[SECURITY] Fedora 25 Update: compat-guile18-1.8.8-14.fc25

GUILE GNU's Ubiquitous Intelligent Language for Extension is a library implementation of the Scheme programming language, written in C. GUILE provides a machine-independent execution platform that can be linked in as a library during the building of extensible programs. Install the compat-guile18...

Debian Security Advisory DSA 3756-1 (icoutils - security update)

Choongwoo Han discovered that a programming error in the wrestool tool of the icoutils suite allows denial of service or the execution of arbitrary code if a malformed binary is parsed. OpenVAS Vulnerability Test $Id: deb3756.nasl 7026 2017-08-31 06:13:04Z asteins $ Auto-generated from advisory D...

FLARE Script Series: Querying Dynamic State using the FireEye Labs Query-Oriented Debugger (flare-qdb)

Introduction This post continues the FireEye Labs Advanced Reverse Engineering FLARE script series. Here, we introduce flare-qdb, a command-line utility and Python module based on vivisect for querying and altering dynamic binary state conveniently, iteratively, and at scale. flare-qdb works on...

PT-2017-19481

MAWK 1.3.3-17 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting inadequate boundary checks on user-supplied input. Attackers can craft malicious input that overflows the stack buffer and execute a return-oriented programmi...

PT-2017-19480

TiEmu 2.08 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting inadequate boundary checks on user-supplied input. Attackers can trigger the overflow through command-line arguments passed to the application, leveraging ROP...

shopify-scripts: Heap overflow due to off-by-one when expanding stack

This program triggers a heap buffer overflow while zeroing a new stack allocation due to an off-by-one while expanding the stack. It doesn't appear to be exploitable and the fix is extremely simple so I didn't try to simplify the failing test case too much: ruby class A yield ensure...

[SECURITY] Fedora 23 Update: golang-1.5.4-5.fc23

The Go Programming Language...

Netcore Netis Routers - UDP Backdoor Access

Netcore Netis Routers - UDP Backdoor Access !/usr/bin/python -- coding: utf8 -- NETCORE / NETDIS UDP 53413 BACKDOOR https://netisscan.shadowserver.org/ http://blog.trendmicro.com/trendlabs-security-intelligence/netis-routers-leave-wide-open-backdoor/ https://www.seebug.org/vuldb/ssvid-90227 impor...

[SECURITY] Fedora 24 Update: golang-1.6.4-2.fc24

The Go Programming Language...

[SECURITY] Fedora 25 Update: golang-1.7.4-1.fc25

The Go Programming Language...

[SECURITY] Fedora 25 Update: mingw-libarchive-3.2.2-1.fc25

Libarchive is a programming library that can create and read several differ ent streaming archive formats, including most popular tar variants, several cpio formats, and both BSD and GNU ar variants. It can also write shar archives and read ISO9660 CDROM images and ZIP archives...

PwC ACE-ABAP Remote Code Execution Vulnerability

ACE Automated Controls Evaluator is a tool developed by PwC PricewaterhouseCoopers that can be used to analyze SAP security settings to discern privileged access and potential segregation of duties.ABAP Advanced Business Application Programming. A remote code execution vulnerability exists in PwC...

Disk Sorter Enterprise 9.1.12 Buffer Overflow

!/usr/bin/python print "Disk Sorter Enterprise 9.1.12 Login Buffer Overflow" print "Author: Tulpa / tulpaattulpa-securitydotcom" Author website: www.tulpa-security.com Author twitter: @tulpasecurity Exploit will land you NT AUTHORITY\SYSTEM You do not need to be authenticated, password below is...

[SECURITY] Fedora 24 Update: perl-DBD-MySQL-4.039-1.fc24

DBD::mysql is the Perl5 Database Interface driver for the MySQL database. In other words: DBD::mysql is an interface between the Perl programming langua ge and the MySQL programming API that comes with the MySQL relational database management system...

PHP deserialization vulnerability causes and vulnerabilities mining techniques and case-vulnerability warning-the black bar safety net

One, serialization and deserialization Serialization and deserialization of the object is such that the Inter-program transfer object will be more convenient. Serialization is converting an object to string to store the transmission in a way. And deserialization is exactly the sequence of the...

Freefloat FTP Server 1.0 - SITE ZONE Remote Buffer Overflow

Freefloat FTP Server 1.0 - SITE ZONE Remote Buffer Overflow !/usr/bin/env python -- coding: utf-8 -- Exploit Title: FreeFloat FTP Server BoF SITE ZONE Command Date: 04/11/2016 Exploit Author: Luis Noriega Software Link: http://www.freefloat.com/software/freefloatftpserver.zip Version: 1.0 Tested...

PCMan FTP Server 2.0.7 - 'PORT' Remote Buffer Overflow

!/usr/bin/env python -- coding: utf-8 -- Exploit Title: PCMan FTP Server 2.0 PORT Command BoF Exploit Author: Pablo González Date: 4/11/2016 Software: PCMan 2.0 Tested on: Windows XP Profesional SP3 Spanish x86 import socket print "Creating malicious input!" junk = '\x41'2007 ret="\xf7\x56\x3c\x7...

PCMan FTP Server 2.0.7 - 'UMASK' Command Buffer Overflow Exploit

Exploit for windows platform in category remote exploits !/usr/bin/env python -- coding: utf-8 -- Exploit Title: PCMan's FTP Server 2.0.7 UMASK Command Buffer Overflow Exploit Date: 1/11/2016 Exploit Author: Eagleblack Tested on: Windows XP Profesional SP3 Spanish version x86 CVE : N/A import...

Memcached 1.4.33 - 'Crash' (PoC)

Source: http://paper.seebug.org/95/ import struct import socket import sys MEMCACHEDREQUESTMAGIC = "\x80" OPCODEPREPENDQ = "\x1a" keylen = struct.pack"!H",0xfa extralen = "\x00" datatype = "\x00" vbucket = "\x00\x00" bodylen = struct.pack"!I",0 opaque = struct.pack"!I",0 CAS = struct.pack"!Q",0...

Open Source CAN Network Analysis: BUSMASTER

Open Source CAN Network Analysis BUSMASTER is an open source PC software for the design, monitoring, analysis, and simulation of CAN networks. Using its powerful functions and user-programmability one can simulate CAN system of any complexity. Additionally it provides options to analyze data byte...