Android – binder Use-After-Free via racy Initialization of ->allow_user_free
>> CATEGORY: Security
Android – binder Use-After-Free via racy Initialization of ->allow_user_free
Linux < 4.20.14 – Virtual Address 0 is Mappable via Privileged write() to /proc/*/mem
Android – getpidcon() Usage in Hardware binder ServiceManager Permits ACL Bypass
OpenDocMan 1.3.4 – ‘search.php where’ SQL Injection
OpenDocMan 1.3.4 – ‘search.php where’ SQL Injection
Linux/x86 – XOR Encoder / Decoder execve() /bin/sh Shellcode (45 bytes)
Linux/x86 – XOR Encoder / Decoder execve() /bin/sh Shellcode (45 bytes)
zzzphp CMS 1.6.1 – Cross-Site Request Forgery
Splunk Enterprise 7.2.4 – Custom App Remote Command Execution (Persistent Backdoor / Custom Binary)
Linux/x86 – iptables -F Shellcode (43 bytes)