linux exploits
Page 1 of 751 exploits
 |
Title | Author | Platform | Source | Description | Date |
|---|---|---|---|---|---|---|
|
nginx 1.3.9-1.4.0 DoS PoC | Mert SARICA | linux | exploit-db.com | Exploit Title: nginx v1.3.9-1.4.0 DOS POC (CVE-2013-2070) Google Dork: CVE-2013-2070 Date: 16.05.2013 Exploit Author: Mert SARICA - mert [ . ] sarica [ @ ] gmail [ . ] com - http://www.mertsarica.com Vendor Homepage: http://nginx.org/ Software Link: http://nginx.org/download/nginx-1 | May 17 |
|
|
Linux Kernel open-time Capability file_ns_capable() Privilege Escalation | Andrew Lutomirski | linux | exploit-db.com |
/* userns_root_sploit.c by */
/* Copyright (c) 2013 Andrew Lutomirski. All rights reserved. */
/* You may use, modify, and redistribute this code under the GPLv2. */
define _GNU_SOURCE
include | May 14 |
|
|
|
Linux PERF_EVENTS - Local Root Exploit | sd | linux | exploit-db.com | /* * linux 2.6.37-3.x.x x86_64, ~100 LOC * gcc-4.6 -O2 semtex.c && ./a.out * 2010 sd@fucksheep.org, salut! * * update may 2013: * seems like centos 2.6.32 backported the perf bug, lol. * jewgold to 115T6jzGrVMgQ2Nt1Wnua7Ch1EuL9WXT2g if you insist. */ define _GNU_SOURCE 1 includ | May 14 |
|
|
No-IP Dynamic Update Client (DUC) 2.1.9 - Local IP Address Stack Overflow | Alberto Ortega | linux | exploit-db.com | !/usr/bin/env python Title: No-IP Dynamic Update Client (DUC) 2.1.9 local IPaddress stack overflow Author: Alberto Ortega @a0rtega alberto[@]pentbox[.]net Date: May 11 2013 (vulnerability discovered) Background: No-IP is probably the most used Dynamic DNS provide | May 13 |
|
|
Kloxo 6.1.6 - Local Privilege Escalation | HTP | linux | exploit-db.com | !/bin/sh Exploit Title: Kloxo Local Privilege Escalation Google Dork: inurl:kiddies Date: August 2012 or so Exploit Author: HTP Vendor Homepage: http://lxcenter.org/ Software Link: [download link if available] Version: 6.1.6 (Latest) Tested on: CentOS 5 CVE : None This | May 13 |
|
|
Linux Kernel open-time Capability file_ns_capable() - Privilege Escalation Vulnerability | Andrew Lutomirski | linux | exploit-db.com |
/* userns_root_sploit.c by */
/* Copyright (c) 2013 Andrew Lutomirski. All rights reserved. */
/* You may use, modify, and redistribute this code under the GPLv2. */
define _GNU_SOURCE
include | May 8 |
|
|
|
Dovecot with Exim sender_address Parameter - Remote Command Execution | RedTeam Pentestin. | linux | exploit-db.com | Advisory: Exim with Dovecot: Typical Misconfiguration Leads to Remote Command Execution During a penetration test a typical misconfiguration was found in the way Dovecot is used as a local delivery agent by Exim. A common use case for the Dovecot IMAP and POP3 server is the use of Do | May 7 |
|
|
sudo v1.8.0-1.8.3p1 (sudo_debug) - Format String Root Exploit + glibc FORTIFY_SOURCE Bypass | aeon | linux | exploit-db.com | /* death-star.c sudo v1.8.0-1.8.3p1 (sudo_debug) format string root exploit + glibc FORTIFY_SOURCE bypass by aeon - http://infosecabsurdity.wordpress.com/ This PoC exploits: - CVE-2012-0864 - FORTIFY_SOURCE format string protection bypass via "nargs" integer overflow - CVE-2012-0809 - | May 1 |
|
|
Sophos Web Protection Appliance 3.7.8.1 - Multiple Vulnerabilities | SEC Consult | linux | exploit-db.com | SEC Consult Vulnerability Lab Security Advisory < 20130403-0 > = title: Multiple vulnerabilities product: Sophos Web Protection Appliance vulnerable version: <= 3.7.8.1 fixed version: 3.7.8.2 | April 8 |
|
|
PonyOS 0.4.99-mlp - Multiple Vulnerabilities | John Cartwright | linux | exploit-db.com |
Advisory: PonyOS Security Issues
John Cartwright |
April 8 |
|
|
GnuTLS libgnutls Double-free Certificate List Parsing Remote DoS | Shawn the R0ck | linux | exploit-db.com | Sorry I forgot to write headers in previous mail. Exploit Title: [possible ways to exploit CVE-2012-1663( GNUTLS-3.0.13)] Google Dork: [if relevant] (we will automatically add these to the GHDB) Date: [Mar 20, 2013] Exploit Author: [Shawn the R0ck] Vendor Homepage: [http://www.gnut | March 22 |
|
|
Linux Kernel 'SCTP_GET_ASSOC_STATS()' - Stack-Based Buffer Overflow | Petr Matousek | linux | exploit-db.com |
include |
March 13 |
|
|
Archlinux x86-64 3.3.x-3.7.x x86-64 sock_diag_handlers[] Local Root | sd | linux | exploit-db.com | // archer.c // // 2012 sd@fucksheep.org // // Works reliably against x86-64 3.3-3.7 arch. // // Tested against: // // Linux XXX 3.3.1-1-ARCH 1 SMP PREEMPT Tue Apr 3 06:46:17 UTC 2012 x86_64 GNU/Linux // Linux XXX 3.4.7-1-ARCH 1 SMP PREEMPT Sun Jul 29 22:02:56 CEST 2012 x86_64 GNU/Linux / | February 27 |
|
|
cURL Buffer Overflow Vulnerability | Volema | linux | exploit-db.com | cURL buffer overflow Wed 06 February 2013 Volema found remotely exploitable buffer overflow vulnerability in libcurl POP3, SMTP protocol handlers which lead to code execution (RCE). When negotiating SASL DIGEST-MD5 authentication, the function Curl_sasl_create_digest_md5_message() uses the data | February 11 |
|
|
Oracle Automated Service Manager 1.3 Installation Local Privilege Escalation | Larry W. Cashdoll. | linux | exploit-db.com | Oracle Automated Service Manager 1.3 local root during install Larry W. Cashdollar 1/29/2013 @_larry0 SUNWsasm-1.3.1-20110815093723 https://updates.oracle.com/Orion/Services/download?type=readme&aru=15864534 From the README: "Oracle Automated Service Manager 1.3.1 Oracle Automate | February 5 |