seeing is believing
Showing 1 - 16 of 16 RSS Feed

Files Date: 2015-09-14

TP-Link NC200/NC220 Cloud Camera 300Mbps Wi-Fi Hard-Coded Credentials
Posted Sep 14, 2015
Authored by LiquidWorm | Site zeroscience.mk

NC220 and NC200 utilizes hard-coded credentials within its Linux distribution image. These sets of credentials (root:root) are never exposed to the end-user and cannot be changed through any normal operation of the camera.

tags | exploit, root
systems | linux
MD5 | b000d0d2fd95d9080c242d60f7c7d3e3
IKEView.exe Feature Pack NGX R60 - Build 591000004 Buffer Overflow
Posted Sep 14, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

IKEView.exe is vulnerable to local stack based buffer overflow when parsing an malicious (internet key exchange) ".elg" file. Vulnerability causes nSEH & SEH pointer overwrites at 4432 bytes after IKEView parses our malicious file, which may result then result in arbitrary attacker supplied code execution.

tags | exploit, overflow, arbitrary, local, code execution
MD5 | 7c9fa9f4f5f3a4157ee975c50f6c98ad
Openfire 3.10.2 Cross Site Request Forgery
Posted Sep 14, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Openfire version 3.10.2 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2015-6973
MD5 | 10c4b2ce9a3844781caa988918954e32
Windows Type-Confusion / Memory Corruption
Posted Sep 14, 2015
Authored by Google Security Research, matttait

The Windows Kernel is subject to two related kernel-mode type-confusion vulnerabilities inside win32k!xxxRemoteReconnect. In both cases, a user-mode parameter passed to the syscall is incorrectly resolved to its underlying kernel representation via ObReferenceObjectByHandle passing NULL as the "ObType" field (rather than *IoFileTypeObject and *IoDeviceTypeObject respectively). Because the type is not checked, if a handle of a type other than a HANDLE to a file and a device are passed, the kernel incorrectly uses the underlying representation of the object as a PFILE_OBJECT and a PDEVICE_OBJECT, causing memory corruption in the kernel.

tags | advisory, kernel, vulnerability
systems | linux, windows
MD5 | c3343a96314567c632a5e8edeb6a6e95
OS X Suid Privilege Escalation
Posted Sep 14, 2015
Authored by Google Security Research, ianbeer

The Install.framework runner suid root binary does not correctly account for the fact that Distributed Objects can be connected to by multiple clients at the same time. By connecting two proxy objects to an IFInstallRunner and calling [IFInstallRunner makeReceiptDirAt:asRoot:] in the first and passing a custom object as the directory name we can get a callback to our code just after the makeReceiptDirAt code has called seteuid(0);setguid(0) to regain privs. Since BSD priviledges are per-process this means that our other proxy object will now have euid 0 without having to provide an authorization reference. In this second proxy we can then just call runTaskSecurely and get a root shell before returning from the first proxy's callback function which will then drop privs.

tags | exploit, shell, root
systems | linux, bsd
advisories | CVE-2015-5754
MD5 | 56bffdab05f4e18e4e17316125e04b4e
Typo3 CMS 6.2.14 / 4.5.40 Cross Site Scripting
Posted Sep 14, 2015
Authored by Julien Ahrens

Typo3 CMS versions 6.2.14 and below and 4.5.40 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2015-5956
MD5 | 2fffb26b43aca09bd54b6d7fe280d8db
OS X Privilege Escalation
Posted Sep 14, 2015
Authored by Google Security Research, ianbeer

The private Install.framework has a few helper executables in /System/Library/PrivateFrameworks/Install.framework/Resources, one of which is suid root and exploitable.

tags | exploit, root
systems | linux
advisories | CVE-2015-3704
MD5 | 4b90becda3fbac25e7bb0e5e93b2ac74
Monsta FTP 1.6.2 Cross Site Request Forgery / Cross Site Scripting
Posted Sep 14, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Monsta FTP version 1.6.2 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 3cbde7a6516fa5f1dd8ad329d54ba174
OS X Install.framework Suid Root Binary
Posted Sep 14, 2015
Authored by Google Security Research, ianbeer

Install.framework has a suid root binary at /System/Library/PrivateFrameworks/Install.framework/Resources/runner that allows for arbitrary mkdir, unlink, and chown.

tags | exploit, arbitrary, root
systems | linux
advisories | CVE-2015-5784
MD5 | 1dcaf53141a4b96120590efddce2dd04
IKEView.exe Fox Beta 1 Buffer Overflow
Posted Sep 14, 2015
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

IKEView.exe is vulnerable to local stack based buffer overflow when parsing an malicious (internet key exchange) ".elg" file.

tags | exploit, overflow, local
MD5 | d23826b8548a32eace399aa3cac2f3c2
POC OR GTFO 0x09
Posted Sep 14, 2015
Authored by pocgtfo

This is the ninth issue of POC || GTFO.

tags | magazine
MD5 | 4dc7e88a1f88df3f169245af8c148bde
Magento 1.9.2 File Inclusion
Posted Sep 14, 2015
Authored by EgiX

Magento versions 1.9.2 and below suffer from an autoloaded file inclusion vulnerability.

tags | exploit, file inclusion
advisories | CVE-2015-6497
MD5 | 0d483734c211446d05ddbd10b09fa487
OpenLDAP 2.4.42 Denial Of Service
Posted Sep 14, 2015
Authored by Denis Andzakovic | Site security-assessment.com

OpenLDAP versions 2.4.42 and below suffer from a remote denial of service vulnerability.

tags | exploit, remote, denial of service
MD5 | 989cba86d6d800f5d37d5d93587a4630
Silver Peak VX Command Injection / Shell Upload / File Read
Posted Sep 14, 2015
Authored by Daniel Jensen | Site security-assessment.com

Silver Peak VX virtual appliance running VXOA before version 6.2.11 contains a number of security vulnerabilities, including command injection, unauthenticated file read, mass assignment, shell upload, and hardcoded credentials. By combining these vulnerabilities, an attacker may remotely obtain root privileges on the underlying host.

tags | exploit, shell, root, vulnerability
MD5 | af047861e9c6314e6a5254b591dddfa8
Shopify Input Validation
Posted Sep 14, 2015
Authored by Hadji Samir | Site vulnerability-lab.com

Shopify suffered from an input validation vulnerability.

tags | exploit
MD5 | 5d26239122d8518661f437ded1c90287
Magento Cross Site Scripting
Posted Sep 14, 2015
Authored by Hadji Samir | Site vulnerability-lab.com

Magento suffered from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 22469dc107d21113b2654d497dc71087
Page 1 of 1
Back1Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close