352 matches found
AIX 5.1 Bellmail Local Race Condition Exploit Exploit
No description provided by source. -bash-2.05b$ -bash-2.05b$ cat xaix5bellmail.pl !/usr/bin/perl FileName: xaix5bellmail.pl Exploit Race condition vulnerability BUGTRAQ ID: 8805 of /usr/bin/bellmail command on Aix5 to change any file owner to current user. Usage : xaix5bellmail.pl aimfile aimfile...
Solaris <= 7.0 cancel Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/293/info A buffer overrun condition was discovered in Solaris 2.6 X86 in /usr/bin/cancel. This buffer overflow is apparently present in the SPARC version as well although it is thought to be unexploitable. Previous versio...
Fedora 19 : check-mk-1.2.4p2-2.fc19 (2014-6818)
Install the mk-job binary on /usr/bin. - Make sure the proper permissions are given to /var/lib/checkmkagent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root. Note that Tenable...
Fedora 20 : check-mk-1.2.4p2-2.fc20 (2014-6810)
Install the mk-job binary on /usr/bin. - Make sure the proper permissions are given to /var/lib/checkmkagent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root. Note that Tenable...
Linux/x86 - setreuid() + execve(/usr/bin/python) Shellcode (54 bytes)
Linux/x86 - setreuid + execve/usr/bin/python Shellcode 54 bytes. Shellcode exploit for Linuxx86 platform Title: Shellcode Linux x86 54Bytes Run /usr/bin/python | setreuid,execve Date: 8/5/2014 Author: Ali Razmjoo Tested on: kali-linux-1.0.4-i386 3.7-trunk-686-pae 1 SMP Debian 3.7.2-0+kali8 i686...
LightDM 1.0.6 - Arbitrary File Deletion
LightDM 1.0.6 - Arbitrary File Deletion source: https://www.securityfocus.com/bid/52452/info Light Display Manager LightDM is prone to a local arbitrary-file-deletion vulnerability. A local attacker can exploit this issue to delete arbitrary files with administrator privileges. Light Display...
php forge local file inclusion vulnerability-vulnerability warning-the black bar safety net
Code: ? php $page=$GETpage; include$page.'php'; ?& gt; You can use http://www.xxx.com/index.php?page=../etc/passwd http://www.xxx.com/index.php?page=../../../etc/passwd http://www.xxx.com/index.php?page=..../../etc/passwd Get more data: etc/profile etc/services the /etc/passwd /etc/shadow the...
win32/PerfectXp-pc1/sp3 Tr Add Admin Shellcode 112 bytes
win32/PerfectXp-pc1/sp3 Tr Add Admin Shellcode 112 bytes. Shellcode exploit for win32 platform Title : win32/PerfectXp-pc1/sp3 Tr Add Admin Shellcode 112 bytes Author : KaHPeSeSe Screenshot : http://i53.tinypic.com/289yamq.jpg Desc. : usr: kpss , pass: 12345 , localgroup: Administrator Tested on ...
win32/PerfectXp-pc1/sp3 (Tr) Add Admin Shellcode 112 bytes
Title : win32/PerfectXp-pc1/sp3 Tr Add Admin Shellcode 112 bytes Author : KaHPeSeSe Screenshot : http://i53.tinypic.com/289yamq.jpg Desc. : usr: kpss , pass: 12345 , localgroup: Administrator Tested on : PERFECT XP PC1 / SP3 Date : 18/07/2011 Not : a.q kpss : include include include int main...
CVE-2011-2328
Buffer overflow in HP LoadRunner allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a .usr aka Virtual User script file with long directives...
Buffer overflow
Buffer overflow in HP LoadRunner allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a .usr aka Virtual User script file with long directives...
CVE-2011-2328
Buffer overflow in HP LoadRunner allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a .usr aka Virtual User script file with long directives...
HP LoadRunner buffer overflow vulnerability
Overview HP LoadRunner contains a buffer overflow vulnerability when parsing Virtual User script files. Description According to HP's website: HP LoadRunner software is the industry standard for performance validation. It allows you to prevent application performance problems by detecting...
Fedora 13 : systemtap-1.3-3.fc13 (2010-17873)
This refresh corrects two important security bugs in the /usr/bin/staprun program of the systemtap-runtime package. CVE-2010-4171 Ability to remove unused modules by unprivileged user CVE-2010-4170 Insecure loading of modules We would like to thank Tavis Ormandy for reporting this issue. Note tha...
Fedora 12 : systemtap-1.3-3.fc12 (2010-17868)
This refresh corrects two important security bugs in the /usr/bin/staprun program of the systemtap-runtime package. CVE-2010-4171 Ability to remove unused modules by unprivileged user CVE-2010-4170 Insecure loading of modules We would like to thank Tavis Ormandy for reporting this issue. Note tha...
Solaris 9 (sparc) : 113434-38
SunOS 5.9: /usr/snadm/lib Library and Diff. Date this patch was last updated by Sun : Jun/02/10 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Linux x86 execve"/usr/bin/wget", "aaaa"; 42 bytes
Linux x86 execve"/usr/bin/wget", "aaaa"; - 42 bytes. Shellcode exploit for linux platform / Title: Linux x86 execve"/usr/bin/wget", "aaaa"; - 42 bytes Author: Jonathan Salwan Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Database of Shellcodes...
CVE-2010-1105
Cross-site scripting XSS vulnerability in cgi/index.php in AdvertisementManager 3.1.0 and 3.6 allows remote attackers to inject arbitrary web script or HTML via the usr parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in cgi/index.php in AdvertisementManager 3.1.0 and 3.6 allows remote attackers to inject arbitrary web script or HTML via the usr parameter...
CVE-2010-1105
Cross-site scripting XSS vulnerability in cgi/index.php in AdvertisementManager 3.1.0 and 3.6 allows remote attackers to inject arbitrary web script or HTML via the usr parameter...