16 matches found
EUVD-2022-27693
Malicious code in bioql PyPI...
PT-2024-28703 · Apache · Cloudstack
Name of the Vulnerable Software and Affected Versions: CloudStack versions prior to 4.18.2.1 CloudStack versions prior to 4.19.0.2 Description: The CloudStack integration API service allows running its unauthenticated API server for internal portal integrations and testing purposes. Due to improp...
HTTP Fetch, Linux Command Shell, Bind TCP Random Port Inline
Fetch and execute an x64 payload from an HTTP server. Listen for a connection in a random port and spawn a command shell. Use nmap to discover the open port: 'nmap -sS target -p-'. Module Options msf use payload/cmd/linux/http/x64/shellbindtcprandomport msf payloadshellbindtcprandomport show...
Maven Extension plugin for Gradle Enterprise vulnerable to Deserialization of Untrusted Data
An issue was discovered in the Maven Extension plugin before 1.6 for Gradle Enterprise. It is vulnerable to, in the worst case, Remote Code Execution, and in the general case, local privilege escalation. Internally, the plugin uses a socket connection to send serialized Java objects that are...
CVE-2022-22547
Simple Diagnostics Agent - versions 1.0 up to version 1.57., allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits...
CVE-2020-11582
An issue was discovered in Pulse Secure Pulse Connect Secure PCS through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, launches a TCP server that accepts local connections on a random port. This can be reached by local HT...
OpenJDK: DnsClient missing source port randomization (JNDI, 8182125)
It was discovered that the DNS client implementation in the JNDI component of OpenJDK did not use random source ports when sending out DNS queries. This could make it easier for a remote attacker to spoof responses to those queries...
Linux/x86-64 - Bind TCP (Random TCP Port) Shell Shellcode (57 bytes)
/ Shell Bind TCP Random Port Shellcode - C Language - Linux/x8664 Copyright C 2013 Geyslan G. Bem, Hacking bits http://hackingbits.com email protected This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free...
Linux/x86 - Bind Shell Shellcode (42 bytes)
Linux/x86 - Bind Shell Shellcode 42 bytes. Shellcode exploit for Linx86 platform / SuperSmallBindShell 2 x86 Date: 17.03.2017 This shellcode will listen on random port and show you how deep the rabbit hole goes Please note that ports below 1024 require high privileges to bind! Shellcode Author:...
Real Networks GameHouse dldisplay ActiveX control 0 Port Buffer Overflow (1)
No description provided by source. source: http://www.securityfocus.com/bid/767/info At installation, the Real Server software randomly selects an unused port as the remote administration port. This port is used by Real Server's remote web administration feature. To access this feature, the corre...
Linux Command Shell, Bind TCP Random Port Inline
Listen for a connection in a random port and spawn a command shell. Use nmap to discover the open port: 'nmap -sS target -p-'. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 51...
Linux Command Shell, Bind TCP Random Port Inline
Listen for a connection in a random port and spawn a command shell. Use nmap to discover the open port: 'nmap -sS target -p-'. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 57...
BitTorrent / uTorrent Detection
The remote host is running BitTorrent or uTorrent, peer-to-peer file sharing applications. Note that, due to the peer-to-peer nature of these applications, any user connecting to the BitTorrent network may consume a large amount of bandwidth. C Tenable Network Security, Inc. include"compat.inc";...
Linux/x86-64 - Bind TCP (Random TCP Port) Shell + Null-Free Shellcode (57 bytes)
Linux/x86-64 - Bind TCP Random TCP Port Shell + Null-Free Shellcode 57 bytes. Shellcode exploit for Linuxx86-64 platform / Shell Bind TCP Random Port Shellcode - C Language - Linux/x8664 Copyright C 2013 Geyslan G. Bem, Hacking bits http://hackingbits.com [email protected] This program is free...
UDP Stress Tester - Denial of Service
include include include include include include include include include define shit "BLEAHD" timet elapsed; long sendcount = 0, kbs; void statsint signum kbs = sendcount6/time0-elapsed/1024; // i dont think this is right but... printf"\npid: %d, ran for %u seconds\n",getpid,time0 - elapsed;...
UDP Stress Tester Denial of Service Exploit
Exploit for unknown platform in category dos / poc =========================================== UDP Stress Tester Denial of Service Exploit =========================================== include include include include include include include include include define shit "BLEAHD" timet elapsed; long...