9 - 2019 - :: Deepquest ::

>> ptrace Sudo Token Privilege Escalation

USER: deepcore // 2019-09-03 // 0 CMT

This Metasploit module attempts to gain root privileges by blindly injecting into the session user’s running shell processes and executing commands by calling system(), in the hope that the process…

>> ktsuss Suid Privilege Escalation

USER: deepcore // 2019-09-03 // 0 CMT

This Metasploit module attempts to gain root privileges by exploiting a vulnerability in ktsuss versions 1.4 and prior. The ktsuss executable is setuid root and does not drop privileges prior…

>> Cisco UCS Director Unauthenticated Remote Code Execution

USER: deepcore // 2019-09-03 // 0 CMT

The Cisco UCS Director virtual appliance contains two flaws that can be combined and abused by an attacker to achieve remote code execution as root. The first one, CVE-2019-1937, is…

>> Packet Storm New Exploits For August, 2019

USER: deepcore // 2019-09-03 // 0 CMT

This archive contains all of the 159 exploits added to Packet Storm in August, 2019.

>> http://www.dms.moph.go.th/dpk.txt

USER: deepcore // 2019-09-03 // 0 CMT

http://www.dms.moph.go.th/dpk.txt notified by UnM@SK

>> [remote] Cisco UCS Director – default scpuser password (Metasploit)

USER: deepcore // 2019-09-03 // 0 CMT

Cisco UCS Director – default scpuser password (Metasploit)

>> [local] ptrace – Sudo Token Privilege Escalation (Metasploit)

USER: deepcore // 2019-09-03 // 0 CMT

ptrace – Sudo Token Privilege Escalation (Metasploit)

>> [local] ktsuss 1.4 – suid Privilege Escalation (Metasploit)

USER: deepcore // 2019-09-03 // 0 CMT

ktsuss 1.4 – suid Privilege Escalation (Metasploit)

>> [local] Kaseya VSA agent 9.5 – Privilege Escalation

USER: deepcore // 2019-09-02 // 0 CMT

Kaseya VSA agent 9.5 – Privilege Escalation

>> [remote] Cisco Email Security Appliance (IronPort) C160 – 'Host' Header Injection

USER: deepcore // 2019-09-02 // 0 CMT

Cisco Email Security Appliance (IronPort) C160 – ‘Host’ Header Injection