Apple macOS powerd Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the powerd...

Netgate pfSense CE Command Injection Vulnerability (CNVD-2018-26995)

Netgate pfSense CE is the United States Netgate company's set of free open source FreeBSD-based firewall and router software. A command injection vulnerability exists in the 'powerdacmode' POST parameter in Netgate pfSense CE version 2.4.4-RELEASE, which can be exploited by an attacker to execute...

Netgate pfSense CE Command Injection Vulnerability (CNVD-2018-26996)

Netgate pfSense CE is the United States Netgate company's set of free open source FreeBSD-based firewall and router software. A command injection vulnerability exists in the 'powerdnormalmode' parameter in Netgate pfSense CE version 2.4.4-RELEASE, which can be exploited by an attacker to execute...

CVE-2018-4019

An exploitable command injection vulnerability exists in the way Netgate pfSense CE 2.4.4-RELEASE processes the parameters of a specific POST request. The attacker can exploit this and gain the ability to execute arbitrary commands on the system. An attacker needs to be able to send authenticated...

CVE-2018-4021

An exploitable command injection vulnerability exists in the way Netgate pfSense CE 2.4.4-RELEASE processes the parameters of a specific POST request. The attacker can exploit this and gain the ability to execute arbitrary commands on the system. An attacker needs to be able to send authenticated...

MacOS Kernel 10.12.1 / iOS < 10.2 - powerd Arbitrary Port Replacement Exploit

Exploit for multiple platform in category dos / poc / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=976 powerd running as root hosts the com.apple.PowerManagement.control mach service. It checks in with launchd to get a server port and then wraps that in a CFPort:...

Apple macOS 10.12.1 / iOS &lt; 10.2 - powerd Arbitrary Port Replacement

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=976 powerd running as root hosts the com.apple.PowerManagement.control mach service. It checks in with launchd to get a server port and then wraps that in a CFPort: pmServerMachPort = SCCFMachPortCreateWithPort "PowerManagement",...

Apple macOS 10.12.1 iOS 10.2 - powerd Arbitrary Port Replacement

Apple macOS 10.12.1 iOS 10.2 - powerd Arbitrary Port Replacement / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=976 powerd running as root hosts the com.apple.PowerManagement.control mach service. It checks in with launchd to get a server port and then wraps that in a CFPort:...

Marinet CMS Blind SQL Injection

==================================================== MARINET CMS room.php = Blind SQL Vulnerability ==================================================== Exploit Title: MARINET CMS room.php = Blind SQL Vulnerability Date: 30 - 09 - 2011 Author: BHG Security Center Software Link:...

Solaris Update for powerd pmconfig 116559-01

Check for the Version of powerd pmconfig OpenVAS Vulnerability Test Solaris Update for powerd pmconfig 116559-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Solaris Update for powerd pmconfig 116559-01

Check for the Version of powerd pmconfig OpenVAS Vulnerability Test Solaris Update for powerd pmconfig 116559-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CVE-2006-0681

CVE-2006-0681 describes a format-string vulnerability in Power Daemon (powerd) 2.0.2 and earlier, located in powerd.c, where an attacker can cause remote code execution via format specifiers in the WHATIDO variable. Affected: Power Daemon up to version 2.0.2 and earlier. Impact: remote arbitrary ...

Powerd Detection

Binary data 3424.prm...

Powerd WHATIDO Variable Remote Overflow

Binary data 3425.prm...

Solaris 9 (x86) : 116560-01

SunOS 5.9x86: powerd and pmconfig patch. Date this patch was last updated by Sun : Jul/16/04 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...