Lucene search
+L

55 matches found

0day.today
0day.today
added 2018/03/13 12:0 a.m.44 views

MikroTik RouterOS < 6.38.4 (x86) - Chimay Red Stack Clash Remote Code Execution Exploit

Exploit for hardware platform in category remote exploits !/usr/bin/env python2 Mikrotik Chimay Red Stack Clash Exploit by wsxarcher based on BigNerd95 POC tested on RouterOS 6.38.4 x86 ASLR enabled on libs only DEP enabled import socket, time, sys, struct from pwn import import ropgadget...

7.1AI score
Exploits0
Prion
Prion
added 2017/11/14 9:29 p.m.14 views

Buffer overflow

In BlackBerry QNX Software Development Platform SDP 6.6.0, the default configuration of the QNX SDP system did not in all circumstances prevent attackers from modifying the GOT or PLT tables with buffer overflow attacks...

6.4CVSS7.8AI score0.005EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2017/11/14 12:0 a.m.6 views

PT-2017-16162 · Blackberry · Blackberry Qnx Software Development Platform

Name of the Vulnerable Software and Affected Versions: BlackBerry QNX Software Development Platform SDP version 6.6.0 Description: The default configuration of the QNX SDP system in BlackBerry QNX Software Development Platform SDP does not prevent attackers from modifying the GOT or PLT tables wi...

7.5CVSS7.8AI score0.005EPSS
Exploits0References4
NVD
NVD
added 2017/09/25 4:29 p.m.29 views

CVE-2017-14729

The getsyntheticsymtab functions in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, do not ensure a unique PLT entry for a symbol, which allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have...

7.8CVSS8.1AI score0.02264EPSS
Exploits0References4
Prion
Prion
added 2017/09/25 4:29 p.m.23 views

Heap overflow

The getsyntheticsymtab functions in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, do not ensure a unique PLT entry for a symbol, which allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have...

6.8CVSS9AI score0.02264EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2017/09/01 9:18 p.m.22 views

CVE-2017-13757

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to elfi386getsyntheticsymtab...

5.5CVSS5.2AI score0.01473EPSS
Exploits0References1
OSV
OSV
added 2017/08/29 11:29 p.m.2 views

DEBIAN-CVE-2017-13757

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to elfi386getsyntheticsymtab...

5.5CVSS6.5AI score0.01473EPSS
Exploits0References1
OSV
OSV
added 2017/08/29 11:29 p.m.17 views

CVE-2017-13757

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to elfi386getsyntheticsymtab...

5.5CVSS6.8AI score
Exploits0References3
Cvelist
Cvelist
added 2017/08/29 11:0 p.m.25 views

CVE-2017-13757

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to elfi386getsyntheticsymtab...

6.8AI score0.01473EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/12/27 12:0 a.m.49 views

Debian DSA-3746-1 : graphicsmagick - security update (ImageTragick)

Several vulnerabilities have been discovered in GraphicsMagick, a collection of image processing tool, which can cause denial of service attacks, remote file deletion, and remote command execution. This security update removes the full support of PLT/Gnuplot decoder to prevent Gnuplot-shell based...

10CVSS7.5AI score0.97485EPSS
Exploits13References34
myhack58
myhack58
added 2016/04/09 12:0 a.m.23 views

Through the ELF dynamic loading of the structure ROP chain Return-to-dl-resolve-the vulnerability warning-the black bar safety net

Play CTF game stick have know that PWN type of vulnerability topic will generally provide an executable program, and provide program run dynamically link the libc library. By the libc. so you can get the library function of the offset address, combined with the leak GOT the table in the libc...

7.5AI score
Exploits0
rdot
rdot
added 2012/04/07 12:0 a.m.39 views

Разработка эксплоитов для Linux. Часть 4 – обход ASCII armor и возврат в plt

Автор: sickness Блог автора: Перевод: Gh0St 07.04.2012 Разработка эксплоитов для Linux. Часть 4 – обход ASCII armor и возврат в plt. ПРИМЕЧАНИЕ: Перед чтением данного документа, рекомендуется ознакомиться со следующими работами: Руководство по написанию эксплоитов для Linux. Часть I – переполнени...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2009/09/03 5:0 p.m.21 views

CVE-2009-3058

Stack-based buffer overflow in akPlayer 1.9.0 allows remote attackers to execute arbitrary code via a long string in a .plt playlist file...

8AI score0.05586EPSS
Exploits1References4
0day.today
0day.today
added 2009/09/01 12:0 a.m.26 views

akPlayer 1.9.0 (.plt File) Universal Buffer Overflow Exploit (SEH)

Exploit for unknown platform in category local exploits ================================================================== akPlayer 1.9.0 .plt File Universal Buffer Overflow Exploit SEH ================================================================== !/usr/bin/python x Bug: akPlayer 1.9.0 .plt...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2007/05/14 12:0 a.m.24 views

webdesproxy 0.0.1 - exec-shield GET Remote Code Execution

webdesproxy 0.0.1 - exec-shield GET Remote Code Execution / Fedora Core 6 exec-shield based Webdesproxy webdesproxy-0.0.1.tgz remote root exploit reverse connect-back method by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL:...

0.2AI score
Exploits0
Rows per page
Query Builder