Twenty Year Anniversary

Recent Files

Files RSS Feed
AF_PACKET chocobo_root Privilege Escalation
Posted May 22, 2018
Authored by rebel, Brendan Coles | Site metasploit.com

This Metasploit module exploits a race condition and use-after-free in the packet_set_ring function in net/packet/af_packet.c (AF_PACKET) in the Linux kernel to execute code as root (CVE-2016-8655). The bug was initially introduced in 2011 and patched in 2016 in version 4.4.0-53.74, potentially affecting a large number of kernels; however this exploit targets only systems using Ubuntu (Trusty / Xenial) kernels 4.4.0 < 4.4.0-53, including Linux distros based on Ubuntu, such as Linux Mint. The target system must have unprivileged user namespaces enabled and two or more CPU cores. Bypasses for SMEP, SMAP and KASLR are included. Failed exploitation may crash the kernel. This Metasploit module has been tested successfully on Linux Mint 17.3 (x86_64); Linux Mint 18 (x86_64); and Ubuntu 16.04.2 (x86_64) with kernel versions 4.4.0-45-generic and 4.4.0-51-generic.

tags | exploit, kernel, root
systems | linux, ubuntu
ILIAS 5.3.2 / 5.2.14 / 5.1.25 Cross Site Scripting
Posted May 22, 2018
Authored by Moritz Bechler

ILIAS versions 5.3.2, 5.2.14, and 5.1.25 suffer from a cross site scripting vulnerability.

tags | exploit, xss
Red Hat Security Advisory 2018-1630-01
Posted May 22, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-1630-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a bypass vulnerability.

tags | advisory, kernel, bypass
systems | linux, redhat
Teradek VidiU Pro 3.0.3 Change Password Cross Site Request Forgery
Posted May 21, 2018
Authored by LiquidWorm | Site zeroscience.mk

Teradek VidiU Pro version 3.0.3 change password cross site request forgery exploit.

tags | exploit, csrf
GitBucket 4.23.1 Remote Code Execution / Arbitrary File Read
Posted May 21, 2018
Authored by Kacper Szurek

GitBucket version 4.23.1 suffers from remote code execution and arbitrary file read vulnerabilities.

tags | exploit, remote, arbitrary, vulnerability, code execution
Ubuntu Security Notice USN-3653-1
Posted May 21, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3653-1 - Jann Horn and Ken Johnson discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via a sidechannel attack. This flaw is known as Spectre Variant 4. A local attacker could use this to expose sensitive information, including kernel memory. It was discovered that the netlink subsystem in the Linux kernel did not properly restrict observations of netlink messages to the appropriate net namespace. A local attacker could use this to expose sensitive information. Various other issues were also addressed.

tags | advisory, kernel, local
systems | linux, ubuntu
Ubuntu Security Notice USN-3652-1
Posted May 21, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3652-1 - Jann Horn and Ken Johnson discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via a sidechannel attack. This flaw is known as Spectre Variant 4. A local attacker could use this to expose sensitive information, including kernel memory.

tags | advisory, kernel, local
systems | linux, ubuntu
Ubuntu Security Notice USN-3651-1
Posted May 21, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3651-1 - Ken Johnson and Jann Horn independently discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via sidechannel attacks. An attacker in the guest could use this to expose sensitive guest information, including kernel memory. This update allows QEMU to expose new CPU features added by microcode updates to guests on amd64 and i386.

tags | advisory, kernel
systems | linux, ubuntu
Teradek VidiU Pro 3.0.3 Server-Side Request Forgery
Posted May 21, 2018
Authored by LiquidWorm | Site zeroscience.mk

Teradek VidiU Pro version 3.0.3 suffers from a server-side request forgery vulnerability.

tags | exploit
Debian Security Advisory 4204-1
Posted May 21, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4204-1 - This update fixes several vulnerabilities in imagemagick, a graphical software suite. Various memory handling problems or issues about incomplete input sanitizing would result in denial of service or memory disclosure.

tags | advisory, denial of service, vulnerability
systems | linux, debian
VMware Security Advisory 2018-0013
Posted May 21, 2018
Authored by VMware | Site vmware.com

VMware Security Advisory 2018-0013 - VMware Workstation and Fusion updates address signature bypass and multiple denial-of-service vulnerabilities.

tags | advisory, vulnerability
Debian Security Advisory 4205-1
Posted May 21, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4205-1 - This is an advance notice that regular security support for Debian GNU/Linux 8 (code name "jessie") will be terminated on the 17th of June.

tags | advisory
systems | linux, debian
Merge PACS 7.0 Cross Site Request Forgery
Posted May 21, 2018
Authored by Safak Aslan

Merge PACS version 7.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
Oracle Cross Site Scripting
Posted May 21, 2018
Authored by Ismail Tasdelen

eventreg.oracle.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
Model Agency Media House And Media Gallery 1.0 XSS / CSRF / SQL Injection
Posted May 21, 2018
Authored by Borna Nematzadeh

Model Agency Media House and Model Gallery version 1.0 suffers from cross site request forgery, remote SQL injection, and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
Auto Dealership And Vehicle Showroom WebSys 1.0 XSS / CSRF / SQL Injection
Posted May 21, 2018
Authored by Borna Nematzadeh

Auto Dealership and Vehicle Showroom WebSys version 1.0 suffers from cross site request forgery, remote SQL injection, and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
Wchat PHP AJAX Chat Script 1.5 Cross Site Scripting
Posted May 21, 2018
Authored by Borna Nematzadeh

Wchat PHP AJAX Chat Script version 1.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, php, xss
Schneider Electric PLCs Cross Site Request Forgery
Posted May 21, 2018
Authored by t4rkd3vilz

Schneider Electric PLCs suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
Adobe Experience Manager (AEM) Remote Code Execution
Posted May 20, 2018
Authored by StaticFlow

Default credentials in Adobe Experience Manager (AEM) versions prior to 6.3 can lead to remote code execution.

tags | exploit, remote, code execution
D-Link DSL-3782 Authentication Bypass
Posted May 20, 2018
Authored by Giulio Comi

D-Link DSL-3782 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
Easy MPEG To DVD Burner 1.7.11 Buffer Overflow
Posted May 20, 2018
Authored by Juan Prescotto

Easy MPEG to DVD Burner version 1.7.11 local buffer overflow SEH exploit with DEP bypass.

tags | exploit, overflow, local
Joomla EkRishta 2.10 Cross Site Scripting / SQL Injection
Posted May 20, 2018
Authored by Sina Kheirkhah

Joomla EkRishta component version 2.10 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
mySCADA myPRO 7 Hardcoded Credentials
Posted May 20, 2018
Authored by Emre AVANA

mySCADA myPRO version 7 has a hardcoded FTP username and password.

tags | exploit
Gentoo Linux Security Advisory 201805-06
Posted May 20, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201805-6 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in privilege escalation. Versions less than 66.0.3359.170 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
Reliable Datagram Sockets (RDS) Privilege Escalation
Posted May 19, 2018
Authored by Dan Rosenberg, Brendan Coles | Site metasploit.com

This Metasploit module exploits a vulnerability in the rds_page_copy_user function in net/rds/page.c (RDS) in Linux kernel versions 2.6.30 to 2.6.36-rc8 to execute code as root (CVE-2010-3904). This Metasploit module has been tested successfully on Fedora 13 (i686) with kernel version 2.6.33.3-85.fc13.i686.PAE and Ubuntu 10.04 (x86_64) with kernel version 2.6.32-21-generic.

tags | exploit, kernel, root
systems | linux, fedora, ubuntu
View Older Files →

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

Recent News

News RSS Feed
Teen Phone Monitoring App Leaked Thousands Of Passwords
Posted May 21, 2018

tags | headline, privacy, phone, data loss, password, spyware
Google Offers Free DDoS Protection Services For Democracy
Posted May 21, 2018

tags | headline, government, denial of service, google
Blunder Burns Unicorn Attack That Exploited Windows And Reader
Posted May 20, 2018

tags | headline, hacker, malware, microsoft, flaw, adobe
Fake Fortnite Malware Apps Are Spreading
Posted May 19, 2018

tags | headline, malware
Cambridge Analytica Starts Bankruptcy Proceedings In US
Posted May 19, 2018

tags | headline, government, privacy, usa, britain, fraud, facebook
Mirai Botnet Adds Three New Attacks To Target IoT Devices
Posted May 19, 2018

tags | headline, malware, botnet
A Congressional Debate Was Hacked To Show Gay Porn
Posted May 19, 2018

tags | headline, hacker, government, usa
MEPs To Press Zuckerberg On Facebook Privacy
Posted May 18, 2018

tags | headline, government, privacy, facebook
Oh, Great, Now There's A Second Rowhammer Exploit
Posted May 18, 2018

tags | headline, flaw, intel
Alleged CIA Leaker Joshua Schulte Has World's Worst Opsec
Posted May 18, 2018

tags | headline, government, usa, data loss, cia
View More News →

File Archive:

May 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    15 Files
  • 2
    May 2nd
    17 Files
  • 3
    May 3rd
    30 Files
  • 4
    May 4th
    29 Files
  • 5
    May 5th
    2 Files
  • 6
    May 6th
    3 Files
  • 7
    May 7th
    13 Files
  • 8
    May 8th
    27 Files
  • 9
    May 9th
    17 Files
  • 10
    May 10th
    15 Files
  • 11
    May 11th
    8 Files
  • 12
    May 12th
    2 Files
  • 13
    May 13th
    8 Files
  • 14
    May 14th
    7 Files
  • 15
    May 15th
    43 Files
  • 16
    May 16th
    19 Files
  • 17
    May 17th
    16 Files
  • 18
    May 18th
    15 Files
  • 19
    May 19th
    3 Files
  • 20
    May 20th
    6 Files
  • 21
    May 21st
    15 Files
  • 22
    May 22nd
    3 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

News Tags

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close