DCSYNCMonitor - Monitors For DCSYNC And DCSHADOW Attacks And Create Custom Windows Events For These Events

This tool is an application/service that can be deployed on Domain controllers to alert on Domain Controller Syncronization attempts. When an attempt is detected, the tool will write an event to the Windows Event Log. These events can be correlated in a SIEM. In addition, this tool can take a lis...

Sync Breeze Enterprise 10.4.18 - Denial of-Service (PoC)

!/usr/bin/python import socket import sys from struct import pack try: server = sys.argv1 port = 9121 size = 1000 inputBuffer = b"\x41" size header = b"\x75\x19\xba\xab" header += b"\x03\x00\x00\x00" header += b"\x00\x40\x00\x00" header += pack'I', leninputBuffer header += pack'I', leninputBuffer...

[SECURITY] Fedora 28 Update: calibre-3.19.0-1.fc28

Calibre is meant to be a complete e-library solution. It includes library management, format conversion, news feeds to ebook conversion as well as e-book reader sync features. Calibre is primarily a ebook cataloging program. It manages your ebook collection for you. It is designed around the...

[SECURITY] Fedora 26 Update: calibre-3.19.0-1.fc26

Calibre is meant to be a complete e-library solution. It includes library management, format conversion, news feeds to ebook conversion as well as e-book reader sync features. Calibre is primarily a ebook cataloging program. It manages your ebook collection for you. It is designed around the...

[SECURITY] Fedora 27 Update: calibre-3.19.0-1.fc27

Calibre is meant to be a complete e-library solution. It includes library management, format conversion, news feeds to ebook conversion as well as e-book reader sync features. Calibre is primarily a ebook cataloging program. It manages your ebook collection for you. It is designed around the...

CVE-2018-7886

An issue was discovered in CloudMe 1.11.0. An unauthenticated local attacker that can connect to the "CloudMe Sync" client application listening on 127.0.0.1 port 8888 can send a malicious payload causing a buffer overflow condition. This will result in code execution, as demonstrated by a TCP...

Buffer overflow

An issue was discovered in CloudMe 1.11.0. An unauthenticated local attacker that can connect to the "CloudMe Sync" client application listening on 127.0.0.1 port 8888 can send a malicious payload causing a buffer overflow condition. This will result in code execution, as demonstrated by a TCP...

Sync_Breeze_Enterprise_10_6_24_-DOS

SyncBreezeEnterprise10624-DOS Exploit Title:...

Rootstock Labs: JSON RPC methods for debugging enabled by default allow DoS

A vulnerability was discovered in the RSK JSON-RPC server that allowed an attacker to cause a denial of service DoS attack by sending the evmreset command. The server would hang, become slow, and eventually become synced to block 0, resulting in a loss of service and responsiveness to all users...

"Incorrect username or password" on Secure Mail after Exchange Server upgrade to 2016 CU8

Since the exchange server was upgraded from Exchange 2016 to Exchange server 2016 CU8, users are facing 2 issues as below. 1. Existing users are unable to sync e-mail. 2. New users are unable to logon...

CloudMe Sync 1.9.2 Remote Buffer Overflow Exploit

Exploit for windows platform in category remote exploits !/usr/bin/python CloudMe Sync 1.9.2 Remote Exploit Written by r00tpgp @ http://www.r00tpgp.com Usage: python CloudMe-1.9.2-Exploit.py Spawns reverse meterpreter LHOST=192.168.0.68 LPORT=1990 CVE: CVE-2018-6892 CloudMe Installer:...

CloudMe Sync 1.9.2 Remote Buffer Overflow

!/usr/bin/python CloudMe Sync 1.9.2 Remote Exploit Written by r00tpgp @ http://www.r00tpgp.com Usage: python CloudMe-1.9.2-Exploit.py Spawns reverse meterpreter LHOST=192.168.0.68 LPORT=1990 CVE: CVE-2018-6892 CloudMe Installer: https://org.cloudme.com/en/sync Tested on Windows 7 32b SP1 import...

CloudMe Sync 1.10.9 - Stack-Based Buffer Overflow (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CloudMe Sync v1.10.9', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability in CloudMe Sync v1.10.9 client...

CloudMe Sync 1.10.9 Buffer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CloudMe Sync v1.10.9', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability in CloudMe Sync v1.10.9 client...

CloudMe Sync 1.10.9 Buffer Overflow Exploit

This Metasploit module exploits a stack-based buffer overflow vulnerability in the CloudMe Sync version 1.10.9 client application. This Metasploit module has been tested successfully on Windows 7 SP1 x86. This module requires Metasploit: https://metasploit.com/download Current source:...

CloudMe Sync v1.10.9

This module exploits a stack-based buffer overflow vulnerability in CloudMe Sync v1.10.9 client application. This module has been tested successfully on Windows 7 SP1 x86. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framewo...

CloudMe Sync < 1.11.0 - Buffer Overflow

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/CLOUDME-SYNC-UNAUTHENTICATED-REMOTE-BUFFER-OVERFLOW.txt + ISR: Apparition Security + SSD Beyond Security Submission: https://blogs.securiteam.com/index.php/archives/3669...

CloudMe Sync 1.10.9 Remote Buffer Overflow

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/CLOUDME-SYNC-UNAUTHENTICATED-REMOTE-BUFFER-OVERFLOW.txt + ISR: Apparition Security + SSD Beyond Security Submission: https://blogs.securiteam.com/index.php/archives/3669...

CloudMe Sync 1.10.9 Remote Buffer Overflow Vulnerability

Exploit for windows platform in category remote exploits + Credits: John Page aka hyp3rlinx Vendor: ============= www.cloudme.com Product: =========== CloudMe Sync MOV DWORD PTR SS:ESP+4,22B8 00564DF9 . 890424 MOV DWORD PTR SS:ESP,EAX 00564DFC . FF15 B8738100 CALL DWORD PTR DS:;...

CVE-2018-6892

An issue was discovered in CloudMe before 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling the program's executi...