Metasploit Libnotify Arbitrary Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Metasploit Libnotify Plugin Arbitrary Command Execution', 'Description' = %q This module exploits a shell command injection vulnerability in the...

Metasploit Libnotify Plugin Arbitrary Command Execution

This module exploits a shell command injection vulnerability in the libnotify plugin. This vulnerability affects Metasploit versions 5.0.79 and earlier. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

CVE-2020-7350

Rapid7 Metasploit Framework versions before 5.0.85 suffers from an instance of CWE-78: OS Command Injection, wherein the libnotify plugin accepts untrusted user-supplied data via a remote computer’s hostname or service name. An attacker can create a specially-crafted hostname or service name to b...

CVE-2013-7381

libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify...

Code injection

libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify...

UBUNTU-CVE-2013-7381

libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify...

CVE-2013-7381

libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify...

CVE-2013-7381

libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify...

CVE-2013-7381

CVE-2013-7381 affects libnotify before 1.0.4 when used with Node.js. The root cause is input passed to libnotify.notify allowing shell/command injection, enabling remote command execution. Affected component: libnotify (Node.js binding), version pre-1.0.4. Impact per sources: potential arbitrary ...

CVE-2013-7381

libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify...

[SECURITY] Fedora 30 Update: libnotify-0.7.8-2.fc30

libnotify is a library for sending desktop notifications to a notification daemon, as defined in the freedesktop.org Desktop Notifications spec. These notifications can be used to inform the user about an event or display some form of information without getting in the user's way...

Tyton - Linux Kernel-Mode Rootkit Hunter for 4.4.0-31+

Linux Kernel-Mode Rootkit Hunter for 4.4.0-31+. For more information, visit Tyton's website. Detected Attacks Hidden Modules Syscall Table Hooking Network Protocol Hooking Netfilter Hooking Zeroed Process Inodes Process Fops Hooking Interrupt Descriptor Table Hooking Additional Features...

Kernel-Mode Rootkit Hunter: Tyton

Loadable kernel modules, LKMs for short, are an integral companion to the Linux kernel. Typically, LKMs are used to add support for new hardware as device drivers or file systems or add additional system calls. Without LKMs, an operating system would have to include all possible anticipated...

Potential Command Injection

Overview Versions 1.0.3 and earlier of libnotify are affected by a shell command injection vulnerability. This may result in execution of arbitrary shell commands, if user input is passed into libnotify.notify. Untrusted input passed in the call to libnotify.notify could result in execution of...

CVE-2014-4381

Libnotify in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code as root via a crafted application...

Design/Logic Flaw

Libnotify in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code as root via a crafted application...

CVE-2014-4381

Libnotify in Apple iOS before 8 and Apple TV before 7 lacks proper bounds checking on write operations, which allows attackers to execute arbitrary code as root via a crafted application...

CVE-2014-4381

CVE-2014-4381 (Libnotify) affects Apple TV 3rd generation and later (before TV OS 7). The vulnerability is an out-of-bounds write in Libnotify, enabling a crafted application to execute arbitrary code with root privileges. Public docs mention this CVE among Apple TV 7 updates; remediation is to i...

[SECURITY] Fedora 11 Update: mumbles-0.4-11.fc11

Mumbles is a plugin driven, DBus based notification system written for the Gnome desktop. Similar to libnotify notifications and Growl for OSX, mumbles aims to provide a modern notification system for the GNU/Linux Desktop...

[SECURITY] Fedora 10 Update: mumbles-0.4-9.fc10

Mumbles is a plugin driven, DBus based notification system written for the Gnome desktop. Similar to libnotify notifications and Growl for OSX, mumbles aims to provide a modern notification system for the GNU/Linux Desktop...