Exploit the possiblities
Showing 51 - 75 of 40,494 RSS Feed

Exploit Files

ABRT raceabrt Privilege Escalation
Posted Feb 15, 2018
Authored by Tavis Ormandy | Site metasploit.com

This Metasploit module attempts to gain root privileges on Fedora systems with a vulnerable version of Automatic Bug Reporting Tool (ABRT) configured as the crash handler. A race condition allows local users to change ownership of arbitrary files (CVE-2015-3315). This Metasploit module uses a symlink attack on '/var/tmp/abrt/*/maps' to change the ownership of /etc/passwd, then adds a new user with UID=0 GID=0 to gain root privileges. Winning the race could take a few minutes. This Metasploit module has been tested successfully on ABRT packaged version 2.1.5-1.fc19 on Fedora Desktop 19 x86_64, 2.2.1-1.fc19 on Fedora Desktop 19 x86_64 and 2.2.2-2.fc20 on Fedora Desktop 20 x86_64. Fedora 21 and Red Hat 7 systems are reportedly affected, but untested.

tags | exploit, arbitrary, local, root
systems | linux, redhat, fedora
advisories | CVE-2015-3315
MD5 | 3c4dcedecdad12c4db50bc8906bc04a4
Tejari Cross Site Request Forgery
Posted Feb 15, 2018
Authored by Arvind Vishwakarma

Tejari suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | a59cecaf6498c59812a827c45407dcef
Microsoft Edge Chakra JIT NewScObjectNoCtor Array Type Confusion
Posted Feb 15, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra JIT suffers from an array type confusion via NewScObjectNoCtor.

tags | exploit
advisories | CVE-2018-0838
MD5 | b346efc94524402d160194830a4e23a7
Microsoft Edge UnmapViewOfFile ACG Bypass
Posted Feb 15, 2018
Authored by Ivan Fratric, Google Security Research

Microsoft Edge suffers from an ACG bypass using UnmapViewOfFile.

tags | exploit
MD5 | 00e8f8ad6ea4b8b6fa4ff8c9f691a03a
Microsoft Edge Chakra JIT Incomplete Fix
Posted Feb 15, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra JIT suffers from a bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2018-0770
MD5 | a1bcc09777f48b460ea48c8fe2b4e014
Microsoft Edge Chakra JIT Array.prototype.reverse Array Type Confusion
Posted Feb 15, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra JIT from an array type confusion via Array.prototype.reverse.

tags | exploit
advisories | CVE-2018-0835
MD5 | ec83af991398b5a16f596517c5cffe53
Pdfium Shading Pattern Out-Of-Bounds Read
Posted Feb 15, 2018
Authored by Google Security Research, Mark Brand

Pdfium suffers from an out-of-bounds read vulnerability with shading pattern backed by pattern colorspace.

tags | exploit
MD5 | e26113bd8551c52b88a243b79666f8aa
Microsoft Edge Chakra JIT Escape Analysis Bug
Posted Feb 15, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra JIT escape analysis bug #2.

tags | exploit
advisories | CVE-2018-0860
MD5 | 95ea3c7500bedcd3b29eea81e6d8b9de
Pdfium Pattern Shading Integer Overflow
Posted Feb 15, 2018
Authored by Google Security Research, Mark Brand

Pdfium suffers from integer overflow vulnerabilities in pattern shading.

tags | exploit, overflow, vulnerability
MD5 | 8249e633f7fb1bb2b541a3a9f968bfb2
Microsoft Edge Chakra JIT LdThis Type Confusion
Posted Feb 15, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra JIT suffers from an LdThis type confusion vulnerability.

tags | exploit
advisories | CVE-2018-0837
MD5 | 24f96c408071fcd626fc4ff4726c8d8d
Chrome V8 Runtime_RegExpReplace Integer Overflow
Posted Feb 15, 2018
Authored by Google Security Research, lokihardt

Chrome V8 suffers from a Runtime_RegExpReplace integer overflow vulnerability.

tags | exploit, overflow
MD5 | 6eecead5f17d54fb399a387633a037f1
Dell EMC Isilon OneFS XSS / Code Execution / CSRF
Posted Feb 14, 2018
Authored by Core Security Technologies, Ivan Huertas, Maximiliano Vidal | Site coresecurity.com

Dell EMC Isilon OneFS suffers from code execution, cross site request forgery, and cross site scripting vulnerabilities.

tags | exploit, vulnerability, code execution, xss, csrf
advisories | CVE-2018-1186, CVE-2018-1187, CVE-2018-1188, CVE-2018-1189, CVE-2018-1201, CVE-2018-1202, CVE-2018-1203, CVE-2018-1204, CVE-2018-1213
MD5 | 035ddfcb8a7d024e325b9f233a3d9bcf
NAT32 Build 22284 Remote Command Execution / CSRF
Posted Feb 14, 2018
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

NAT32 build 22284 suffers from code execution and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, code execution, csrf
advisories | CVE-2018-6941
MD5 | 49c0a8a084c7998bc4e286750e176f76
TypeSetter CMS 5.1 Cross Site Request Forgery
Posted Feb 14, 2018
Authored by Navina Asrani

TypeSetter CMS version 5.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-6888
MD5 | c3781a44eff5184539eb3e3e64a5512f
NAT32 Build 22284 Remote Command Execution
Posted Feb 14, 2018
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

NAT32 Build 22284 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2018-6940
MD5 | d782ad11ffc709c5a0e961ea5e585448
WordPress UltimateMember 2.0 Cross Site Scripting
Posted Feb 14, 2018
Authored by Aloyce J. Makalanga

WordPress UltimateMember plugin version 2.0 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2018-6944, CVE-2018-6943
MD5 | ad31bc4c93b7bee1d023747d80c17ee9
userSpice 4.3 Cross Site Scripting
Posted Feb 14, 2018
Authored by Dolev Farhi

userSpice version 4.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d5da674ca1fb9724ff316f704c021b3a
SOA School Management Remote SQL Injection
Posted Feb 14, 2018
Authored by Borna Nematzadeh

SOA School Management suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a9a4654f5a03838a5ddc5cf5ccbf9410
Social Oauth Login PHP SQL Injection
Posted Feb 14, 2018
Authored by Borna Nematzadeh

Social Oauth Login PHP suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, php, sql injection
MD5 | 50c6d42d491cdd52647e23330f7ba0bf
GNU binutils 2.26.1 Integer Overflow
Posted Feb 14, 2018
Authored by r4xis

GNU binutils version 2.26.1 suffers from an integer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2018-6323
MD5 | 86e073dd65878eceaa6cd4bdecdc45cf
Microsoft Intune App PIN Bypass
Posted Feb 13, 2018
Authored by Stephan Sekula

Compass Security discovered a design weakness in Microsoft Intune's app protection. This weakness allows a malicious user that gets hold of an employee's iOS device to access company data even without knowing the app PIN.

tags | exploit
systems | cisco, ios
MD5 | c46a3d6ea1c728f1cb1a8de7ee96f1f7
TypeSetter CMS 5.1 Host Header Injection
Posted Feb 13, 2018
Authored by Navina Asrani

TypeSetter CMS version 5.1 suffers from a host header injection vulnerability.

tags | exploit
advisories | CVE-2018-6889
MD5 | 79728f4462823cdf8b70681c903c52e5
News Website Script 2.0.4 SQL Injection
Posted Feb 13, 2018
Authored by Varun Bagaria

News Website Script version 2.0.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7a4bb6574c7180e2cf83c47bc96e4aa3
dotCMS SQL Injection
Posted Feb 13, 2018
Authored by Elar Lang

dotCMS versions prior to 4.1.1 suffer from remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
advisories | CVE-2016-10007, CVE-2016-10008
MD5 | 051378d5d7710f66ec2e4258a92e4061
CloudMe Sync 1.10.9 Remote Buffer Overflow
Posted Feb 12, 2018
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

CloudMe Sync versions 1.10.9 and below suffer from an unauthenticated remote buffer overflow vulnerability.

tags | exploit, remote, overflow
advisories | CVE-2018-6892
MD5 | e6cc573f3f01ea0671021866a42d3b05
Page 3 of 1,620
Back12345Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

February 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    15 Files
  • 2
    Feb 2nd
    15 Files
  • 3
    Feb 3rd
    15 Files
  • 4
    Feb 4th
    13 Files
  • 5
    Feb 5th
    16 Files
  • 6
    Feb 6th
    15 Files
  • 7
    Feb 7th
    15 Files
  • 8
    Feb 8th
    15 Files
  • 9
    Feb 9th
    18 Files
  • 10
    Feb 10th
    8 Files
  • 11
    Feb 11th
    8 Files
  • 12
    Feb 12th
    17 Files
  • 13
    Feb 13th
    15 Files
  • 14
    Feb 14th
    15 Files
  • 15
    Feb 15th
    17 Files
  • 16
    Feb 16th
    18 Files
  • 17
    Feb 17th
    37 Files
  • 18
    Feb 18th
    2 Files
  • 19
    Feb 19th
    16 Files
  • 20
    Feb 20th
    6 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close