This Metasploit module exploits CVE-2020-1054, an out of bounds write reachable from DrawIconEx within win32k. The out of bounds write can be used to overwrite the pvbits of a SURFOBJ. By utilizing this vulnerability to execute controlled writes to kernel memory, an attacker can gain arbitrary code execution as the SYSTEM user. This module has been tested against a fully updated Windows 7 x64 SP1. Offsets within the exploit code may need to be adjusted to work with other versions of Windows.
a2dcd90d07d8ceca312311ee5cfc7a43Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.
9e7399c5944f88ee9afc3364c765d2a3Red Hat Security Advisory 2020-5437-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include buffer over-read and null pointer vulnerabilities.
a9adb00fdf3060ebc8ad1db7ead3643dRed Hat Security Advisory 2020-5453-01 - The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Issues addressed include a bypass vulnerability.
b4a93cbe7feddaa610fd869f5a2f9e43Qualcomm Adreno GPU PID reuse can lead to a shared mapping leak vulnerability.
35acf4ac51c404442520651898879148Solaris SunSSH versions 10 through 11.0 on x86 libpam remote root exploit.
8fbea7fde1a23252954cc85134e98724Red Hat Security Advisory 2020-5434-01 - The targetcli package contains an administration shell for configuring Internet Small Computer System Interface, Fibre Channel over Ethernet, and other SCSI targets, using the Target Core Mod/Linux-IO kernel target subsystem. FCoE users also need to install and use the fcoe-utils package.
02b3a817779e433309bbe12539106befAlumni Management System version 1.0 suffers from a remote shell upload vulnerability.
58e5a6073467f6ef3371ca7df9cb3f1bRed Hat Security Advisory 2020-5439-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. Issues addressed include a memory leak vulnerability.
09ad68c5da84561a3ab39c5abc59b5c7Gitlab version 11.4.7 authenticated remote code execution exploit.
a36b219bfdec49346a92f4b0b0fb2c32Red Hat Security Advisory 2020-5443-01 - GD is an open source code library for the dynamic creation of images by programmers. GD creates PNG, JPEG, GIF, WebP, XPM, BMP images, among other formats. Issues addressed include heap overflow and integer overflow vulnerabilities.
448530d61ca769dd4d0cb7b8f4d986dclibbabl version 0.1.62 broken double-free detection proof of concept exploit.
8f0462ded515b336ad89248fa739c3adRed Hat Security Advisory 2020-5441-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a buffer over-read vulnerability.
1fa9786d8c7f010130f92053363a7d32PHPJabbers Appointment Scheduler 2.3 suffers from a cross site scripting vulnerability.
4724272dad99ec23c01c10b8be8c1633Red Hat Security Advisory 2020-5435-01 - The python-rtslib package provides a Python library to configure the kernel target subsystem, using the configfs file system.
56d1d50074fe127fb1d660e83103422cTask Management System version 1.0 suffers from a local file inclusion vulnerability.
34b7e2cf93770d5be340a0dc747d2533Red Hat Security Advisory 2020-5422-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library. Issues addressed include a null pointer vulnerability.
588ab13976fae7accde7976fc5ed2d08Red Hat Security Advisory 2020-5416-01 - The linux-firmware packages contain all of the firmware files that are required by various devices to operate. Issues addressed include a buffer overflow vulnerability.
d5930d53acabf232a39bfa0ec6bba585Cisco ASA version 9.14.1.10 and FTD version 6.6.0.1 path traversal exploit. Original discovery of this vulnerability is attributed to 3ndG4me in October of 2020.
7cf23b4f5854a2f296a17705db8fae41Red Hat Security Advisory 2020-5418-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.
b296e93ac28fdd884df21d55fe6e12d9Red Hat Security Advisory 2020-5430-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include out of bounds write and use-after-free vulnerabilities.
c896c8f848b67edef1480cb39f3ee884Red Hat Security Advisory 2020-5420-01 - The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl Management Information Base browser.
1cfbc017c0d01b8d386cfbe7ab5d5b00Online Marriage Registration System version 1.0 authenticated remote code execution exploit. Original discovery of remote code execution in this version was discovered by Selim Enes Karaduman.
b2e2851076deae38beb369428e4efccfRed Hat Security Advisory 2020-5417-01 - The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP.
ed3b8867e3ce2e9d660210cfcc6a644bRed Hat Security Advisory 2020-5423-01 - The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Issues addressed include a bypass vulnerability.
d926c7696d9a762d6499f87ef0ae8e38
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed