CVE-2009-1170

Unspecified vulnerability in Sun OpenSolaris snv100 through snv101 allows local users, with privileges in a non-global zone, to execute arbitrary code in the global zone when a global-zone user is using mdb on a non-global zone process...

Is your Java up to date?

For a long time, the experience of patching Sun’s Java software has been less than pleasant. The updates were huge and time consuming, the patching instructions were a mess and, even worse, Sun never removed older, vulnerable versions from the patched machine. Now it appears that things have been...

Linux/x86 - exit(1) - 7 bytes

No description provided by source. / exit-core.c by Charles Stevenson [email protected] I made this as a chunk you can paste in to make modular remote exploits. I use it when I need a process to exit cleanly. / char hellcode = / exit1; linux/x86 by core / // 7 bytes exit1 ... 'cause we're nice : by...

OpenX 2.6.2 - MAX_type Local File Inclusion

OpenX 2.6.2 - MAXtype Local File Inclusion source: https://www.securityfocus.com/bid/33458/info OpenX is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view files and execute local scripts in the...

GOM Player 2.0.12 .ASX Stack Overflow Exploit

/------------------------------------------------ GOM Player 2.0.12 .ASX Stack Overflow Exploit ------------------------------------------------- Exploit Code by:DATASNIPER Greetz: Arabic and algeria hackerz,arab4services.net and AT4RE Teams. My blog:http://datasniper.arab4services.net...

FreeBSD Security Advisory (FreeBSD-SA-03:17.procfs.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-03:17.procfs.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

HP Enterprise Discovery未明远程特权提升漏洞

BUGTRAQ ID: 30865 CVE ID: CVE-2008-3538 CNCVE ID：CNCVE-20083538 HP Enterprise Discovery是一款识别并了解数据中心或计算网络中正在运行的应用程序和进程的解决方案。 HP Enterprise Discovery存在一个未明安全问题，远程攻击者可以利用漏洞获得SYSTEM高特权，控制应用程序所在系统。 目前没有详细漏洞细节提供。 HP Enterprise Discovery 2.1.3 HP Enterprise Discovery 2.1.2 HP Enterprise Discovery 2.1.1 ...

linux/x86 rm -rf / attempts to block the process from being stopped

No description provided by source. / x86 linux rm -rf / which attempts to block the process from being stopped 132 bytes written by onionring / main char shellcode = "\x31\xC0" // xor eax, eax "\x89\xC3" // mov ebx, eax "\x89\xC1" // mov ecx, eax "\x41" // inc ecx "\xB0\x30" // mov al, 0x30 ;...

PHPizabi 0.848b C1 HP3 - id Local File Inclusion

PHPizabi 0.848b C1 HP3 - id Local File Inclusion source: https://www.securityfocus.com/bid/30707/info PHPizabi is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal...

Lemon CMS 1.10 - browser.php Local File Inclusion

Lemon CMS 1.10 - browser.php Local File Inclusion source: https://www.securityfocus.com/bid/30285/info Lemon CMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings t...

Apple QuickTime 7.2/7.3 (OSX/Windows) - RSTP Response Universal

Copyright C 2007 Subreption LLC. All rights reserved. Visit http://blog.subreption.com for exploit development notes. References: http://www.milw0rm.com/exploits/4648 original Microsoft Windows code http://www.milw0rm.com/exploits/4651 recent Microsoft Windows exploit From Metasploit:...

plone -- unsafe data interpreted as pickles

Plone projectreports: This hotfix corrects a vulnerability in the statusmessages and linkintegrity modules, where unsafe network data was interpreted as python pickles. This allows an attacker to run arbitrary python code within the Zope/Plone process...

i-Gallery 3.4 - 'igallery.asp' Remote Information Disclosure

source: https://www.securityfocus.com/bid/26348/info i-Gallery is prone to a remote information-disclosure vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized remote user to view arbitrary local files in the context of the...

CVE-2007-5626

makecatalogbackup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffi...

CVE-2007-5626

makecatalogbackup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffi...

[SECURITY] Fedora Core 6 Update: kernel-2.6.22.7-57.fc6

The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc...

libgtop2 security update

CentOS Errata and Security Advisory CESA-2007:0765 An updated libgtop2 package that fixes a security issue and a functionality bug is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libgtop2...

Cookie Delivery processes and security issues-vulnerability warning-the black bar safety net

Cookie in English is a small dessert of meaning, and the word we are always in the browser to see the food how it will tell the browser about the relationship? As you browse the previous landing sites might appears on the website: Hello XX, feel very homely, it is like eating a small dessert. Thi...

CVE-2007-0823

xterm on Slackware Linux 10.2 stores information that had been displayed for a different user account using the same xterm process, which might allow local users to bypass file permissions and read other users' files, or obtain other sensitive information, by reading the xterm process memory. NOT...

PHP Polling Creator 1.03 - functions.inc.php Remote File Inclusion

PHP Polling Creator 1.03 - functions.inc.php Remote File Inclusion source: https://www.securityfocus.com/bid/20398/info PHP Polling Creator is affected by a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issu...