分类 Linux/Unix 下的文章
Apache Continuum 1.4.2 - Multiple Vulnerabilities
# Exploit Title: Unauthenticated command injection - Apache Continuum# Google Dork: inurl::8080/continuum/# Date: 04/06/2016# Exploit Author: David Shanahan (@cyberpunksec)# Contact: http://www.pro...
Linux Kernel 4.4.x (Ubuntu 16.04) - Use-After-Free via double-fdput() in bpf(BPF_PROG_LOAD) Error Path Local Root Exploit
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=808In Linux >=4.4, when the CONFIG_BPF_SYSCALL config option is set and the kernel.unprivileged_bpf_disabled sysctl is not expli...
Lastore-daemon in Deepin 15 results in privilege escalation
#!/usr/bin/env python # encoding=utf8# Exploit Title: Lastore-daemon in Deepin 15 results in privilege escalation # Date: 20160208 # Exploit Author: King's Way <root#kings-way.info> # ...
[+] Linux Kernel +3.8 0day PoC [+]
/* https://gist.github.com/PerceptionPointTeam/18b1e86d1c0f8531ff8f */ /* $ gcc cve_2016_0728.c -o cve_2016_0728 -lkeyutils -Wall */ /* $ ./cve_2016_072 PP_KEY */ #include <stdio.h> #in...
Roaming through the OpenSSH client: CVE-2016-0777 and CVE-2016-0778
Qualys Security AdvisoryRoaming through the OpenSSH client: CVE-2016-0777 and CVE-2016-0778======================================================================== Contents ========================...
飞塔SSH后门 进一步利用方法
from:tools.pwn.ren昨天FortiGate爆了一个SSH Backdoor ,具体内容可以看这(http://tools.pwn.ren/2016/01/12/ssh-backdoor-for-fortigate-os-version-4-up-to-5-0-7.html) 那我们如何利用了?如何利用这个SSH 后门进入到内网了?好了这就是这篇文章要讲的东西。 这个后门获取到...