Schneider Electric C-Bus Automation Controller (5500SHAC) 1.10 Remote Root

!/usr/bin/env python3 -- coding: utf-8 -- Schneider Electric C-Bus Automation Controller 5500SHAC 1.10 Remote Root Exploit Vendor: Schneider Electric SE Product web page: https://www.se.com | https://www.clipsal.com Product details: -...

D-Link DSL-3782 Pre-Authentication Remote Root Exploit

!/usr/bin/python2 preauth rece for dlink dsl-3782 pwned: 18.112021 @ 19:26 import sys import urllib2 requests import urllib import struct target = 'http://192.168.0.50/index.php' cgi-bin/ChgLang.asp' nopsled = "" NOP sled XOR $t0, $t0, $t0; as NOP is only null bytes for i in range74: nopsled +=...

SUSE: Security Advisory (SUSE-SU-2020:1790-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2019:13976-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Cisco SD-WAN vManage 19.2.2 Remote Root Exploit

Cisco SD-WAN vManage 19.2.2 Remote Root Shell PoC / This PoC exploits CVE-2020–3387 through CVE-2020–3437 / function exploit var payload = new Image1,1; payload.src =...

Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 2 Original Exploit Author: Hacker Fantastic Metasploit Module Author: wvu Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris10-overview.html Version: 10 Tested on: SunOS solaris 10 CVE: CVE-2020-14871 Ported By: legend...

SUSE: Security Advisory (SUSE-SU-2020:1788-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:1789-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:1791-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Zoom Meeting Connector 4.6.239.20200613 - Remote Root Exploit (Authenticated)

Exploit Title: Zoom Meeting Connector 4.6.239.20200613 - Remote Root Exploit Authenticated Date: 12-29-2020 Exploit Author: Jeremy Brown Vendor Homepage: https://support.zoom.us/hc/en-us/articles/201363093-Deploying-the-Meeting-Connector Software Link:...

Zoom Meeting Connector Post-Auth Remote Root

!/usr/bin/python -- coding: UTF-8 -- zoomer.py Zoom Meeting Connector Post-auth Remote Root Exploit Jeremy Brown jbrown3264/gmail Dec 2020 The Meeting Connector Web Console listens on port 5480. On the dashboard under Network - Proxy, one can enable a proxy server. All of the fields are sanitized...

Exploit for CVE-2016-2384

This repository contains proof-of-concept exploits for two Linux kernel vulnerabilities: CVE-2016-2384 and CVE-2017-6074. CVE-2016-2384 is a double-free vulnerability in the USB MIDI driver. The exploit is a part of a proof-of-concept exploit for the vulnerability in the usb-midi driver. It is...

Exploit for CVE-2014-7911

This is a local root exploit for Nexus5 Android 4.4.4KTU84P. The exploit is based on the CVE-2014-7911 vulnerability, which is a privilege escalation vulnerability in the Android operating system. The exploit is designed to gain root access on the device. The exploit is implemented in Java and us...

kernel: lockdown: bypass through ACPI write via acpi_configfs

A flaw was found in how the ACPI table loading through acpiconfigfs was handled when the kernel was locked down. This flaw allows a root privileged local user to circumvent the kernel lockdown restrictions. The highest threat from this vulnerability is to data confidentiality and integrity as wel...

OPENSUSE-SU-2020:0911-1 Security update for tomcat

This update for tomcat fixes the following issues: - CVE-2020-8022: Fixed a local root exploit due to improper permissions bsc1172405 This update was imported from the SUSE:SLE-15-SP1:Update update project...

SUSE-SU-2020:1791-1 Security update for tomcat

This update for tomcat fixes the following issues: - CVE-2020-8022: Fixed a local root exploit due to improper permissions bsc1172405...

SUSE-SU-2020:1790-1 Security update for tomcat

This update for tomcat fixes the following issues: - CVE-2020-8022: Fixed a local root exploit due to improper permissions bsc1172405...

SUSE-SU-2020:1789-1 Security update for tomcat

This update for tomcat fixes the following issues: - CVE-2020-8022: Fixed a local root exploit due to improper permissions bsc1172405...

SUSE-SU-2020:1788-1 Security update for tomcat

This update for tomcat fixes the following issues: - CVE-2020-8022: Fixed a local root exploit due to improper permissions bsc1172405...

FreeBSD-SA-19:02.fd - Privilege Escalation

FreeBSD-SA-19:02.fd - Privilege Escalation Exploit: FreeBSD-SA-19:02.fd - Privilege Escalation Date: 2019-12-30 Author: Karsten König of Secfault Security Twitter: @gr4yf0x Kudos: Maik, greg and Dirk for discussion and inspiration CVE: CVE-2019-5596 libmap.conf primitive inspired by kcope's 2005...