Debian DSA-2506-1 : libapache-mod-security - ModSecurity bypass

Qualys Vulnerability & Malware Research Labs discovered a vulnerability in ModSecurity, a security module for the Apache webserver. In situations where both 'Content:Disposition: attachment' and 'Content-Type: multipart' were present in HTTP headers, the vulnerability could allow an attacker to...

CVE-2012-1799

The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 does not limit the rate of authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack on the administrative password...

CVE-2012-1799

CVE-2012-1799 affects Siemens Scalance S Security Module firewalls S602 V2, S612 V2, and S613 V2 prior to firmware version 2.3.0.3. The web server does not limit the rate of authentication attempts, enabling remote attackers to conduct brute-force attacks to obtain administrative access. Connecte...

CVE-2012-1800

The CVE-2012-1800 entry concerns a stack-based buffer overflow in the Profinet DCP protocol stack of Siemens Scalance S Security Module firewalls (models S602 V2, S612 V2, S613 V2) prior to firmware 2.3.0.3. The flaw allows remote attackers, via a crafted DCP frame, to cause a denial of service o...

NAT-PMP Port Mapper

Map forward TCP and UDP ports on NAT devices using NAT-PMP This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NAT-PMP Port Mapper', 'Description' = 'Map forward TCP and UDP ports on NAT devices...

Siemens Scalance S Multiple Security Vulnerabilities

Overview ICS-CERT has received a report from Siemens regarding two security vulnerabilities in the Scalance S Security Module firewall. This vulnerability was reported to Siemens by Adam Hahn and Manimaran Govindarasu for coordinated disclosure. The first issue is a brute-force credential guessin...

Multi Gather Ping Sweep

Performs IPv4 ping sweep using the OS included ping command. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multi Gather Ping Sweep', 'Description' = %q Performs IPv4 ping sweep using the OS...

NetBIOS Name Service Spoofer

This module forges NetBIOS Name Service NBNS responses. It will listen for NBNS requests sent to the local subnet's broadcast address and spoof a response, redirecting the querying machine to an IP of the attacker's choosing. Combined with auxiliary/server/capture/smb or...

[Manual] Безопасный web-сервер. (chroot,mod-security2,etc)

1. Теория 1.0. Постановка задачи Нам требуется построить максимально безопасный web-сервер на основе минимального дистрибьютива Ubuntu, а именно: 1. Создать chroot "песочницу" с помощью debootstrap 2. Установить в песочнице apache2, php5, mysql 3. Установить и настроить mod-security2, а также...

kernel: ima: fix add LSM rule bug

The imalsmruleinit function in security/integrity/ima/imapolicy.c in the Linux kernel before 2.6.37, when the Linux Security Modules LSM framework is disabled, allows local users to bypass Integrity Measurement Architecture IMA rules in opportunistic circumstances by leveraging an administrator's...

Apache Tomcat安全管理模块本地用户权限提升漏洞

No description provided by source...

stat(2)-based Context Keyed Payload Encoder

This is a Context-Keyed Payload Encoder based on stat2 and Shikata Ga Nai. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/poly' class MetasploitModule 'stat2-based Context Keyed Payload Encoder',...

HTTP Version Detection

Display version information about each system. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP Version Detection', 'Description' = 'Display version information about each system.', 'Author...

HTTP GET Request URI Fuzzer (Incrementing Lengths)

This module sends a series of HTTP GET request with incrementing URL lengths. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP GET Request URI Fuzzer Incrementing Lengths', 'Description' = ...

SMB Tree Connect Request Fuzzer

This module sends a series of SMB tree connect requests using malicious strings. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMB Tree Connect Request Fuzzer', 'Description' = %q This module...

Mozilla Firefox Multiple Denial Of Service Vulnerabilities - Sep09 (Windows)

The host is installed with Firefox browser and is prone to multiple Denial of Service vulnerabilities. OpenVAS Vulnerability Test $Id: secpodfirefoxmultdosvulnsep09win.nasl 5055 2017-01-20 14:08:39Z teissa $ Mozilla Firefox Multiple Denial Of Service Vulnerabilities - Sep09 Windows Authors: Shara...

Windows x64 Command Shell, Bind TCP Inline

Listen for a connection and spawn a command shell Windows x64 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 505 include Msf::Payload::Windows include Msf::Payload::Single include...

Oracle TNS Listener Command Issuer

This module allows for the sending of arbitrary TNS commands in order to gather information. Inspired from tnscmd.pl from www.jammed.com/jwa/hacks/security/tnscmd/tnscmd This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

SIP Endpoint Scanner (UDP)

Scan for SIP devices using OPTIONS requests This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SIP Endpoint Scanner UDP', 'Description' = 'Scan for SIP devices using OPTIONS requests', 'Author' =...

Pluck CMS 4.5.2 Multiple Local File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ============================================================= Pluck CMS 4.5.2 Multiple Local File Inclusion Vulnerabilities ============================================================= Digital Security Research Group DSecRG Advisory...