Imperva SecureSphere 13 – Remote Command Execution
>> ARCHIVE: 2018-10
Imperva SecureSphere 13 – Remote Command Execution
Linux/x86 – execve(/bin/sh) + MMX/ROT13/XOR Shellcode (Encoder/Decoder) (104 bytes)
360 3.5.0.1033 – Sandbox Escape
Linux/MIPS (Big Endian) – execve(/bin/sh) + Reverse TCP 192.168.2.157/31337 Shellcode (181 bytes)
FLIR Thermal Traffic Cameras 1.01-0bb5b27 – Information Disclosure
Easy File Sharing Web Server version 7.2 suffers from a domain name buffer overflow vulnerability.
Chrome OS suffers from a /sbin/crash_reporter symlink traversal vulnerability.
Chamilo LMS version 1.11.8 suffers from a cross site scripting vulnerability.
The Linux kernel suffers from a ptr leak via BPF due to a broken subtraction check.
This Metasploit module utilizes the Net-NTLMv2 reflection between DCOM/RPC to achieve a SYSTEM handle for elevation of privilege. Currently the module does not spawn as SYSTEM, however once achieving a…