This Metasploit module exploits a vulnerability found in the ActiveX component of Adobe Flash Player before 12.0.0.43. By supplying a specially crafted swf file it is possible to trigger an integer underflow in several avm2 instructions, which can be turned into remote code execution under the context of the user, as exploited in the wild in February 2014. This Metasploit module has been tested successfully with Adobe Flash Player 11.7.700.202 on Windows XP SP3, Windows 7 SP1 and Adobe Flash Player 11.3.372.94 on Windows 8 even when it includes rop chains for several Flash 11 versions, as exploited in the wild.
594482f5a1c495d45be1ca68abe48c4f709881980182d2ec20827c5366645e8cA kernel pool overflow in Win32k which allows local privilege escalation. The kernel shellcode nulls the ACL for the winlogon.exe process (a SYSTEM process). This allows any unprivileged process to freely migrate to winlogon.exe, achieving privilege escalation. Used in pwn2own 2013 by MWR to break out of chrome's sandbox. NOTE: when you exit the meterpreter session, winlogon.exe is likely to crash.
029ce3aa761be432ed6f02ed2e5c43c401df5d87b251095db17f6f35430afe2dDebian Linux Security Advisory 2919-1 - Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to the new upstream version 5.5.37.
211d33cf4a0a9147a0a333d44965721999cae6a447df9efeff68784435350348This article goes into detail on how to overflow a custom heap in Microsoft Windows 7.
da85d1c71e43d3dd424e4a8554fff860e473083210aa9ad816da6ab171e9b515Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
9ee201497b61acfe2ef935d54175bd483734c536dd31eb5546342f92e45f156eUbuntu Security Notice 2192-1 - It was discovered that OpenSSL incorrectly handled memory in the ssl3_read_bytes() function. A remote attacker could use this issue to possibly cause OpenSSL to crash, resulting in a denial of service. It was discovered that OpenSSL incorrectly handled memory in the do_ssl3_write() function. A remote attacker could use this issue to possibly cause OpenSSL to crash, resulting in a denial of service. Various other issues were also addressed.
275431746e43cff91915528da806fe69dd0de9ee54ae7335cd4e1f427641f08eGentoo Linux Security Advisory 201405-5 - Multiple buffer overflows in Asterisk might allow remote attackers to cause a Denial of Service condition. Versions less than 11.8.1 are affected.
e20cf599e40bf35f9126ba11837927f5dd4e6a0416456a5084e6042d42786582Gentoo Linux Security Advisory 201405-4 - Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which could result in execution of arbitrary code. Versions less than 11.2.202.356 are affected.
0d7538b1fc88d9f551a8f8fe917a6f977547e11bef85ff305bbd08eb214e0514Gentoo Linux Security Advisory 201405-3 - Two vulnerabilities have been found in WeeChat, the worst of which may allow execution of arbitrary code. Versions less than 0.3.9.2 are affected.
234a8401e1342ba2fca266d29b5f2e44dac59feca4adaab5bfc0792b304fcdd9Gentoo Linux Security Advisory 201405-2 - A vulnerability in libSRTP can result in a Denial of Service condition. Versions less than 1.4.4_p20121108-r1 are affected.
736863b3241e6336b6f24e5f4fe2c1f3ab925b1724a07863dc328f67403f4789NTP distributed denial of service amplification tool that uses "get monlist".
baaf6320ad214e35e7a2b7a7eb5035f1c589187e476175621d453bc6419fc028AIEngine is a packet inspection engine with capabilities of learning without any human intervention. It helps network/security professionals to identify traffic and develop signatures for use them on NIDS, Firewalls, Traffic classifiers and so on.
e94469937713b4c3fbb5b9d5de13697472c17e92dfea99328051cec5132d8d4aHeartbleed Analysis Daemon (hbad) is a tool that allows you to test clients that may be vulnerable to Heartbleed. Included is the release and the documentation pdf.
b6cc48397f33fb0d902c59fe2fa72734963d6e762b355d131f3ed215db958beaKM Player version 3.8.0.123 suffers from an AVI file handling stack buffer overflow vulnerability.
af348d8849e4df2ae9ce1c043d509dc634be01b6efe7ea42bd6d4b975fcaba79Team Helpdesk Customer Web Service (CWS) and Technician Web Access (TWA) version 8.3.5 credential dump exploits that produce encrypted pairs. Decryption scripts are also included.
b55a0fca18653e17666a9e18f599993836259cbba81d9aa9c67cde5f0dde607bWordPress Flexolio plugin suffers from cross site scripting, denial of service, path disclosure, abuse of functionality, and arbitrary file upload vulnerabilities.
1c71e41e685661e1a0998430a82bd15735d3cdf70cf628becdd315daeb2ccd40Digital Access Pass suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
3990138978a83309b158d03bc2bc1e7b74a6f4d0df1fd1a0a2e832d9d130360aPrestaShop version 1.6.0 suffers from a remote blind SQL injection vulnerability.
68d7b349624851fe1d3f459e64c8cffef293ee6c4e97380ea1a9a14056024e8fK-Lite CODEC version 9.x suffers from a memory corruption vulnerability.
44823f937308937c93383078a461917543f4d74d0cb64b3abc607d678365a591CMS HINTWEB suffers from cross site scripting and remote blind SQL injection vulnerabilities. Note that this finding houses site-specific data.
0b39f5e0aed97424fec875621406f87187076bc69ba0234a168c7789aded22f4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed