FreeBSD <= 6.1 kqueue() NULL pointer Dereference Local Root Exploit

No description provided by source. FreeBSD = 6.1 suffers from classical check/use race condition on SMP systems in kevent syscall, leading to kernel mode NULL pointer dereference. It can be triggered by spawning two threads: 1st thread looping on open and close syscalls, and the 2nd thread loopin...

Geeklog 1.6.0sr1 - Arbitrary File Upload

============================================================================== Geeklog = v1.6.0sr1 - Remote Arbitrary File Upload Software Site: http://www.geeklog.net Dork: "By Geeklog" "Created this page in" +seconds +powered inurl:publichtml...

Geeklog 1.6.0sr1 File Upload

============================================================================== Geeklog with the URL of the Geeklog site. Opens an interactive browser session where you can create directories and upload files. This also exposes all the files in the images/Library/File|Image|Media|Flash directories...

Password cracking (NASL wrappers common options)

This plugin sets options for the various password cracking tools. OpenVAS Vulnerability Test Remote password cracking - common options Based on hydra scripts by Michel Arboi Authors: Vlatko Kosturjak This program is free software; you can redistribute it and/or modify it under the terms of the GN...

FreeBSD : joomla15 -- com_mailto Timeout Issue (739b94a4-838b-11de-938e-003048590f9e)

Joomla! Security Center reports : In commailto, it was possible to bypass timeout protection against sending automated emails. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...

bind security and bug fix update

20:9.2.4-25.el3 - security fix for remote DoS CVE-2009-0696, 514292 20:9.2.4-24.el3 - abort timeout queries to reduce the number of open UDP sockets 498164 - handle EMFILE error from accept gracefully 498164...

[20090723] - Core - com_mailto Timeout Issue

In commailto, it was possible to bypass timeout protection against sending automated emails...

CGI Generic Tests HTTP Errors

Nessus ran into trouble while running its generic CGI tests against the remote web server for example, connection refused, timeout, etc. When this happens, Nessus aborts the current test and switches to the next CGI script on the same port or to another web server. Thus, test results may be...

joomla15 -- com_mailto Timeout Issue

Joomla! Security Center reports: In commailto, it was possible to bypass timeout protection against sending automated emails...

telnet-brute NSE Script

Performs brute-force password auditing against telnet servers. Script Arguments telnet-brute.autosize Whether to automatically reduce the thread count based on the behavior of the target default: "true" telnet-brute.timeout Connection time-out timespec default: "5s" passdb, unpwdb.passlimit,...

Mitigating the Slowloris HTTP DoS Attack

Enterprise IT security staffs looking for some mitigation for the newly released HTTP DoS tool may have a few options. The analysts at the SANS Internet Storm Center are recommending that organizations running Web servers that are vulnerable to the tool’s attack make some basic configuration...

CGI Generic Tests Timeout

Some generic CGI tests ran out of time during the scan. The results may be incomplete. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid39470; scriptversion"1.15"; scriptsetattributeattribute:"pluginmodificationdate"...

Asterisk IAX2 Resource Exhaustion via Attacked IAX Fuzzer

Exploit for multiple platform in category dos / poc ========================================================= Asterisk IAX2 Resource Exhaustion via Attacked IAX Fuzzer ========================================================= !/usr/bin/perl -w udp IAX protocol fuzzer Created: Blake Cornell Exploi...

Asterisk IAX2 - Attacked IAX Fuzzer Resource Exhaustion (Denial of Service)

Asterisk IAX2 - Attacked IAX Fuzzer Resource Exhaustion Denial of Service !/usr/bin/perl -w udp IAX protocol fuzzer Created: Blake Cornell Exploits found with this code can be found at http://www.securityscraper.com/ Released under the VoIPER project Do not hesitate to show enthusiasm and support...

Google Chrome Timeout XSS Vulnerability

Google Chrome is prone to XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle XML DB SID Discovery

This module simply makes an authenticated request to retrieve the sid from the Oracle XML DB httpd server. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle XML DB SID Discovery',...

Design/Logic Flaw

Google Chrome 1.0.x does not cancel timeouts upon a page transition, which makes it easier for attackers to conduct Universal XSS attacks by calling setTimeout to trigger future execution of JavaScript code, and then modifying document.location to arrange for JavaScript execution in the context o...

CVE-2009-1413

Google Chrome 1.0.x does not cancel timeouts upon a page transition, which makes it easier for attackers to conduct Universal XSS attacks by calling setTimeout to trigger future execution of JavaScript code, and then modifying document.location to arrange for JavaScript execution in the context o...

CVE-2009-1413

CVE-2009-1413 concerns Google Chrome 1.x, where timeouts are not canceled during a page transition, enabling Universal XSS by scheduling code with setTimeout and then redirecting with document.location. The issue can be leveraged through a chromehtml: argument-injection path for remote execution ...

CVE-2009-1413

Removed by vendor...