Sun xVM VirtualBox 2.0/2.1 - Local Privilege Escalation

source: https://www.securityfocus.com/bid/34080/info Sun xVM VirtualBox is prone to a local privilege-escalation vulnerability. An attacker can exploit this vulnerability to run arbitrary code with superuser privileges. The following versions for the Linux platform are vulnerable: Sun xVM...

Race condition

Niels Provos Systrace 1.6f and earlier on the x8664 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes...

CVE-2009-0343

Niels Provos Systrace 1.6f and earlier on the x8664 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes...

Linux/x86-64 - Bind TCP (Random TCP Port) Shell + Null-Free Shellcode (57 bytes)

Linux/x86-64 - Bind TCP Random TCP Port Shell + Null-Free Shellcode 57 bytes. Shellcode exploit for Linuxx86-64 platform / Shell Bind TCP Random Port Shellcode - C Language - Linux/x8664 Copyright C 2013 Geyslan G. Bem, Hacking bits http://hackingbits.com [email protected] This program is free...

Stack overflow

Stack-based buffer overflow in the DtbClsLogin function in Yosemite Backup 8.7 allows remote attackers to 1 execute arbitrary code on a Linux platform, related to libytlindtb.so; or 2 cause a denial of service application crash and possibly execute arbitrary code on a Windows platform, related to...

CVE-2008-5177

Stack-based buffer overflow in the DtbClsLogin function in Yosemite Backup 8.7 allows remote attackers to 1 execute arbitrary code on a Linux platform, related to libytlindtb.so; or 2 cause a denial of service application crash and possibly execute arbitrary code on a Windows platform, related to...

Linux Command Shell, Find Port Inline

Spawn a shell on an established connection This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 171 include Msf::Payload::Single include Msf::Payload::Linux::Ppc::Prepends include...

Critical: Red Hat Security Advisory: flash-plugin security update

An updated Adobe Flash Player package that fixes several security issues is now available for Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. Updated 18th November 2008 The erratum has been updated to...

eCryptfs工具ecryptfs-setup-private口令泄露漏洞

BUGTRAQ ID: 31906 eCryptfs是Linux平台下的企业级加密文件系统。 eCryptfs工具的ecryptfs-setup-private程序在通过命令行调用ecryptfs-wrap-passphrase和ecryptfs-add-passphrase程序时，命令行参数包含有用户的已有登录口令和新创建的口令。本地攻击者可以在进程表中查看到这些口令。 eCryptfs eCryptfs -------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://ecryptfs.sourceforge.net/...

Intel Centrino ipw2200BG Wireless Driver Remote BOF Exploit (meta)

Exploit for unknown platform in category remote exploits ================================================================== Intel Centrino ipw2200BG Wireless Driver Remote BOF Exploit meta ================================================================== This file is part of the Metasploit...

lrcf-inject.txt

-=--------------------ADVISORY-------------------=- Link Request Contact Form v3.4 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: Link Request Contact Form -=+ Version: 3.4 -=+ Vendor's URL:...

smefilemailer-sql.txt

-=--------------------ADVISORY-------------------=- SmE FileMailer 1.21 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: SmE FileMailer -=+ Version: 1.21 -=+ Vendor's URL: http://www.scriptme.com/down/13 -=+ Platform: Windows\Linux\Unix -=+ Bu...

flog112-disclose.txt

-=--------------------ADVISORY-------------------=- FLog 1.1.2 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: FLog -=+ Version: 1.1.2 -=+ Vendor's URL: http://www.fluffington.com/index.php?page=flog -=+ Platform: Windows\Linux\Unix -=+ Bug...

logahead UNU edition 1.0 - Arbitrary File Upload Code Execution

logahead UNU edition 1.0 - Arbitrary File Upload Code Execution -=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's UR...

Broadcom Wireless Driver Probe Response SSID Overflow Exploit (meta)

No description provided by source. require 'msf/core' module Msf class Exploits::Windows::Driver::BroadcomWiFiSSID Msf::Exploit::Remote include Exploit::Lorcon include Exploit::KernelMode def initializeinfo = superupdateinfoinfo, 'Name' = 'Broadcom Wireless Driver Probe Response SSID Overflow',...

D-Link DWL-G132 Wireless Driver Beacon Rates Overflow Expl (meta)

Exploit for unknown platform in category remote exploits ==================================================================== D-Link DWL-G132 Wireless Driver Beacon Rates Overflow Exploit meta ==================================================================== require 'msf/core' module Msf class...

Broadcom Wireless Driver - Probe Response SSID Overflow (Metasploit)

Broadcom Wireless Driver - Probe Response SSID Overflow Metasploit $Id: broadcomwifissid.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more...

Isode M-Vault Server 11.3 - LDAP Memory Corruption

source: https://www.securityfocus.com/bid/16635/info Isode M-Vault Server is prone to a memory corruption. This issue may be triggered by malformed LDAP data. The exact impact of this vulnerability is not known at this time. Although the issue is known to crash the server, the possibility of remo...

IBM Tivoli Directory Server 6.0 - LDAP Memory Corruption

source: https://www.securityfocus.com/bid/16593/info IBM Tivoli Directory Server is prone to an unspecified memory corruption. This issue may be triggered by malformed LDAP data. The exact impact of this vulnerability is not known at this time. Although the issue is known to crash the server, the...

RX250305 - OpenMosixView : Multiple Race conditions - advisory and exploit

/ | | // / / / / | | / | / | |/ //|| / / research / . | REXOTECdotCOM | |=------= ADV RX250305 - OpenMosixView : Multiple Race conditions ------=| | | |=--- - INFORMATION ---------------------------------------------------------------------| VulnDiscovery: 2004/12/21 Release Date : 2005/03/25...