Linux Kernel ""mremap()""#2 Local Proof-of-concept

No description provided by source. / Proof-of-concept exploit code for domremap 2 Copyright C 2004 Christophe Devine This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either versi...

Linux Kernel "do_mremap" Local Proof of Concept

Exploit for linux platform in category local exploits =============================================== Linux Kernel "domremap" Local Proof of Concept =============================================== / Proof-of-concept exploit code for domremap Copyright C 2004 Christophe Devine and Julien Tinnes Th...

brk_poc.asm

The following program can be used to test if a x86 Linux system is vulnerable to the dobrk exploit; use at your own risk. $ nasm brkpoc.asm -o a.out $ chmod 755 a.out $ uname -a Linux test3 2.4.22-10mdk 1 Thu Sep 18 12:30:58 CEST 2003 i686 unknown unknown GNU/Linux $ ./a.out & 1 1698 $ cat...

CVE-2003-0386

OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address...

DEBIAN-CVE-2003-0386

OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address...

PT-2003-1047 · Openssh +1 · Openssh +1

Name of the Vulnerable Software and Affected Versions: OpenSSH versions 3.6.1 and earlier Description: The issue allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address, when...

MS00-019: Microsoft IIS ISAPI Virtual Directory UNC Mapping ASP Source Disclosure (uncredentialed check)

It is possible to get the source code of the remote ASP scripts which are hosted on a mapped network share by appending '%5c' to the end of the request. ASP source code usually contains sensitive information such as logins and passwords. %NASLMINLEVEL 70300 [email protected] http://libpcap.net See...

DNS Server Detection

The remote service is a Domain Name System DNS server, which provides a mapping between hostnames and IP addresses. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11002; scriptversion"$Revision: 1.22 $"; scriptcvsdate"$Date: 2017/05/16 19:35:38 $";...

IIS 5.0 Cross Site Scripting vulnerability

SYSTEMS AFFECTED ======== IIS 5.0 / Windows 2000 SP2 - SRP1 exploited with a browser CONTENTS ========= Subject: IIS 5.0 Cross Site Scripting Vulnerability Date: 27 September 2002 Risk: Medium DESCRIPTION ========= IIS 5.0 can be forced to return malicious content in user's browser. By using a...

Apache Tomcat 4.0.3 - Servlet Mapping Cross-Site Scripting

Apache Tomcat 4.0.3 - Servlet Mapping Cross-Site Scripting source: https://www.securityfocus.com/bid/5193/info A vulnerability has been reported for Apache Tomcat 4.0.3 on Microsoft Windows and Linux platforms. Reportedly, it is possible for an attacker to launch a cross site scripting attack. Wh...

Apache Tomcat 4.0.3 - Servlet Mapping Cross-Site Scripting

source: https://www.securityfocus.com/bid/5193/info A vulnerability has been reported for Apache Tomcat 4.0.3 on Microsoft Windows and Linux platforms. Reportedly, it is possible for an attacker to launch a cross site scripting attack. When servlet mapping is enabled, it is possible to invoke...

Apache Tomcat /servlet Mapping XSS

Apache Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. By using the /servlet/ mapping to invoke various servlets / classes it is possible to cause Tomcat to throw an exception, allowing XSS attacks...

Protection bypass for linux grsecurity

It's possible to modify kernel memory by using memory mapping...

Falcon Web Server Authentication Circumvention Vulnerability

Strumpf Noir Society Advisories ! Public release ! -- -= Falcon Web Server Authentication Circumvention Vulnerability =- Release date: Wednesday, February 13, 2002 Introduction: Falcon Web Server is a ISAPI and WinCGI supporting web server running on the Microsoft Windows OS's. Falcon Web Server ...

Zope < 2.3.3 ZClass Permission Mapping Modification Local Privilege Escalation

The remote web server uses a version of Zope which is older than version 2.3.3. In such versions, any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope...

CVE-2001-0567

Digital Creations Zope 2.3.2 and earlier allows a local attacker to gain additional privileges via the changing of ZClass permission mappings for objects and methods in the ZClass...

How to remove .printer mapping &#40;WAS RE: Permanently remove IIS printer mapping&#41;

This is from another list I receive. It explains this scenario rather well. Keith --------------------------------------------------- All IIS Administrators Please Read this Immediately --------------------------------------------------- I wanted to get this out right away. More info to follow. O...

Локальный DoS через mmap в FreeBSD

Из-за некорректной обработки сбоев при отображении страниц памяти возможно завесить систему...

Gauntlet Firewall Vulnerability

In some circumstances NAI Gauntlet firewall performs Network Address Translation in an unexpected manner, causing incorrect routable IP addresses to be generated. This can enable unprivileged users on the protected network to knowingly or unknowingly generate spurious source IP addresses. Vendor...

CVE-1999-0824

A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later users...