172 matches found
Leahy Introduces Bill to End Bulk Call Record Collection
Sen. Patrick Leahy has introduced an updated, tougher version of the USA FREEDOM Act that would end the bulk collection of data under Section 215 of FISA and also would require the appointment of a panel of special legal advocates who would represent the interests of individual privacy and civil...
URSoft W32Dasm Disassembler Function Buffer Overflow
No description provided by source. $Id: ursoftw32dasm.rb 10477 2010-09-25 11:59:02Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CA BrightStor Discovery Service TCP Overflow
No description provided by source. $Id: discoverytcp.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
BolinTech Dream FTP Server 1.02 Format String
No description provided by source. $Id: dreamftpformat.rb 9583 2010-06-22 19:11:05Z todb $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...
Computer Associates License Server GETCONFIG Overflow
No description provided by source. $Id: calicservgetconfig.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
PSO Proxy 0.91 - Stack Buffer Overflow
No description provided by source. $Id: psoproxy91overflow.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
Remote-Anything Player 5.60.15 Denial of Service
No description provided by source. !python Title: Remote-Anything Player 5.60.15 PoC Author: Saint Patrick [email protected] Date: 4/25/2012 Just a heads up, you can get full EIP by pushing on. However, at crash time no registers point to buffer, so I chose instead to work with the 3 byte...
PumpKIN TFTP Server 2.7.2.0 - Denial of Service Exploit (meta)
No description provided by source. require 'msf/core' class Metasploit3 Msf::Auxiliary include Msf::Exploit::Remote::Udp def initializeinfo = superupdateinfoinfo, 'Name' = 'PumpKIN TFTP Server DoS', 'Description' = %q PumpKIN TFTP Server 2.7.2.0 eventually reaches a DoS condition when provided wi...
Ubuntu 12.04 LTS / 12.10 / 13.04 : txt2man vulnerability (USN-1979-1)
Patrick J Cherry discovered that txt2man contained leftover debugging code that incorrectly created a temporary file. A local attacker could possibly use this issue to overwrite arbitrary files. In the default Ubuntu installation, this should be prevented by the Yama link restrictions. Note that...
Norwich University Receives $9.9 M for Cybersecurity Research
Norwich University, a small military college nestled in the Green Mountains of Vermont, secured another round of funding for cybersecurity research this week. The grant, $9.9 million in federal funds, will feed into a project that ensures groups in the private and public sector can better plan fo...
Ubuntu 4.10 / 5.10 : linux-source-2.6.8.1/-2.6.10/-2.6.12 vulnerabilities (USN-219-1)
Al Viro discovered a race condition in the /proc file handler of network devices. A local attacker could exploit this by opening any file in /proc/sys/net/ipv4/conf// and waiting until that interface was shut down. Under certain circumstances this could lead to a kernel crash or even arbitrary co...
Moderate: Red Hat Security Advisory: pki security update
Updated pki-common and pki-tps packages that fix multiple security issues are now available for Red Hat Certificate System 8.1. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
Remote Anything Player 5.60.15 Denial Of Service
!python Title: Remote-Anything Player 5.60.15 PoC Author: Saint Patrick Date: 4/25/2012 Just a heads up, you can get full EIP by pushing on. However, at crash time no registers point to buffer, so I chose instead to work with the 3 byte overwrite shown here. This allows calling of other...
SA-CONTRIB-2012-066 - Spaces and Spaces OG - Access Bypass
CVE: CVE-2012-2303 Spaces is an API module intended to make configuration options generally avaliable only at the sitewide level to be configurable and overridden by individual "spaces" on a Drupal site. The spaces and spacesog modules part of the spaces package in some cases do not apply the...
NIST, Maryland Plan New Cybersecurity Center
The US National Institute of Standards and Technology NIST announced plans Tuesday to break ground on a new center that will be committed to cybersecurity research. The National Cybersecurity Center of Excellence will be built near NIST’s Gaithersburg, Md., campus in hopes of strengthening the...
OSI Security: Civica Spydus Library Management System (LMS) - Cross-Site Scripting Vulnerability
Civica Spydus Library Management System LMS - Cross-site Scripting Vulnerability http://www.osisecurity.com.au/advisories/civica-spydus-library-management-system-cross-site-scripting Release Date: 04-May-2011 Software: Civica - Spydus http://www.civicaplc.com/ "Libraries and information service...
OSI Security: LANSA aXes Web Terminal (TN5250) Cross-Site Scripting Vulnerability
LANSA aXes Web Terminal TN5250 Cross-Site Scripting Vulnerability http://www.osisecurity.com.au/advisories/lansa-axes-web-terminal-tn5250-cross-site-scripting Release Date: 30-Apr-2011 Software: LANSA - aXes http://www.lansa.com http://www.axeslive.com "Transform your 5250 applications into GUI...
LANSA aXes Web Terminal Cross Site Scripting
LANSA aXes Web Terminal TN5250 Cross-Site Scripting Vulnerability http://www.osisecurity.com.au/advisories/lansa-axes-web-terminal-tn5250-cross-site-scripting Release Date: 30-Apr-2011 Software: LANSA - aXes http://www.lansa.com http://www.axeslive.com "Transform your 5250 applications into GUI...
Quick TFTP Server Pro 2.1 - Transfer-Mode Overflow (Metasploit)
$Id: quicktftppromode.rb 9525 2010-06-15 07:18:08Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
BolinTech Dream FTP Server 1.02 Format String
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'BolinTech...