Lucene search
K

137 matches found

exploitpack
exploitpack
added 2017/12/18 12:0 a.m.80 views

GoAhead Web Server 2.5 3.6.5 - HTTPd LD_PRELOAD Remote Code Execution

GoAhead Web Server 2.5 3.6.5 - HTTPd LDPRELOAD Remote Code Execution !/usr/bin/python GoAhead httpd/2.5 to 3.6.5 LDPRELOAD remote code execution exploit EDB Note: Payloads https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/43360.zip EDB Note: Source...

6.8CVSS8.3AI score0.96327EPSS
Exploits15
0day.today
0day.today
added 2017/12/18 12:0 a.m.177 views

GoAhead httpd 2.5 < 3.6.5 - LD_PRELOAD Remote Code Execution Exploit

Exploit for linux platform in category remote exploits !/usr/bin/python GoAhead httpd/2.5 to 3.6.5 LDPRELOAD remote code execution exploit EDB Note: Payloads https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/43360.zip EDB Note: Source...

8.1AI score0.96327EPSS
Exploits15
Prion
Prion
added 2017/09/21 4:29 p.m.10 views

Path traversal

Untrusted search path vulnerability in ProxyChains-NG before 4.9 allows local users to gain privileges via a Trojan horse libproxychains4.so library in the current working directory, which is referenced in the LDPRELOAD path...

7.2CVSS7AI score0.00494EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2017/09/21 4:0 p.m.19 views

CVE-2015-3887

Untrusted search path vulnerability in ProxyChains-NG before 4.9 allows local users to gain privileges via a Trojan horse libproxychains4.so library in the current working directory, which is referenced in the LDPRELOAD path...

7.6AI score0.00494EPSS
Exploits0References6
Cent OS
Cent OS
added 2017/06/20 8:39 a.m.90 views

glibc, nscd security update

CentOS Errata and Security Advisory CESA-2017:1480 An update for glibc is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.8CVSS6.9AI score0.02733EPSS
Exploits14References7
Tenable Nessus
Tenable Nessus
added 2017/06/20 12:0 a.m.26 views

Scientific Linux Security Update : glibc on SL6.x i386/x86_64 (20170619) (Stack Clash)

Security Fixes : - A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory...

7.8CVSS7.1AI score0.02733EPSS
Exploits14References2
RedhatCVE
RedhatCVE
added 2017/06/19 3:18 p.m.54 views

CVE-2017-1000366

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process sta...

7.8CVSS1.4AI score0.05186EPSS
Exploits17References2
Mageia
Mageia
added 2016/08/31 3:32 p.m.73 views

Updated openssh packages fix security vulnerability

The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as...

7.8CVSS7.2AI score0.88944EPSS
Exploits17References4
NVD
NVD
added 2016/05/01 1:59 a.m.25 views

CVE-2015-8325

The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as...

7.8CVSS7.5AI score0.00627EPSS
Exploits0References12
Prion
Prion
added 2016/05/01 1:59 a.m.83 views

Design/Logic Flaw

The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as...

7.2CVSS6.7AI score0.00627EPSS
Exploits0References12Affected Software5
Debian CVE
Debian CVE
added 2016/05/01 12:0 a.m.32 views

CVE-2015-8325

The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as...

7.8CVSS8AI score0.00627EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2016/05/01 12:0 a.m.65 views

CVE-2015-8325

The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as...

7.8CVSS7.7AI score0.00627EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2016/04/30 12:0 a.m.44 views

CVE-2015-8325

The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as...

7.8CVSS7.1AI score0.00627EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2016/02/29 12:0 a.m.26 views

ASAN/SUID Local Root Exploit

!/bin/bash unsanitary.sh - ASAN/SUID Local Root Exploit Exploits er, unsanitized env var passing in ASAN which leads to file clobbering as root when executing setuid root binaries compiled with ASAN. Uses an overwrite of /etc/ld.so.preload to get root on a vulnerable system. Supply your own targe...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/19 12:0 a.m.16 views

Proxychains-ng 'LD_PRELOAD' 任意代码执行漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Sudo <= 1.6.9p18 - (Defaults setenv) Local Privilege Escalation Exploit

No description provided by source. !/bin/sh Sudo = 1.6.9p18 local r00t exploit by Kingcope/2008/www.com-winner.com Most lame exploit EVER! Needs a special configuration in the sudoers file: --- Defaults setenv so environ vars are preserved : --- May also need the current users password to be type...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Common Desktop Environment <= 2.1 20,Solaris <= 7.0 dtspcd Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/636/info This explanation is quoted from the initial post on this problem by Job De Hass. This message is available in its entirety in the 'Credit' section of this vulnerability entry. The CDE subprocess daemon...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2014/02/17 11:35 p.m.32 views

[Azazel] Userland Anti-debugging & Anti-detection Rootkit

Azazel is a userland rootkit based off of the original LDPRELOAD technique from Jynx rootkit. It is more robust and has additional features, and focuses heavily around anti-debugging and anti-detection. Features Anti-debugging Avoids unhide, lsof, ps, ldd detection Hides files and directories Hid...

7.2AI score
Exploits0References1
ThreatPost
ThreatPost
added 2013/08/29 4:4 p.m.9 views

Researchers Reverse Engineer Dropbox

Researchers have cracked open cloud storage service Dropbox, reverse engineering the encryption protecting the client in order to open it up to further security analysis. The engineers, Dhiru Kholia of Openwall and Przemyslaw Wegrzyn of CodePainters, also managed to demonstrate how to use...

1.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.25 views

Mandrake Linux Security Advisory : glibc (MDKSA-2001:012)

The LDPRELOAD variable in the GNU C Library is honoured normally even for SUID/SGID applications but removed afterwards from the environment if it does not contain '/' characters. There is a special check which only preloads found libraries if they have the SUID bit set. However, if a library has...

2.1CVSS5.3AI score0.00861EPSS
Exploits0References1
Rows per page
Query Builder