kernel: soft lockup occurs when network load is very high

The qdiscrun function in net/sched/schgeneric.c in the Linux kernel before 2.6.25 on SMP machines allows local users to cause a denial of service soft lockup by sending a large amount of network traffic, as demonstrated by multiple simultaneous invocations of the Netperf benchmark application in...

Mailist 3.0 - Insecure Backup / Local File Inclusion

Mailist 3.0 Insecure Backup/Local File Inclusion + Discovered By SirGod + www.mortal-team.org + www.h4cky0u.org + www.hellzone.info + www.anti-intruders.org + Homepage : http://ninjadesigns.co.uk/ + Download : http://ninjadesigns.co.uk/enter/mailist.zip + Insecure Backup - Vulnerable code in...

Barracuda Load Balancer - realm Cross-Site Scripting

Barracuda Load Balancer - realm Cross-Site Scripting source: https://www.securityfocus.com/bid/33779/info Barracuda Load Balancer is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary...

Cisco Security Advisory: Cisco Global Site Selector Appliances DNS Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Global Site Selector Appliances DNS Vulnerability Advisory ID: cisco-sa-20090107-gss http://www.cisco.com/warp/public/707/cisco-sa-20090107-gss.shtml Revision 1.0 For Public Release 2009 January 07 1600 UTC GMT -...

Firefox 2 Information stealing via loadBindingDocument

The loadBindingDocument function in Mozilla Firefox 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 does not perform any security checks related to the same-domain policy, which allows remote attackers to read or access data from other domains via crafted XBL...

mysql reads the file in several ways and application-vulnerability warning-the black bar safety net

Today a friend asked me how to in mysql read the file, the I asked, stunned, found himself still guilty of careless: the problem is, therefore, specially checked the mysql manual. The ideas are the same, in the have the file permissions of the premise, to read the file as a string into a table,...

OpenBSD/x86 - setuid(0) + Load Kernel Module (/tmp/o.o) Shellcode (74 bytes)

OpenBSD/x86 - setuid0 + Load Kernel Module /tmp/o.o Shellcode 74 bytes. Shellcode exploit for OpenBSDx86 platform / The modload shellcode setuid0 loads /tmp/o.o module very usefull if you have rootkit as kernel module in the /tmp dir Size 74 bytes OS OpenBSD /rootteam/dev0id rootteam.void.ru...

Linux/x86 - setuid(0) + Load Kernel Module (/tmp/o.o) Shellcode (67 bytes)

Linux/x86 - setuid0 + Load Kernel Module /tmp/o.o Shellcode 67 bytes. Shellcode exploit for Linuxx86 platform / The shellcode sets uid == 0 and loads the kernel module from /tmp/o.o size = 67 bytes OS = Linux i386 written by /rootteam/dev0id rootteam.void.ru [email protected] BITS 32 jmp shor...

Linux Kernel qdisc_run()本地拒绝服务漏洞

BUGTRAQ ID: 32985 CVECAN ID: CVE-2008-5713 Linux Kernel是开放源码操作系统Linux所使用的内核。 在多核（如16核）SMP机器上，如果并发的高流量的网络负载，就会导致内核中出现软锁定。 锁定出现在net/sched/schgeneric.c的84行的qdiscrun函数中。由于驱动持续发送报文并返回NETDEVTXOK，qdiscrun就无法退出qdiscrestart循环。尽管这可以提高吞吐能力，但某些应用程序可能被迟滞大约10秒钟。 Linux kernel 2.6.x Linux -----...

CVE-2008-5698

HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service application crash via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information...

Modify the shellcode XOR encryption of 0day-vulnerability warning-the black bar safety net

Author: 7i As early as the Thunderbolt came out,for the first time this technique,the original code will understand no,this 0day once again,the XOR value is 2 1,now finally decided to self-write a version of PHP,yea yeah yea... A friend asked how to find the XOR value is how much,online have a...

imlib2库load()函数堆溢出漏洞

BUGTRAQ ID: 32371 IMlib2是一个通用的图形加载和渲染库。 IMlib2库的XPM加载器所提供的load函数中存在指针算术错误，如果使用IMlib2库的应用程序加载了恶意的XPM文件的话，就可能触发堆溢出，导致执行任意指令。 Enlightenment Imlib2 1.4.2 Enlightenment ------------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.enlightenment.org/Libraries/Imlib2/...

DNS Lookup Result Comparison

This module can be used to determine differences in the cache entries between two DNS servers. This is primarily useful for detecting cache poisoning attacks, but can also be used to detect geo-location load balancing. This module requires Metasploit: https://metasploit.com/download Current sourc...

Multiple new vulnerabilities in Power Phlogger

Здравствуйте 3APA3A! Сообщаю вам о найденных мною новых Denial of Service, Information Leakage и Cross-Site Scripting уязвимостях в Power Phlogger. DoS: http://site/newaccountself.php Скрипт редиректит сам на себя зацикленный редирект. Что может создать большую нагрузку на сервер. Information...

CVE-2008-2426

Multiple stack-based buffer overflows in Imlib 2 aka imlib2 1.4.0 allow user-assisted remote attackers to cause a denial of service crash or possibly execute arbitrary code via 1 a PNM image with a crafted header, related to the load function in src/modules/loaders/loaderpnm.c; or 2 a crafted XPM...

imlib2 library buffer overflow

Buffer overflow on PNM and XPM files parsing in load function...

Directory traversal

Directory traversal vulnerability in installmod.php in insanevisions OneCMS 2.5 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the load parameter in a go action...

Cisco Security Advisory: Cisco Content Switching Module Memory Leak Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Content Switching Module Memory Leak Vulnerability Advisory ID: cisco-sa-20080514-csm http://www.cisco.com/warp/public/707/cisco-sa-20080514-csm.shtml Revision 1.0 For Public Release 2008 May 14 1600 UTC GMT Summary...

Out of bound write in ImageMagick's XCF coder

The loadtile function in the XCF coder in coders/xcf.c in 1 ImageMagick 6.2.8-0 and 2 GraphicsMagick aka gm 1.1.7 allows user-assisted remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly...

Prozilla Forum Service (forum.php forum) SQL Injection Vulnerability

No description provided by source. --==+================================================================================+==-- --==+ Prozilla Forum Service SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- Discovered By:...