792 matches found
SCO UnixWare < 7.1.4 p534589 (pkgadd) Local Root Exploit
No description provided by source. !/bin/ksh 04/2008: public release SCO UnixWare 7.1.4 p534589 if id -un = 'root' ; then grep -v $1-root$ /var/adm/sulog su.log cp su.def /etc/default/su cp su.log /var/adm/sulog rm -f su.def su.log woot.log else echo ------------------------------------ echo...
TRENDnet TEW-812DRU CSRF/Command Injection Root Exploit
No description provided by source. html head title TRENDnet TEW-812DRU CSRF - Command Injection Shell Exploit./title !-- CSRF Discovered by: Jacob Holcomb - Security Analyst @ Independent Security Evaluators Command Injections Discovered by: Jacob Holcomb & Kedy Liu - Security Analysts @...
WvTFTPd 0.9 - Remote Root Heap Overflow Exploit
No description provided by source. / wvtftp option name heap overflow remote root exploit infamous42md AT hotpop DOT com exploitation is not exactly straight forward. When we overflow our buffer, we overwrite a pointer that is freed before we get to trigger our overwrite. so we have to restore th...
Rocks Clusters <= 4.1 (mount-loop) Local Root Exploit
No description provided by source. !/bin/sh rocksmountdirty.sh: Rocks release =4.1 local root exploit make sure 'mount-loop' is in your path for this to work. coded by: [email protected] http://xavsec.blogspot.com echo Rocks Clusters =4.1 mount-loop local root exploit by [email protected]...
Seagate BlackArmor - Root Exploit
No description provided by source...
vold asec
Insufficient paramter checking for asec container creation allows an asec container to be mounted over part of the filesystem using directory traversal if the app has the ASEC permissions such as ASECCREATE There is an adb tethered root explot for motorola phones...
Ubuntu 12.04.0-2LTS x64 perf_swevent_init - Kernel Local Root Exploit
Exploit for linux platform in category local exploits / Ubuntu 12.04 3.x x8664 perfsweventinit Local root exploit by Vitaly Nikolenko email protected based on semtex.c by sd Supported targets: 0 Ubuntu 12.04.0 - 3.2.0-23-generic 1 Ubuntu 12.04.1 - 3.2.0-29-generic 2 Ubuntu 12.04.2 -...
Google Android Vold Volume Manager Integer Wrap Root Exploit Privilege Escalation - Ver2 (CVE-2011-1823)
A privilege escalation vulnerability has been reported in Google Android Operating System. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Fonality trixbox - mac Remote Code Injection
Fonality trixbox - mac Remote Code Injection App : Trixbox all versions vendor : trixbox.com Author : i-Hmx mail : [email protected] Home : security arrays inc , sec4ever.com ,exploit4arab.net Well well well , we decided to give schmoozecom a break and have a look @ fonality products do you think...
QNX 6.4.x/6.5.x ifwatchd - Local root Exploit
Exploit for QNX platform in category local exploits !/bin/sh QNX 6.4.x/6.5.x ifwatchd local root exploit by cenobyte 2013 - vulnerability description: Setuid root ifwatchd watches for addresses added to or deleted from network interfaces and calls up/down scripts for them. Any user can launch...
QNX 6.4.x/6.5.x ifwatchd - Local Privilege Escalation
!/bin/sh QNX 6.4.x/6.5.x ifwatchd local root exploit by cenobyte 2013 - vulnerability description: Setuid root ifwatchd watches for addresses added to or deleted from network interfaces and calls up/down scripts for them. Any user can launch ifwatchd and provide arbitrary up/down scripts...
Immunity Canvas: RECVMMSG
Name| recvmmsg ---|--- CVE| CVE-2014-0038 Exploit Pack| CANVAS Description| recvmmsg local root Notes| Repeatability: Infinite Notes: Tested on: - Ubuntu 13.10 x8664 3.11.0-12-generic VENDOR: GNU/Linux CVE Url: https://vulners.com/cve/CVE-2014-0038 CVE Name: CVE-2014-0038...
Exploit Linux 3.4+ Arbitrary write with CONFIG_X86_X32
CVE: 2014-0038 Author: saelo Published: 2014-02-02 / Local root exploit for CVE-2014-0038. https://raw.github.com/saelo/cve-2014-0038/master/timeoutpwn.c Bug: The X86X32 recvmmsg syscall does not properly sanitize the timeout pointer passed from userspace. Exploit primitive: Pass a pointer to a...
Linux Kernel 3.4 3.13.2 (Ubuntu 13.10) - CONFIG_X86_X32 Arbitrary Write (2)
Linux Kernel 3.4 3.13.2 Ubuntu 13.10 - CONFIGX86X32 Arbitrary Write 2 / Local root exploit for CVE-2014-0038. https://raw.github.com/saelo/cve-2014-0038/master/timeoutpwn.c Bug: The X86X32 recvmmsg syscall does not properly sanitize the timeout pointer passed from userspace. Exploit primitive: Pa...
Linux kernel 3.4+ Arbitrary write with CONFIG_X86_X32
Exploit for linux platform in category local exploits / Local root exploit for CVE-2014-0038. https://raw.github.com/saelo/cve-2014-0038/master/timeoutpwn.c Bug: The X86X32 recvmmsg syscall does not properly sanitize the timeout pointer passed from userspace. Exploit primitive: Pass a pointer to ...
Linux Kernel 3.4 < 3.13.2 (Ubuntu 13.10) - 'CONFIG_X86_X32' Arbitrary Write (2)
/ Local root exploit for CVE-2014-0038. https://raw.github.com/saelo/cve-2014-0038/master/timeoutpwn.c Bug: The X86X32 recvmmsg syscall does not properly sanitize the timeout pointer passed from userspace. Exploit primitive: Pass a pointer to a kernel address as timeout for recvmmsg, if the...
Seagate Black Armor Root Exploit
Public Release v0.2 abstract class MD5Decryptor abstract public function probe$hash; public static function plain$hash, $class = NULL if $class === NULL $class = getcalledclass; else $class = sprintf"MD5Decryptor%s", $class; $decryptor = new $class; if count$hash 1 foreach $hash as &$one $one =...
Seagate BlackArmor - Root Exploit
Exploit for hardware platform in category web applications Public Release v0.2 abstract class MD5Decryptor abstract public function probe$hash; public static function plain$hash, $class = NULL if $class === NULL $class = getcalledclass; else $class = sprintf"MD5Decryptor%s", $class; $decryptor =...
DEBIAN-CVE-2013-6378
The lbsdebugfswrite function in drivers/net/wireless/libertas/debugfs.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service OOPS by leveraging root privileges for a zero-length write operation...
TwerkMyMoto
Motorola Razr I x86 4.1.2 root exploit, silly permissions bug. symlink /data/logs/core to ueventhelper...