Windows Inject PE Files, Find Tag Ordinal Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

Windows Inject PE Files, Reverse TCP Stager (No NX or Win7)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

Windows Inject PE Files, Windows x86 Bind Named Pipe Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

Windows Inject PE Files, Hidden Bind Ipknock TCP Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

Windows Inject PE Files, Reverse TCP Stager (RC4 Stage Encryption, Metasm)

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

OSV-2020-1386 Heap-buffer-overflow in parse_relocation_info

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24400 Crash type: Heap-buffer-overflow READ 4 Crash state: parserelocationinfo getrelocs64 relocs...

Lunar - A Lightweight Native DLL Mapping Library That Supports Mapping Directly From Memory

A lightweight native DLL mapping library that supports mapping directly from memory Features Imports and delay imports are resolved Relocations are performed Image sections are mapped with the correct page protection Exception handlers are initialised A security cookie is generated and initialise...

OPENSUSE-SU-2019:2685-1 Security update for postgresql

This update for postgresql fixes the following issues: - Changed permissions, so that the directory can only be used by users in the postgres group bsc1123886. - Moved bash profile out of /var/lib to allow transactional updates bsc1100397. This update was imported from the SUSE:SLE-15:Update upda...

SUSE-SU-2019:3212-1 Security update for postgresql

This update for postgresql fixes the following issues: - Changed permissions, so that the directory can only be used by users in the postgres group bsc1123886. - Moved bash profile out of /var/lib to allow transactional updates bsc1100397...

binutils: integer overflow leads to heap-based buffer overflow in objdump

binutils version 2.32 and earlier contains a Integer Overflow vulnerability in objdump, bfdgetdynamicrelocupperbound,bfdcanonicalizedynamicreloc that can result in Integer overflow trigger heap overflow. Successful exploitation allows execution of arbitrary code.. This attack appear to be...

SUSE-SU-2019:2020-1 Security update for mariadb, mariadb-connector-c

This update for mariadb and mariadb-connector-c fixes the following issues: mariadb: - Update to version 10.2.25 bsc1136035 - CVE-2019-2628: Fixed a remote denial of service by an privileged attacker bsc1136035. - CVE-2019-2627: Fixed another remote denial of service by an privileged attacker...

SAML Signature Relocation Attack

passport-wsfed-saml2 is vulnerable to SAML signature relocation attacks. The vulnerability exists as the validation function does not ensure that the Signature tag is in the correct location in an Assertion tag, allowing attackers to perform signature relocation attacks...

The vulnerability of the read_reloc function in the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the readreloc function in the reloc.c programming tool of the GNU Binutils is related to memory addressing errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

Unbreakable Enterprise kernel security update

2.6.39-400.306.1 - ext4: validate that metadata blocks do not overlap superblock Theodore Ts'o Orabug: 28220576 CVE-2018-1094 - Provide a NLMF flag void dumping inet/inet6 stats in rtnlifinfo Manish Kumar Singh Orabug: 28318718 - btrfs: relocation: Only remove reloc rbtrees if reloc control has...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.30.1 - ext4: validate that metadata blocks do not overlap superblock Theodore Ts'o Orabug: 28220451 CVE-2018-1094 - ext4: always initialize the crc32c checksum driver Theodore Ts'o Orabug: 28220451 CVE-2018-1094 CVE-2018-1094 - vfs: Add sbrdonlysb to query the MSRDONLY flag ...

CVE-2018-3573

In all android releases Android for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, while relocating kernel images with a specially crafted boot image, an out of bounds access can occur...

DEBIAN-CVE-2018-14609

An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in delrelocroot in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rbtrees when reloc control has not been initialized...

Design/Logic Flaw

An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in delrelocroot in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rbtrees when reloc control has not been initialized...

CVE-2018-14609

CVE-2018-14609 affects the Linux kernel (up to 4.17.10) with an invalid pointer dereference in __del_reloc_root() of fs/btrfs/relocation.c when mounting a crafted Btrfs image. The issue is triggered by removing reloc rb_trees when reloc control has not been initialized, leading to potential denia...

CVE-2018-14609

An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in delrelocroot in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rbtrees when reloc control has not been initialized...