安全文章 / 文章资料 / Exploits

首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

热门关键字：　shell 　88888 　art 　vitter 　linux

		当前位置：主页>安全文章>文章资料>Exploits>列表


	Audiograbber 1.83 - Local Buffer Overflow (SEH)
	日期：2018-06-28 15:05:18 点击：25 评论：0
# Exploit Title: Audiograbber 1.83 - Local Buffer Overflow (SEH) # Date: 2018-06-16 # Exploit Author: Dennis 'dhn' Herrmann # Vendor Homepage: https://www.audiograbber.org/ # Version: 1.83 # Tested on: Windows 7 SP1 (x86) #!/usr/bin/env python # $Id:


	Pale Moon Browser < 27.9.3 - Use After Free (PoC)
	日期：2018-06-28 15:04:20 点击：26 评论：0
# Exploit Title: Pale Moon Browser 27.9.3 - Use After Free (PoC) # Date: 2018-06-13 # Author - Berk Cem Goksel # Vendor Homepage: https://www.palemoon.org/ # Software Link: https://www.palemoon.org/palemoon-win32.shtml # Version: Versions prior to 27


	Nikto 2.1.6 - CSV Injection
	日期：2018-06-28 15:02:49 点击：31 评论：0
# Exploit Title: Nikto 2.1.6 - CSV Injection # Google Dork: N/A # Date: 2018-06-01 # Exploit Author: Adam Greenhill # Vendor Homepage: https://cirt.net/Nikto2 # Software Link: https://github.com/sullo/nikto # Affected Version: 2.1.6, 2.1.5 # Category


	Soroush IM Desktop App 0.15 (beta) - Authentication Bypass
	日期：2018-06-28 15:01:57 点击：94 评论：0
# Exploit Title: Soroush IM Desktop app 0.15 - Authentication Bypass # Date: 2018-06-13 # Exploit Author: VortexNeoX64 # Vendor Homepage: https://soroush-app.ir # Software Link: https://soroush-app.ir/UploadedData/Soroush.exe # Version: 0.15 BETA # T


	rtorrent 0.9.6 - Denial of Service
	日期：2018-06-28 15:01:12 点击：82 评论：0
# Exploit Title: rtorrent 0.9.6 - Denial of Service # Date: 2018-01-10 # Exploit Author: ecx86 # Vendor Homepage: http://rtorrent.net # Software Link: https://github.com/rakshasa/rtorrent/releases # Version: = 0.9.6 # Tested on: Debian GNU/Linux 9.4


	DHCP Client - Command Injection 'DynoRoot' (Metasploit)
	日期：2018-06-28 15:00:21 点击：36 评论：0
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::DHCPServer def


	glibc - 'realpath()' Privilege Escalation (Metasploit)
	日期：2018-06-28 14:58:32 点击：46 评论：0
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule Msf::Exploit::Local Rank = NormalRanking include Msf::Post::File include Msf::Post::Linux


	WebKitGTK+ < 2.21.3 - 'WebKitFaviconDatabase' DoS
	日期：2018-06-12 15:43:43 点击：51 评论：0
## # Title: WebKitGTK+ 2.21.3 - 'WebKitFaviconDatabase' DoS # Author: Dhiraj Mishra # Date: 2018-06-11 # CVE: 2018-11646 # # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-frame


	Gnome Web (Epiphany) Denial Of Service
	日期：2018-06-11 17:57:20 点击：59 评论：0
# Title: Gnome Web/Epiphany Browser 3.28.2.1 - DoS App Crash (PoC)# Exploit Author: https://github.com/ldpreload# Date: 2018-06-06# Link: https://wiki.gnome.org/Apps/Web# Version: 3.28.2.1 ! libephymain.so in GNOME WEB/Epiphany 3.28.2.1 allows a rem


	Chrome V8 PromiseAllResolveElementClosure Element Confusion
	日期：2018-06-11 17:56:33 点击：27 评论：0
Chrome: V8: PromiseAllResolveElementClosure can cause elements kind confusion The Promise.all method internally uses PromiseAllResolveElementClosure (a href=https://cs.chromium.org/chromium/src/v8/src/builtins/builtins-promise-gen.cc?rcl=dc2d3bb9711


	Microsoft Windows 10 scrrun.dll Active-X Creation / Deletion Issues
	日期：2018-06-11 17:39:13 点击：69 评论：0
# Title: Windows 10 'scrrun.dll' Multiple vulnerabilities# Author: Nassim Asrir# Contact: wassline@gmail.com / https://www.linkedin.com/in/nassim-asrir-b73a57122/# Vendor: https://www.microsoft.com/Test ENV:========Browser : IE 11 OS: Windows 10 - x


	XiongMai uc-httpd 1.0.0 - Buffer Overflow
	日期：2018-06-11 17:38:03 点击：44 评论：0
# Exploit Title: XiongMai uc-httpd 1.0.0 - Buffer Overflow # Date: 2018-06-08 # Exploit Author: Andrew Watson # Software Version: XiongMai uc-httpd 1.0.0 # Vendor Homepage: http://www.xiongmaitech.com/en/ # Tested on: KKMoon DVR running XiongMai uc-


	WebKit - Use-After-Free when Resuming Generator
	日期：2018-06-11 17:36:23 点击：21 评论：0
!-- In WebKit, resuming a generator is implemented in JavaScript. An internal object property, @generatorState is used to prevent recursion within generators. In GeneratorPrototype.js, the state is checked by calling: var state = this.@generatorStat


	Google Chrome - Integer Overflow when Processing WebAssembly Locals
	日期：2018-06-11 17:35:30 点击：29 评论：0
/* When v8 decodes the locals of a function, it performs a check: if ((count + type_list-size()) kV8MaxWasmFunctionLocals) { decoder-error(decoder-pc() - 1, local count too large); return false; } On a 32-bit platform, this check can be bypassed due


	WebKit - WebAssembly Compilation Info Leak
	日期：2018-06-11 17:34:36 点击：30 评论：0
!-- There is an out-of-bounds read when compiling WebAssembly source buffers in WebKit. When a source buffer is compiled, it is first copied into a read-only buffer by the functuion getWasmBufferFromValue. This function returns the code buffer as fol


	TrendMicro OfficeScan XG 11.0 - Change Prevention Bypass
	日期：2018-06-11 17:33:17 点击：25 评论：0
[+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/TRENDMICRO-OFFICESCAN-XG-v11.0-UNAUTHORIZED-CHANGE-PREVENTION-SERVICE-BYPASS.txt [+] ISR: Apparition Security ***Greet


	Apple macOS/iOS Kernel - Heap Overflow Due to Lack of Lower Size Check in getvol
	日期：2018-06-11 17:31:52 点击：31 评论：0
/* getvolattrlist takes a user controlled bufferSize argument via the fgetattrlist syscall. When allocating a kernel buffer to serialize the attr list to there's the following comment: /* * Allocate a target buffer for attribute results. * Note that


	Apple macOS Kernel - Use-After-Free Due to Lack of Locking in nvidia GeForce Dri
	日期：2018-06-11 17:31:13 点击：33 评论：0
/* nvDevice::SetAppSupportBits is external method 0x107 of the nvAccelerator IOService. It calls task_deallocate without locking. Two threads can race calling this external method to drop two task references when only one is held. Note that the repro


	PHP 7.2.2 - 'php_stream_url_wrap_http_ex' Buffer Overflow
	日期：2018-06-11 17:25:54 点击：102 评论：0
Description: ------------ The latest PHP distributions contain a memory corruption bug while parsing malformed HTTP response packets. Vulnerable code at: php_stream_url_wrap_http_ex /home/weilei/php-7.2.2/ext/standard/http_fopen_wrapper.c:723 if (tmp


	WebKitGTK+ < 2.21.3 - Crash (PoC)
	日期：2018-06-11 17:24:30 点击：25 评论：0
# Title: WebKitGTK+ 2.21.3 - Crash (PoC) # Author: Dhiraj Mishra # Date: 2018-06-05 # Software: https://webkitgtk.org/ # CVE: CVE-2018-11646 # Summary: # webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in # UIProc

共637页/12733条记录首页上一页 [26] [27] [28] 29 [30] [31] [32] 下一页末页

本月热点文章

本月推荐文章

相关分类

Exploits

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved