CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

0day.today•added 2018/01/12 12:0 a.m.•18 views

Linux/ARM - execve (/bin/sh,NULL,0) Shellcode (31 bytes)

/ Title: Linux/ARM - execve"/bin/sh",NULL,0 - 31 bytes Date: 2010-08-31 Tested: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan - twitter: @jonathansalwan shell-storm.org Shellcode ARM without 0x20, 0x0a and 0x00 00008054 : 8054: e28f3001 add r3, pc, 1 ; 0x1 8058: e12fff13 bx r3 805c: 4678 mov r0, p...

7.4AI score

OSV•added 2017/10/31 9:29 p.m.•1 views

ALPINE-CVE-2017-1000257

An IMAP FETCH response line indicates the size of the returned data, in number of bytes. When that response says the data is zero bytes, libcurl would pass on that non-existing data with a pointer and the size zero to the deliver-data function. libcurl's deliver-data function treats zero as a mag...

9.1CVSS7AI score0.00863EPSS

OSV•added 2017/10/31 9:29 p.m.•1 views

DEBIAN-CVE-2017-1000257

9.1CVSS9.3AI score0.00863EPSS

Prion•added 2017/10/31 9:29 p.m.•18 views

Heap overflow

6.4CVSS8.9AI score0.00863EPSS

Exploits0References8Affected Software2

Cvelist•added 2017/10/31 9:0 p.m.•21 views

CVE-2017-1000257

9.2AI score0.00863EPSS

Exploits0References8

OSV•added 2017/10/23 12:0 a.m.•1 views

UBUNTU-CVE-2017-1000257

9.1CVSS7.4AI score0.00863EPSS

Exploits0References5

NVD•added 2017/05/18 6:29 a.m.•16 views

CVE-2017-9048

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a stack-based buffer overflow. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char buffer 'buf' of size 'size'. At the end of the routine, the function may strcat two more...

7.5CVSS6.2AI score0.00601EPSS

Exploits1References6

Debian CVE•added 2017/05/18 6:13 a.m.•64 views

CVE-2017-9048

7.5CVSS8.4AI score0.00601EPSS

Exploits1

RedhatCVE•added 2017/03/23 2:18 p.m.•15 views

CVE-2017-7226

The peILFobjectp function in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to a heap-based buffer over-read of size 4049 because it uses the strlen function instead of strnlen, leading to program crashes in several utilities such as addr2lin...

9.1CVSS1.5AI score0.00379EPSS

Prion•added 2017/03/22 4:59 p.m.•14 views

Heap overflow

6.4CVSS8.8AI score0.00379EPSS

Exploits0References1Affected Software1

OSV•added 2017/03/22 4:59 p.m.•0 views

UBUNTU-CVE-2017-7226

9.1CVSS7.1AI score0.00379EPSS

Exploits0References3

OSV•added 2017/03/22 4:59 p.m.•1 views

DEBIAN-CVE-2017-7226

9.1CVSS9.1AI score0.00379EPSS

Cvelist•added 2017/03/22 4:0 p.m.•14 views

CVE-2017-7226

6.9AI score0.00379EPSS

Hacker One•added 2016/11/10 12:50 p.m.•14 views

Paragon Initiative Enterprises: Not using Binary::safe* functions for substr/strlen function

Several places in the code don't use Binary::safe or CryptoUtil::safe functions, but use raw functions instead strlen/substr which can act as mbfuncname instead not count bytes for strlen/etc... 1...

7.3AI score

seebug.org•added 2014/07/01 12:0 a.m.•13 views

linux/x86 Shellcode Polymorphic - setuid(0) + chmod("/etc/shadow", 0666) Shellcode 61 Bytes

No description provided by source. / ============================================================================================= linux/x86 Shellcode Polymorphic - setuid0 + chmod/etc/shadow, 0666 Shellcode 61 Bytes...

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Linux/SuperH - sh4 - setuid(0) ; execve("/bin/sh", NULL, NULL) - 27 bytes

No description provided by source. / Linux/SuperH - sh4 - setuid0 ; execve/bin/sh, NULL, NULL - 27 bytes Tested on debian-sh4 2.6.32-5-sh7751r by Jonathan Salwan - twitter: @jonathansalwan 400054: 17 e3 mov 23,r3 400056: 4a 24 xor r4,r4 400058: 0b c3 trapa 11 40005a: 3a 23 xor r3,r3 40005c: 0b e3...

seebug.org•added 2014/07/01 12:0 a.m.•18 views

Linux/ARM - execve("/bin/sh", [0], [0 vars]) - 27 bytes

No description provided by source. / Title: Linux/ARM - execve/bin/sh, 0, 0 vars - 27 bytes Date: 2010-08-31 Tested on: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan - twitter: @jonathansalwan shell-storm.org Shellcode ARM with not a 0x20, 0x0a and 0x00 Disassembly of section .text: 00008054 start...

seebug.org•added 2014/07/01 12:0 a.m.•8 views

os-x/ppc sync(), reboot() 32 bytes

No description provided by source. / MacOSX/PowerPC Shellcode for: sync, reboot 32 bytes hophet at gmail.com http://www.nlabs.com.br/hophet/ / include stdio.h include string.h char shellcode = \x7c\x63\x1a\x79 \x39\x40\x01\x06 \x38\x0a\xff\x1e \x44\xff\xff\x02 \x60\x60\x60\x60 \x39\x40\x01\x19...