Solaris 8/9/10 fifofs I_PEEK Local Kernel memory Leak Exploit

Exploit for solaris platform in category local exploits ============================================================= Solaris 8/9/10 fifofs IPEEK Local Kernel memory Leak Exploit ============================================================= / $Id: raptorpeek.c,v 1.1 2007/10/18 08:09:02 raptor Exp...

AIX 520009 : U807824

The remote host is missing AIX PTF U807824 which is related to the security of the package PEXPHIGS.graPHIGS.rte.pipe You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

Novell Client NWSPOOL.DLL EnumPrinters Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the Novell Netware Client. Authentication is not required to exploit this vulnerability. The specific flaw exists in nwspool.dll which is responsible for handling RPC requests through...

Linux Kernel 2.6.23 2.6.24 - vmsplice Local Privilege Escalation (1)

Linux Kernel 2.6.23 2.6.24 - vmsplice Local Privilege Escalation 1 / dianelanefuckedhard.c Linux vmsplice Local Root Exploit By qaaz Linux 2.6.23 - 2.6.24 / define GNUSOURCE include include include include include include define TARGETPATTERN " sysvm86old" define TARGETSYSCALL 113 ifndef NRvmspli...

Debian: Security Advisory (DSA-151)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-771-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 151-1 (xinetd)

The remote host is missing an update to xinetd announced via advisory DSA 151-1. OpenVAS Vulnerability Test $Id: deb1511.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 151-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

DEBIAN-CVE-2007-5933

Pioneers formerly gnocatan before 0.11.3 allows remote attackers to cause a denial of service crash by triggering a delete operation while the Session object is still being used, as demonstrated by causing a "Broken pipe" error...

Session fixation

Pioneers formerly gnocatan before 0.11.3 allows remote attackers to cause a denial of service crash by triggering a delete operation while the Session object is still being used, as demonstrated by causing a "Broken pipe" error...

CVE-2002-2365

Simple WAIS SWAIS 1.11 allows remote attackers to execute arbitrary commands via the shell metacharacters in the search field, as demonstrated using the "|" pipe character...

linux/x86 raw-socket ICMP/checksum shell 235 byte

No description provided by source. ; ; Copyright c 2007 by [email protected] ; ; 235-byte raw-socket ICMP/checksum shell - x86-lnx ; by mu-b - Nov 2006 ; ; icmp with identifier flagbyte and commands in the ; following format:- ; "/bin/sh\x00-c\x00command here\x00" ; ; unlike other icmp shells,...

CVE-2007-1330

Comodo Firewall Pro CFP formerly Comodo Personal Firewall 2.4.18.184 and earlier allows local users to bypass driver protections on the HKLM\SYSTEM\Software\Comodo\Personal Firewall registry key by guessing the name of a named pipe under \Device\NamedPipe\OLE and attempting to open it multiple...

Open redirect

Comodo Firewall Pro CFP formerly Comodo Personal Firewall 2.4.18.184 and earlier allows local users to bypass driver protections on the HKLM\SYSTEM\Software\Comodo\Personal Firewall registry key by guessing the name of a named pipe under \Device\NamedPipe\OLE and attempting to open it multiple...

CVE-2007-1330

Comodo Firewall Pro CFP formerly Comodo Personal Firewall 2.4.18.184 and earlier allows local users to bypass driver protections on the HKLM\SYSTEM\Software\Comodo\Personal Firewall registry key by guessing the name of a named pipe under \Device\NamedPipe\OLE and attempting to open it multiple...

CVE-2007-1330

CVE-2007-1330 affects Comodo Firewall Pro (CFP) versions 2.4.18.184 and earlier. The issue is a local privilege bypass in which an attacker can bypass driver protections for the registry key HKLM\SYSTEM\Software\Comodo\Personal Firewall by guessing the name of a Named Pipe under \Device\NamedPipe...

Comodo Firewall protection bypass

Application uses named pipe with changing, but predictable name which allows to manipulate protection settings...

Comodo Bypassing settings protection using magic pipe Vulnerability

Hello, We would like to inform you about a vulnerability in Comodo Firewall Pro. Description: Comodo Firewall Pro former Comodo Personal Firewall stores some of its internal settings in the registry key HKLMSYSTEMSoftwareComodoPersonal Firewall. This key is protected by Comodo drivers such that...

Design/Logic Flaw

PGP Desktop before 9.5.1 does not validate data objects received over the 1 \pipe\pgpserv named pipe for PGPServ.exe or the 2 \pipe\pgpsdkserv named pipe for PGPsdkServ.exe, which allows remote authenticated users to gain privileges by sending a data object representing an absolute pointer, which...

CVE-2007-0603

PGP Desktop before 9.5.1 does not validate data objects received over the 1 \pipe\pgpserv named pipe for PGPServ.exe or the 2 \pipe\pgpsdkserv named pipe for PGPsdkServ.exe, which allows remote authenticated users to gain privileges by sending a data object representing an absolute pointer, which...

CVE-2007-0603

Summary: CVE-2007-0603 affects PGP Desktop before 9.5.1. The PGP Desktop service (PGPServ.exe/PGPsdkServ.exe) fails to validate data objects sent via named pipes “\pipe\pgpserv” and “\pipe\pgpsdkserv,” enabling a remote, authenticated attacker to cause code execution by sending a crafted data obj...