Результаты поиска

Apple iOS 10.2 (14C92) - Remote Code Execution Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1317#c3 The exploit achieves R/W access to the host's physical memory. This exploit has been tested on the iPhone 7, iOS 10.2 (14C92). To run the exploit against different devices...

Microsoft Windows 10 - WLDP/MSHTML CLSID UMCI Bypass Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1328 Windows: WLDP/MSHTML CLSID UMCI Bypass Platform: Windows 10 S (thought should be anything with UMCI) Class: Security Feature Bypass Summary: The enlightened lockdown...

Microsoft Edge Chakra JIT - Incorrect GenerateBailOut Calling Patterns /* Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1333 Bailout: "ChakraCore’s background JIT compiler generates highly optimized JIT’ed code based upon the data and infers likely usage patterns based on...

Rancher Server - Docker Daemon Code Execution (Metasploit) ## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include...

OrientDB 2.2.2 < 2.2.22 - Remote Code Execution (Metasploit) ## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = GoodRanking include...

Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution (2) #!/usr/bin/python import requests import re import signal from optparse import OptionParser class bcolors: HEADER = '\033[95m' OKBLUE = '\033[94m' OKGREEN = '\033[92m'...

Unitrends UEB 9.1 - Privilege Escalation # Exploit Title: Authenticated lowpriv RCE for Unitrends UEB 9.1 # Date: 08/08/2017 # Exploit Authors: Benny Husted, Jared Arave, Cale Smith # Contact: https://twitter.com/iotennui || https://twitter.com/BennyHusted || https://twitter.com/0xC413 #...

Metasploit Web UI < 4.14.1-20170828 - Cross-Site Request Forgery # Exploit Title: CSRF # Date: Wed, Aug 30, 2017 # Software Link: https://www.metasploit.com/ # Exploit Author: Dhiraj Mishra # Contact: http://twitter.com/mishradhiraj_ # Website: http://datarift.blogspot.in/ # CVE...

PyroBatchFTP 3.17 - Buffer Overflow (SEH) #!/usr/bin/python print "PyroBatchFTP Local Buffer Overflow (SEH) Server" #Author: Kevin McGuigan @_h3xagram #Author Website: https://www.7elements.co.uk #Vendor Website: https://www.emtech.com #Date: 07/10/2017 #Version: 3.17 #Tested on: Windows 7...

Unitrends UEB 9.1 - 'Unitrends bpserverd' Remote Command Execution # Exploit Title: Unauthenticated root RCE for Unitrends UEB 9.1 # Date: 08/08/2017 # Exploit Authors: Jared Arave, Cale Smith, Benny Husted # Contact: https://twitter.com/iotennui || https://twitter.com/BennyHusted ||...

Unitrends UEB 9.1 - Authentication Bypass / Remote Command Execution # Exploit Title: Unauthenticated root RCE for Unitrends UEB 9.1 # Date: 08/08/2017 # Exploit Authors: Cale Smith, Benny Husted, Jared Arave # Contact: https://twitter.com/iotennui || https://twitter.com/BennyHusted ||...

Dnsmasq < 2.78 - Information Leak ''' Sources: https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14494.py https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html Sadly, there are no easy docker setup instructions...

Dnsmasq < 2.78 - Lack of free() Denial of Service ''' Sources: https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14495.py https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html dnsmasq is vulnerable only if one of...

Dnsmasq < 2.78 - Integer Underflow ''' Sources: https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14496.py https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html dnsmasq is vulnerable only if one of the following...

Dnsmasq < 2.78 - 2-byte Heap Overflow ''' Sources: https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14491.py https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html 1) Build the docker and open three terminals...

Dnsmasq < 2.78 - Heap Overflow ''' Sources: https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14492.py https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html 1) Build the docker and open two terminals docker build...

Dnsmasq < 2.78 - Stack Overflow ''' Sources: https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14493.py https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html 1) Build the docker and open two terminals docker build...

Sync Breeze Enterprise 10.0.28 - Remote Buffer Overflow # Exploit Title: [SyncBreeze POST username overflow] # Date: [30-Sep-2017] # Exploit Author: [Owais Mehtab] # Vendor Homepage: [http://www.syncbreeze.com] # Software Link...

phpCollab 2.5.1 - Arbitrary File Upload # [CVE-2017-6090] PhpCollab 2.5.1 Arbitrary File Upload (unauthenticated) ## Description PhpCollab is an open source web-based project management system, that enables collaboration across the Internet. ## Arbitrary File Upload The phpCollab code does...

Qmail SMTP - Bash Environment Variable Injection (Metasploit) ## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = NormalRanking include...

[Spanish] [eZine] i sh0t the white hat 1 Essential01.pdf

[eZine] i sh0t the white hat 2 Essential02.pdf

[Spanish] [eZine] i sh0t the white hat 3 ezineIII.pdf

HackThisZine (HTZ) #6 - Lets Smash Windows! James C. Settle, founder and head of the FBI's National Computer Crime Squad, ha s said: "I don't think the stuff we are seeing is the stuff we need to be worrie d about. What that acti vity we do see is indicative of, however, is that we hav e a...

HackThisZine (HTZ) #7 "You want a seriously righteous hack you score one of those Gibsons man. You know super computers they use to do physics and look for oil and stuff ... Oh man Wouldn't you just love to get one of those Gibsons, baby!"...