CVE-2013-6432

The pingrecvmsg function in net/ipv4/ping.c in the Linux kernel before 3.12.4 does not properly interact with read system calls on ping sockets, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging unspecified privileges to execute a crafte...

CVE-2013-6432

The pingrecvmsg function in net/ipv4/ping.c in the Linux kernel before 3.12.4 does not properly interact with read system calls on ping sockets, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging unspecified privileges to execute a crafte...

UBUNTU-CVE-2013-6432

The pingrecvmsg function in net/ipv4/ping.c in the Linux kernel before 3.12.4 does not properly interact with read system calls on ping sockets, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging unspecified privileges to execute a crafte...

PT-2013-6045 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.12.4 Description: The issue is related to the ping recvmsg function in the Linux kernel, which does not properly interact with read system calls on ping sockets. This allows local users with unspecified...

CVE-2013-6829

admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping operation...

Code injection

admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping operation...

CVE-2013-4987

PineApp Mail-SeCure before 3.70 allows remote authenticated users to gain privileges by leveraging console access and providing shell metacharacters in a "system ping" command...

Command injection

PineApp Mail-SeCure before 3.70 allows remote authenticated users to gain privileges by leveraging console access and providing shell metacharacters in a "system ping" command...

NetGear router through command injection to obtain ROOT privileges[EXP]-vulnerability warning-the black bar safety net

! NetGear router through command injection to obtain ROOT privileges\EXP\ - ScriptALeRT - Minghacker /Article/UploadPic/2013-11/201311614443412.jpg Abroad a large cattle study found that the NetGear router wndr3700v4 firmware authenticate the existence of the vulnerability. Once the Web interface...

Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow

!/usr/bin/perl -w Exploit Title: WatchGuard Firewall XTM version 11.7.4u1 - Remote buffer overflow exploit sessionid cookie Date: Oct 18 2013 Exploit Author: [email protected] a.k.a. [email protected] Vendor Homepage: http://www.watchguard.com Version: = 11.7.4u1 Tested on: XTMv CVE :...

Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow

Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow !/usr/bin/perl -w Exploit Title: WatchGuard Firewall XTM version 11.7.4u1 - Remote buffer overflow exploit sessionid cookie Date: Oct 18 2013 Exploit Author: [email protected] a.k.a. [email protected] Vendor Homepage:...

Linksys WRT110 Remote Command Execution Vulnerability

Exploit for hardware platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core...

Linksys WRT110 - Remote Command Execution

Linksys WRT110 - Remote Command Execution. CVE-2013-3568. Remote exploit for hardware platform This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use...

Linksys WRT110 Remote Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Linksys WRT110 Remote Command...

Out-of-bounds

GNU ZRTPCPP before 3.2.0 allows remote attackers to obtain sensitive information uninitialized heap memory or cause a denial of service out-of-bounds read via a crafted packet, as demonstrated by a truncated Ping packet that is not properly handled by the getEpHash function...

CVE-2013-2223

GNU ZRTPCPP before 3.2.0 allows remote attackers to obtain sensitive information uninitialized heap memory or cause a denial of service out-of-bounds read via a crafted packet, as demonstrated by a truncated Ping packet that is not properly handled by the getEpHash function...

Linksys X3000 - Multiple Vulnerabilities

Device: X3000 Vendor: Linksys ============ Vulnerable Firmware Releases: ============ Firmware Version: v1.0.03 build 001 Jun 11,2012 ============ Vulnerability Overview: ============ OS Command Injection The vulnerability is caused by missing input validation in the pingip parameter and can be...

CVE-2013-3568 - Linksys CSRF + Root Command Injection

Hi list, I would like to inform you that the latest available Linksys WRT110 firmware is prone to root shell command injection via cross-site request forgery. This vulnerability is the result of the web interface's failure to sanitize ping targets as well as a lack of csrf tokens. Linksys/Belkin...

SuSE 11.2 / 11.3 Security Update : krb5 (SAT Patch Numbers 7962 / 7968)

This krb5 update fixes a security issue. - kpasswd UDP ping-pong bug825985 / CVE-2002-2443 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if...

Linksys X3000 Cross Site Scripting / Command Execution

Device: X3000 Vendor: Linksys ============ Vulnerable Firmware Releases: ============ Firmware Version: v1.0.03 build 001 Jun 11,2012 ============ Vulnerability Overview: ============ OS Command Injection The vulnerability is caused by missing input validation in the pingip parameter and can be...