5335 matches found
Holey Beep: Linux 提权漏洞分析与利用(CVE-2018-0492)
Introduction Back in the old days, people were using the \a character to emit a horrible 'beep' sound from their speaker. It was a bit annoying, especially if you wanted more complicated stuff to do 8bits-like musics. That's why Johnathan Nightingale made the beep software. A very simple and shor...
Encryption 101: decryption tool code walkthrough
We have reached the final installment of our Encryption 101 series. In the prior post, we walked through, in detail, the thought process while looking at the Princess Locker ransomware. We talked about the specific ways to narrow down the analysis toward the encryption portions, the weaknesses in...
Mercury - A Hacking Tool Used To Collect Information And Use The Information To Further Hurt The Target
Mercury is a hacking tool used to collect information and use the information to further hurt the target. Installation Requires Python2 Linux apt-get install python2 git clone https://www.github.com/MetaChar/Mercury pip install -r requirements.txt Features BruteForce Mercury uses Selenium to...
ExpressionEngine: RCE By import channel field
The reporter determined that a malicious Channel Set could be used to allow an administrator to upload a PHP file that they might otherwise not have permission to upload. Combined with the temporary folder name algorithm being available in the source code, the malicious administrator could...
CVE-2017-7167
An issue was discovered in certain Apple products. Xcode before 9.2 is affected. The issue involves the "ld64" component. A buffer overflow allows remote attackers to execute arbitrary code via crafted source code...
Buffer overflow
An issue was discovered in certain Apple products. Xcode before 9.2 is affected. The issue involves the "ld64" component. A buffer overflow allows remote attackers to execute arbitrary code via crafted source code...
TNLSoftSolutions Sentry Information Disclosure Vulnerability
TNLSoftSolutions Sentry is a webcam device from TNLSoftSolutions, USA. A security vulnerability exists in the login page of TNLSoftSolutions Sentry version 3.x. The vulnerability can be exploited to obtain a password by reading the "ifpwd ==" line in the HTML source code...
Design/Logic Flaw
The login interface on TNLSoftSolutions Sentry Vision 3.x devices provides password disclosure by reading an "ifpwd ==" line in the HTML source code. This means, in effect, that authentication occurs only on the client side...
CVE-2018-9031
The login interface on TNLSoftSolutions Sentry Vision 3.x devices provides password disclosure by reading an "ifpwd ==" line in the HTML source code. This means, in effect, that authentication occurs only on the client side...
[SECURITY] Fedora 26 Update: cryptopp-5.6.5-2.fc26
Crypto++ Library is a free C++ class library of cryptographic schemes. See http://www.cryptopp.com/ for a list of supported algorithms. One purpose of Crypto++ is to act as a repository of public domain not copyrighted source code. Although the library is copyrighted as a compilation, the...
StaCoAn - Crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications. This tool will look for interesting lines in the code which can contain: Hardcoded credentials API keys URL's of API's Decryption keys Major coding...
FreeBSD-SA-18:03.speculative_execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-18:03.speculativeexecution Security Advisory The FreeBSD Project Topic: Speculative Execution Vulnerabilities Category: core Module: kernel Announced: 2018-03-1...
Apache Tomcat VirtualDirContext Class File Handling Remote JSP Source Code Disclosure
Source code disclosure vulnerability in Apache Tomcat VirtualDirContext class file handling Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...
GLSA-201803-03 : Go: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-201803-03 Go: User-assisted execution of arbitrary code A command injection flaw was discovered in the source code build phase because of the go get command, which does not block -fplugin= and -plugin arguments. Impact : A remote...
Memcached 1.5.5 - Memcrashed Insufficient Control Network Message Volume Denial of Service (1)
Memcached 1.5.5 - Memcrashed Insufficient Control Network Message Volume Denial of Service 1 / memcached-PoC memcached Proof of Concept Amplification via spoofed source UDP packets. Repo includes source code for PoC and approximately 17,000 AMP hosts. memcached.c - Source code...
Linux Kernel _sctp_make_chunk() Denial Of Service Vulnerability
Secunia Research has discovered a vulnerability in Linux Kernel, which can be exploited by malicious, local users to cause a DoS Denial of Service. An error in the "sctpmakechunk" function net/sctp/smmakechunk.c when handling SCTP packets length can be exploited to cause a kernel crash. The...
AxxonSoft Axxon Next Directory Traversal Vulnerability
Exploit for windows platform in category remote exploits Title AxxonSoft Axxon Next - AxxonSoft Client Directory Traversal via an initial /css//..%2f substring in a URI. CVE-2018-7467 Vulnerability Type Directory Traversal via an initial /css//..%2f substring in a URI Vendor of Product AxxonSoft...
Updated golang packages fix security vulnerability
Updated golang packages fix security vulnerabilities: Go before 1.9.4 allows "go get" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked CVE-2018-6574...
vTiger File Upload
File upload vulnerability in vTiger CompanyDetailsSave.php Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
Oracle Database Attacking Tool: ODAT
ODAT Oracle Database Attacking Tool is an open source penetration testing tool that tests the security of Oracle Databases remotely . Usage examples of ODAT: You have an Oracle database listening remotely and want to find valid SIDs and credentials in order to connect to the database You have a...