CVE-2014-8092

Multiple integer overflows in X.Org X Window System aka X11 or X X11R1 and X.Org Server aka xserver and xorg-server before 1.16.3 allow remote authenticated users to cause a denial of service crash or possibly execute arbitrary code via a crafted request to the 1 ProcPutImage, 2 GetHosts, 3...

CVE-2014-9273

lib/handle.c in Hivex before 1.3.11 allows local users to execute arbitrary code and gain privileges via a small hive files, which triggers an out-of-bounds read or write...

CVE-2014-9273

CVE-2014-9273 affects hivex library up to version 1.3.10/1.3.11 (lib/handle.c) where small hive files can trigger an out-of-bounds read or write, allowing local privilege escalation and arbitrary code execution. Affects hivex prior to 1.3.11; remediation is to update to a fixed release (as cited ...

Linux/x86-64 - Read /etc/passwd + Write To /tmp/outfile Shellcode (105 bytes)

Linux/x86-64 - Read /etc/passwd + Write To /tmp/outfile Shellcode 105 bytes. Shellcode exploit for Linuxx86-64 platform ; =================================================================== ; Optimized version of shellcode at: ; http://shell-storm.org/shellcode/files/shellcode-867.php ; Author:...

linux/x86 write(0,"Hello core!\n",12); (with optional 7 byte exit) 36 bytes

No description provided by source. / writehello-core.c by Charles Stevenson [email protected] I made this as a chunk you can paste in to make modular remote exploits. I use it to see if my dup2loop worked. If you don't get Hello core!\n back it's a good indicator your shell won't be functional the...

DEBIAN-CVE-2013-6484

The STUN protocol implementation in libpurple in Pidgin before 2.10.8 allows remote STUN servers to cause a denial of service out-of-bounds write operation and application crash by triggering a socket read error...

Kernel: drivers: libertas: potential oops in debugfs

The lbsdebugfswrite function in drivers/net/wireless/libertas/debugfs.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service OOPS by leveraging root privileges for a zero-length write operation...

Design/Logic Flaw

The qemu guest agent in Qemu 1.4.1 and earlier, as used by Xen, when started in daemon mode, uses weak permissions for certain files, which allows local users to read and write to these files...

CVE-2013-1766

libvirt 1.0.2 and earlier sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors...

CVE-2013-1766

libvirt 1.0.2 and earlier sets the group owner to kvm for device files, which allows local users to write to these files via unspecified vectors...

SCADA DNP3 write system time

...

SuSE 10 Security Update : PostgreSQL (ZYPP Patch Number 8311)

PostgreSQL was updated to the latest stable release 8.1.23, fixing various bugs and security issues. The following security issues have been fixed : - This update fixes arbitrary read and write of files via XSL functionality. CVE-2012-3488 - postgresql: denial of service stack exhaustion via...

Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : postgresql-8.3, postgresql-8.4, postgresql-9.1 vulnerabilities (USN-1542-1)

Peter Eisentraut discovered that the XSLT functionality in the optional XML2 extension would allow unprivileged database users to both read and write data with the privileges of the database server. CVE-2012-3488 Noah Misch and Tom Lane discovered that the XML functionality in the optional XML2...

Nvidia Linux Driver - Local Privilege Escalation

/ Anonymous How to use: sudo rm -rf / greetz: djrbliss, kad, Ac1dB1tch3z, nVidia! Only complete fix patch nvidia drivers and redefine ISBLACKLISTEDREGOFFSET: define ISBLACKLISTEDREGOFFSETnv, offset, length 1 / define GNUSOURCE include include include include include include include include includ...

Code injection

model/modelstorage.py in the Tryton application framework trytond before 2.4.0 for Python does not properly restrict access to the Many2Many field in the relation model, which allows remote authenticated users to modify the privileges of arbitrary users via a 1 create, 2 write, 3 delete, or 4 cop...

Non Compliant Scada Modbus Read Write Reg Query

...

Non Compliant Scada Modbus Write Multiple Regs Query

...

Non Compliant Scada Modbus Write Multiple Coils Query

...

Non Compliant Scada Modbus Write Multiple Coils Response

...

Linux x86_64 - add user with passwd (189 bytes)

No description provided by source. ;scadduser01.S ;Arch: x8664, Linux ; ;Author: 0o -- nullnull ; nu11.nu11 at yahoo.com ;Date: 2012-03-05 ; ;compile an executable: nasm -f elf64 scadduser.S ; ld -o scadduser scadduser.o ;compile an object: nasm -o scadduserobj scadduser.S ; ;Purpose: adds user...