978 matches found
CVE-2016-9949
An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field as Python code if it begins with a "". This allows remote attackers to execute arbitrary Python code...
UBUNTU-CVE-2016-9949
An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field as Python code if it begins with a "". This allows remote attackers to execute arbitrary Python code...
SAP HANA Sinopia - default user creation policy insecure
Application: SAP HANA Versions Affected: SAP HANA SPS12 Vendor URL: SAP Bug: Insecure default configuration Reported: 13.12.2016 Vendor response: 14.12.2016 Date of Public Advisory: 14.02.2017 Reference: SAP Security Note 2407694 Author: Mathieu Geli ERPScan VULNERABILITY INFORMATION Class:...
Memcached 1.4.33 - Add (PoC)
Memcached 1.4.33 - Add PoC Source: http://paper.seebug.org/95/ import struct import socket import sys MEMCACHEDREQUESTMAGIC = "\x80" OPCODEADD = "\x02" keylen = struct.pack"!H",0xfa extralen = "\x08" datatype = "\x00" vbucket = "\x00\x00" bodylen = struct.pack"!I",0xffffffd0 opaque =...
CIScan 1.00 - HostnameIP Field Crash (PoC)
CIScan 1.00 - HostnameIP Field Crash PoC !/usr/bin/env python -- coding: utf-8 -- Exploit Title : CIScanv1.00 Hostname/IP Field Local BoF PoC Discovery by : Irving Aguilar Email : [email protected] Discovery Date : 05.05.2016 Software Link :...
Uber: uber.com may RCE by Flask Jinja2 Template Injection
Hi, Uber Security Team I found an RCE in rider.uber.com. First, if you change your profile name to '7'7 , and you will receive a mail "Your Uber account information has been updated" sent by [email protected] And in mail body, you can see your name become '7777777' This is a vulnerability about...
KeePass Password Safe Classic 1.29 - Crash
1 . run python code : python crash.py 2 . open “KeePass” 3 . File — New Create New Password Database 4 . File — Import — CSV File… 5 . open r3z4.csv 6 . Right Click on “R3Z4” username and edit 7 . Crashed crash.py: !/usr/bin/env python hdr = '"' start syntax hcr = "R3Z4" user oth = ',"' user oth2...
KeePass Password Safe Classic 1.29 - Crash (PoC)
Title : KeePass Password Safe Classic 1.29 - Crash Proof Of Concept Affected Versions: All Version Founder : keepass.info Tested on Windows 7 / Server 2008 Download Link : http://sourceforge.net/projects/keepass/files/KeePass%201.x/1.30/KeePass-1.30.zip Author : Mohammad Reza Espargham Linkedin :...
KeePass Password Safe Classic 1.29 Buffer Overflow
Title : KeePass Password Safe Classic 1.29 - Crash Proof Of Concept Affected Versions: All Version Founder : keepass.info Tested on Windows 7 / Server 2008 Download Link : http://sourceforge.net/projects/keepass/files/KeePass%201.x/1.30/KeePass-1.30.zip Author : Mohammad Reza Espargham Linkedin :...
DEBIAN-CVE-2015-5306
OpenStack Ironic Inspector aka ironic-inspector or ironic-discoverd, when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error...
Code injection
OpenStack Ironic Inspector aka ironic-inspector or ironic-discoverd, when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error...
PYSEC-2015-28
OpenStack Ironic Inspector aka ironic-inspector or ironic-discoverd, when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error...
PYSEC-2015-28
OpenStack Ironic Inspector aka ironic-inspector or ironic-discoverd, when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error...
CVE-2015-5306
CVE-2015-5306 affects OpenStack Ironic Inspector (ironic-inspector/ironic-discoverd). When Flask debug mode is enabled, an error can expose the Flask debug console, potentially allowing a remote attacker to execute arbitrary Python code. The vulnerability is documented in OSV and Red Hat advisori...
CVE-2015-5306
OpenStack Ironic Inspector aka ironic-inspector or ironic-discoverd, when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error...
CVE-2015-5306
OpenStack Ironic Inspector aka ironic-inspector or ironic-discoverd, when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error...
PT-2015-6843 · Openstack · Openstack Ironic Inspector
Name of the Vulnerable Software and Affected Versions: OpenStack Ironic Inspector affected versions not specified Description: The issue allows remote attackers to access the Flask console and execute arbitrary Python code by triggering an error when debug mode is enabled. Recommendations: At the...
net-snmp security and bug fix update
1:5.7.2-24 - Fixed lmSensorsTable not reporting sensors with duplicate names 1252053 - Fixed close overhead of extend commands 1252048 - Fixed out-of-bounds write in python code 1252034 1:5.7.2-23 - Fixed parsing of invalid variables in incoming packets 1248414 - Fixed...
SuperScan 4.1 - Windows Enumeration HostnameIPURL Field Overflow (SEH)
SuperScan 4.1 - Windows Enumeration HostnameIPURL Field Overflow SEH !/usr/bin/env python -- coding: utf-8 -- Exploit Title : SuperScan 4.1 Windows Enumeration Hostname/IP/URL Field SEH Overflow Crash PoC Discovery by : Luis Martínez Email : [email protected] Discovery Date : 18/11/2015...
QNap QVR Client 5.1.0.11290 - Crash PoC
Exploit for windows platform in category dos / poc !/usr/bin/env python -- coding: utf-8 -- Exploit Title : QNap QVR Client 5.1.0.11290 Crash PoC Discovery by : Luis Martínez Email : email protected Discovery Date : 05/11/2015 Vendor Homepage: http://www.qnapsecurity.com/n/en/ Software Link :...