CVE-2017-12953

The gig::Instrument::UpdateRegionKeyTable function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service invalid memory write and application crash via a crafted gig file...

CVE-2016-9637

The 1 ioportread and 2 ioportwrite functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access...

PT-2016-3103 · Imagemagick +2 · Imagemagick +2

Name of the Vulnerable Software and Affected Versions: ImageMagick affected versions not specified Description: The issue is related to the ReadGROUP4Image function in coders/tiff.c, which does not properly handle errors. This can be exploited by a remote attacker to cause a denial of service,...

Xxe

The cpuphysicalmemorywriterominternal function in exec.c in QEMU aka Quick Emulator does not properly skip MMIO regions, which allows local privileged guest users to cause a denial of service guest crash via unspecified vectors...

By means of DynELF achieved without libc exploit summary-vulnerability warning-the black bar safety net

In the absence of the target system libc file of the case, we can use pwntools the DynELF module to leak address information, thereby acquiring to shell. This article for linux puts and write, respectively, shows the implementation of the DynELF key function of the leak method, and by a 3-CTF top...

UBUNTU-CVE-2016-3658

The TIFFWriteDirectoryTagLongLong8Array function in tifdirwrite.c in the tiffset tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service out-of-bounds read via vectors involving the ma variable...

Linux kernel restricted use write vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the drivers/infiniband stack using the insecure 'write' function to replace the 'bi-directional ioctl '...

The vulnerability of the FFmpeg multimedia library, which allows a intruder to trigger a service failure or cause other effects

The vulnerability of the libavcodec/gif.c function in the FFmpeg multimedia library arises from buffer overflow. Exploiting this vulnerability can allow an attacker to cause service failures or potentially have other effects by using a specially created .tga file related to the functions...

MySQL <= 5.0.45 COM_CREATE_DB Format String PoC (auth)

No description provided by source. MySQL tested: Version 5.0.45 on CentOS Linux Format String Vulnerability MySQL General Available GA Release is vulnerable. Latest MySQL Version is not vulnerable since the bug if ifdef'ed off. from mysql-5.0.75 source mysql-5.0.75.tar.gz in the file...

kernel: pty layer race condition leading to memory corruption

The nttywrite function in drivers/tty/ntty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service memory corruption and system crash or gain privileges by triggering a race condition...

SCADA DNP3 write function code

...

UBUNTU-CVE-2011-1784

The pidfilewrite function in core/pidfile.c in keepalived 1.2.2 and earlier uses 0666 permissions for the 1 keepalived.pid, 2 checkers.pid, and 3 vrrp.pid files in /var/run/, which allows local users to kill arbitrary processes by writing a PID to one of these files...

linux/x86 upload & exec 189 bytes

linux/x86 upload & exec 189 bytes. Shellcode exploit for linx86 platform UPLOAD & EXEC SHELLCODE 1 converting asm to hex 2 asm code 3 hex output 4 upload function This is an 'upload and exec' shellcode for the x86 platform. File has to be in executable format, cool if you know the distribution of...

os-x/PPC simple write() 75 bytes

Exploit for os-x/ppc platform in category shellcode ================================ os-x/PPC simple write 75 bytes ================================ / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does write; exit; See ASM below. 75 Bytes. / char shellcode = "\x7c\x63\x1a\x79\x40\x82\xff\xfd"...

os-x/PPC simple write() 75 bytes

No description provided by source. / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does write; exit; See ASM below. 75 Bytes. / char shellcode = "\x7c\x63\x1a\x79\x40\x82\xff\xfd" "\x7f\xe8\x02\xa6\x39\x40\x01\x70" "\x38\x6a\xfe\x91\x38\x9f\x01\x38" "\x38\x84\xfe\xf4\x38\xaa\xfe\xa7"...