ViRC 2.0 (JOIN Response) Remote SEH Overwrite Exploit 0day

No description provided by source. !/usr/bin/python ViRC 2.0 'JOIN Response' 0day Remote SEH Overwrite PoC Exploit Bug discovered by Krystian Kloskowski h07 [email protected] Tested on Visual IRC 2.0 / 2k SP4 Polish Shellcode type: Windows Execute Command calc.exe How stuff works ? .. ViRC -----...

Memory corruption

Unspecified vulnerability in the Default Messaging Component in IBM WebSphere Application Server WAS 6.1.0.7 and earlier allows remote attackers to cause a denial of service related to a thread hang, and possibly related to a "TCP issue," or to MPAlarmThread and a resultant memory leak...

Web Thunder(xunlei)0day vulnerability-exposure-vulnerability warning-the black bar safety net

First, the event analysis: DSW Lab AVERT panel monitor to a high risk of hearing ray vulnerability is the exposure, the vulnerability occurs in the Web thunder of one of the controls, when you install Web thunder of the user in browsing hacker carefully constructed to contain malicious code of a...

Design/Logic Flaw

Java Embedding Plugin 0.9.6.1 allows remote attackers to cause a denial of service browser crash via a Thread subclass that calls super.run from its run method...

CVE-2007-2844

PHP 4.x and 5.x before 5.2.1, when running on multi-threaded systems, does not ensure thread safety for libc crypt function calls using protection schemes such as a mutex, which creates race conditions that allow remote attackers to overwrite internal program memory and gain system access...

Race condition

PHP 4.x and 5.x before 5.2.1, when running on multi-threaded systems, does not ensure thread safety for libc crypt function calls using protection schemes such as a mutex, which creates race conditions that allow remote attackers to overwrite internal program memory and gain system access...

CVE-2007-2844

CVE-2007-2844 details (supported by multiple sources): PHP 4.x and 5.x before 5.2.1 running on multi-threaded systems are affected due to a race condition in libc crypt function calls, arising from inadequate mutex protection. This vulnerability can allow remote attackers to overwrite internal pr...

CVE-2007-2844

PHP 4.x and 5.x before 5.2.1, when running on multi-threaded systems, does not ensure thread safety for libc crypt function calls using protection schemes such as a mutex, which creates race conditions that allow remote attackers to overwrite internal program memory and gain system access...

Low: Red Hat Security Advisory: gdb security and bug fix update

An updated gdb package that fixes a security issue and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GDB, the GNU debugger, allows debugging of programs written in C, C++, and other languages by executing them in a...

Tracing execution of a threaded executable causes kernel BUG report

The utrace support in Linux kernel 2.6.18, and other versions, allows local users to cause a denial of service system hang related to "MT exec + utraceattach spin failure mode," as demonstrated by ptrace-thrash.c...

TrueCrypt <= 4.3 Local Privilege Escalation Exploit (CVE-2007-1738)

No description provided by source. $Id: raptortruecrypt,v 1.1.1.1 2007/04/04 11:31:56 raptor Exp $ raptortruecrypt - setuid truecrypt privilege escalation Copyright c 2007 Marco Ivaldi [email protected] TrueCrypt 4.3, when installed setuid root, allows local users to cause a denial of servic...

TrueCrypt <= 4.3 Local Privilege Escalation Exploit (CVE-2007-1738)

Exploit for unknown platform in category local exploits =================================================================== TrueCrypt TrueCrypt 4.3, when installed setuid root, allows local users to cause a denial of service filesystem unavailability or gain privileges by mounting a crafted...

TrueCrypt 4.3 - &#039;setuid&#039; Local Privilege Escalation

$Id: raptortruecrypt,v 1.1.1.1 2007/04/04 11:31:56 raptor Exp $ raptortruecrypt - setuid truecrypt privilege escalation Copyright c 2007 Marco Ivaldi TrueCrypt 4.3, when installed setuid root, allows local users to cause a denial of service filesystem unavailability or gain privileges by mounting...

Oracle 10g (PROCESS_DUP_HANDLE) Local Privilege Elevation (win32)

No description provided by source. // Argeniss - Information Security // // Oracle Database local elevation of privileges PoC exploit // // Author: Cesar Cerrudo include windows.h include stdio.h BOOL InjectShellcodeDWORD oldEIP,CHAR oSID HMODULE hKernel; FARPROC pCreateProc; LPSTR...

Oracle 10g (PROCESS_DUP_HANDLE) Local Privilege Elevation (win32)

Exploit for unknown platform in category local exploits ================================================================= Oracle 10g PROCESSDUPHANDLE Local Privilege Elevation win32 ================================================================= // Argeniss - Information Security // // Oracle...

Oracle 10g (Windows x86) - &#039;PROCESS_DUP_HANDLE&#039; Local Privilege Escalation

// Argeniss - Information Security // // Oracle Database local elevation of privileges PoC exploit // // Author: Cesar Cerrudo include include BOOL InjectShellcodeDWORD oldEIP,CHAR oSID HMODULE hKernel; FARPROC pCreateProc; LPSTR sCommand="cmd.exe"; DWORD dwStrLen; CHAR buff100;...

[SECURITY] Fedora Core 5 Update: nspr-4.6.5-0.5.0.fc5

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

Authentication flaw

Unspecified vulnerability in the thread management in BEA WebLogic 7.0 through 7.0 SP6, 8.1 through 8.1 SP5, 9.0, and 9.1, when T3 authentication is used, allows remote attackers to cause a denial of service thread and system hang via unspecified "sequences of events."...

CVE-2007-0410

Unspecified vulnerability in the thread management in BEA WebLogic 7.0 through 7.0 SP6, 8.1 through 8.1 SP5, 9.0, and 9.1, when T3 authentication is used, allows remote attackers to cause a denial of service thread and system hang via unspecified "sequences of events."...

CVE-2007-0410

BeA WebLogic vulnerability: Unspecified flaw in thread management when T3 authentication is used affects WebLogic 7.0–7.0 SP6, 8.1–8.1 SP5, 9.0, and 9.1. Remote attackers can trigger a denial of service (thread and system hang) via unspecified sequences of events. No concrete exploit details, imp...