binary data 8132.prm...
Mandriva Linux Security Advisory : kernel (MDVSA-2014:038)
Multiple vulnerabilities has been found and corrected in the Linux kernel : The compatsysrecvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIGX86X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter...
Lorex Technologies Edge Series Security DVR ActiveX Buffer Overflow
The remote Windows host has one or more versions of Lorex Technologies' INetViewX ActiveX control installed. The HTTPPORT parameter in these controls is affected by a buffer overflow vulnerability that could allow an attacker to remotely execute arbitrary code if exploited. C Tenable Network...
MW6 Technologies ActiveX controls contain multiple vulnerabilities
Overview MW6 Technologies' MaxiCode, Aztec, and DataMatrix ActiveX controls contain multiple vulnerabilities. Description MW6 Technologies' MaxiCode, Aztec, and DataMatrix ActiveX controls are used for processing barcodes. The ActiveX controls contain multiple vulnerabilities that may lead to...
cmstop through the kill injection vulnerability-vulnerability warning-the black bar safety net
Play for a few months this vulnerability. See the nine zones there ztz large cattle released out exp. 漏洞 文件 /apps/vote/controller/vote.php app.xxx.com/?app=vote&controller=vote&action=total&contentid=1 To obtain an administrator id ? app=vote&controller=vote&action=total&contentid=1 and 1=2 union...
UBUNTU-CVE-2013-4255
The policy definition evaluator in Condor 7.5.4, 8.0.0, and earlier does not properly handle attributes in a 1 PREEMPT, 2 SUSPEND, 3 CONTINUE, 4 WANTVACATE, or 5 KILL policy that evaluate to an Unconfigured, Undefined, or Error state, which allows remote authenticated users to cause a denial of...
NASDAQ Patches Reported XSS Vulnerability
A NASDAQ representative confirmed this morning that a cross-site scripting vulnerability on the exchange’s website discovered by an ethical hacker has been patched. The issue was reported on Sept. 2 by Ilia Kolochenko, chief executive of High-Tech Bridge, a Swiss penetration testing company...
CVE-2013-4277
Svnserve in Apache Subversion 1.4.0 through 1.7.12 and 1.8.0 through 1.8.1 allows local users to overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option...
Design/Logic Flaw
Svnserve in Apache Subversion 1.4.0 through 1.7.12 and 1.8.0 through 1.8.1 allows local users to overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option...
CVE-2013-4277
CVE-2013-4277 affects Svnserve in Apache Subversion; affected versions are 1.4.0–1.7.12 and 1.8.0–1.8.1. Local users can overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option. Root cause: symlink race on pid-file handling. Impact...