21 matches found
OpenSSH Server regreSSHion Remote Code Execution
Qualys Security Advisory regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems CVE-2024-6387 ======================================================================== Contents ======================================================================== Summary SSH-2.0-OpenSSH3.4p1 Debian...
OpenSSH -- remote code execution via a forwarded agent socket
OpenSSH project reports: Fix CVE-2023-38408 - a condition where specific libaries loaded via ssh-agent1's PKCS11 support could be abused to achieve remote code execution via a forwarded agent socket if the following conditions are met: Exploitation requires the presence of specific libraries on t...
RenderDoc 1.26 Local Privilege Escalation / Remote Code Execution
Qualys Security Advisory LPE and RCE in RenderDoc: CVE-2023-33865, CVE-2023-33864, CVE-2023-33863 ======================================================================== Contents ======================================================================== Summary CVE-2023-33865, a symlink...
Exploit for Out-of-bounds Write in Polkit_Project Polkit
CVE-2021-4034 CVE-2021-40...
Exploit for Out-of-bounds Write in Polkit_Project Polkit
CVE-2021-4034 Local privilege escalation via pkexec You...
OpenSMTPD 6.6.1 - Remote Code Execution
Exploit Title: OpenSMTPD 6.6.1 - Remote Code Execution Date: 2020-01-29 Exploit Author: 1F98D Original Author: Qualys Security Advisory Vendor Homepage: https://www.opensmtpd.org/ Software Link: https://github.com/OpenSMTPD/OpenSMTPD/releases/tag/6.6.1p1 Version: OpenSMTPD '.formatsys.argv0...
OpenBSD OpenSMTPD Privilege Escalation / Code Execution
Qualys Security Advisory LPE and RCE in OpenSMTPD CVE-2020-7247 ============================================================================== Contents ============================================================================== Summary Analysis Exploitation Acknowledgments...
Qualys Security Advisory - OpenBSD Dynamic Loader Privilege Escalation
Qualys Security Advisory Local Privilege Escalation in OpenBSD's dynamic loader CVE-2019-19726 ============================================================================== Contents ============================================================================== Summary Analysis Demonstration...
Exim 4.87 - 4.91 - Local Privilege Escalation
!/bin/bash raptoreximwiz - "The Return of the WIZard" LPE exploit Copyright c 2019 Marco Ivaldi A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to remote command execution. CVE-2019-10149 This...
Exim 4.91 Local Privilege Escalation Exploit
Exploit for linux platform in category local exploits !/bin/bash raptoreximwiz - "The Return of the WIZard" LPE exploit Copyright c 2019 Marco Ivaldi A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may...
Exim 4.87 - 4.91 - Local Privilege Escalation
Exim 4.87 - 4.91 - Local Privilege Escalation !/bin/bash raptoreximwiz - "The Return of the WIZard" LPE exploit Copyright c 2019 Marco Ivaldi A flaw was found in Exim versions 4.87 to 4.91 inclusive. Improper validation of recipient address in delivermessage function in /src/deliver.c may lead to...
Exim 4.87 4.91 - (Local Remote) Command Execution
Exim 4.87 4.91 - Local Remote Command Execution Qualys Security Advisory The Return of the WIZard: RCE in Exim CVE-2019-10149 ======================================================================== Contents ======================================================================== Summary Local...
Procps-ng Audit Report
Qualys Security Advisory Procps-ng Audit Report ======================================================================== Contents ======================================================================== Summary 1. FUSE-backed /proc/PID/cmdline 2. Unprivileged process hiding 3. Local Privilege...
glibc ld.so - Memory Leak / Buffer Overflow Vulnerability
Exploit for linux platform in category local exploits Qualys Security Advisory Buffer overflow in glibc's ld.so ======================================================================== Contents ======================================================================== Summary Memory Leak Buffer...
GNU C Library Dynamic Loader glibc ld.so - Memory Leak Buffer Overflow
GNU C Library Dynamic Loader glibc ld.so - Memory Leak Buffer Overflow Qualys Security Advisory Buffer overflow in glibc's ld.so ======================================================================== Contents ======================================================================== Summary Memor...
GNU C Library Dynamic Loader glibc ld.so - Memory Leak / Buffer Overflow
Qualys Security Advisory Buffer overflow in glibc's ld.so ======================================================================== Contents ======================================================================== Summary Memory Leak Buffer Overflow Exploitation Acknowledgments...
GLSA-201706-19 : GNU C Library: Multiple vulnerabilities (Stack Clash)
The remote host is affected by the vulnerability described in GLSA-201706-19 GNU C Library: Multiple vulnerabilities Multiple vulnerabilities have been discovered in the GNU C Library. Please review the CVE identifiers and Qualys security advisory referenced below for details. Impact : An attacke...
Debian DLA-387-1 : openssh security update
The Qualys Security team discovered two vulnerabilities in the roaming code of the OpenSSH client an implementation of the SSH protocol suite. SSH roaming enables a client, in case an SSH connection breaks unexpectedly, to resume it at a later time, provided the server also supports it. The OpenS...
DSA-3446-1 openssh - security update
Bulletin has no description...
DLA-387-1 openssh - security update
Bulletin has no description...