Qualys Security AdvisoryCVE-2017-1000367 in Sudo's get_process_ttyname() for Linux========================================================================Contents========================================================================AnalysisExploit
#!/usr/bin/perl -w#Remote Samba is_known_pipename() ( 3.5.0 to 4.4.14, 4.5.10, and 4.6.4.) Exploit By N_A , N_A[at]tutanota.com#The orginal bug was discovered by steelo knownsteelo[at]gmail.com#CVE-2017-7494#https://www.samba.org/samba/security/CVE-
WebKit: UXSS via CachedFrameBase::restore This is similar to the case a href=https://bugs.chromium.org/p/project-zero/issues/detail?id=1151 title= class= rel=nofollowhttps://bugs.chromium.org/p/project-zero/issues/detail?id=1151/a.But this time, jav
WebKit: UXSS: CachedFrame doesn#39;t detach openers CVE-2017-2528When a document loads about:blank or about:srcdoc, it tries to inherit the security origin from its parent frame, or its opener frame if the parent frame doesn't exist. Normally, it do
WebKit: JSC: incorrect check in emitPutDerivedConstructorToArrowFunctionContextScope CVE-2017-2531When a super expression is used in an arrow function, the following code, which generates bytecode, is called.if (needsToUpdateArrowFunctionContext() !
WebKit: UXSS via Document::prepareForDestruction and CachedFrame Here's a snippet of Document::prepareForDestructionvoid Document::prepareForDestruction(){ if (m_hasPreparedForDestruction) return; ... detachFromFrame(); m_hasPreparedForDestruction =
c@kali:~/src/Napalm2.2/libs$ cat shell-modxcms.py#!/usr/bin/env python# shell-modxcms.py - upload shell for modx 2.5.6-pl# # !! we need rwx in modx-webdir to go ;Z## 30.05.217 @ code610 blogspot com# import requestsimport retarget=raw_input(Hostname
Vulnerabilities Summary The following advisory describes six (6) vulnerabilities found in Informix Dynamic Server and Informix Open Admin Tool. IBM Informix Dynamic Server Exceptional, low maintenance online transaction processing (OLTP) data server
Vulnerability Summary KEMPs main product, the LoadMaster, is a load balancer built on its own proprietary software platform called LMOS, that enables it to run on almost any platform: As a KEMP LoadMaster appliance, a Virtual LoadMaster (VLM) deploye
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1258 MsMpEng's JS engine uses garbage collection to manage the lifetime of Javascript objects. During mark and sweep the GC roots the vectors representing the JS stack as well as a few
#!/usr/bin/python # Exploit Author: Juan Sacco juan.sacco@kpn.com at KPN Red Team - http://www.kpn.com # Developed using Exploit Pack - http://exploitpack.com - jsacco@exploitpack.com # Tested on: Windows 7 32 bits # # Description: TiEmu ( Texas Inst
