what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 7 of 7 RSS Feed

Files from Karsten Konig

Email addresskk at ciphron.de
First Active2017-08-01
Last Active2023-03-30
Outline 1.6.0 Unquoted Service Path
Posted Mar 30, 2023
Authored by Karsten Konig, Milad Karimi

Outline version 1.6.0 suffers from an unquoted service path vulnerability.

tags | exploit, local, root
systems | freebsd, bsd
SHA-256 | c7fdf86fb00365bd53d570e0ff758cfd8ba014d2dce9b75b8d6db96e15e882ee
Human Resource Management System 1.0 SQL Injection
Posted Mar 30, 2023
Authored by Karsten Konig, Matthijs Van der Vaart

Human Resource Management System version 1.0 suffers from an unauthenticated remote SQL injection vulnerability.

tags | exploit, local, root, vulnerability
systems | freebsd, bsd
SHA-256 | 4f80b588a513bbcbb3b08d9782eb8b87aa9be2291590ff110ec8d9d5b3b889e5
FreeBSD fd Privilege Escalation
Posted Dec 30, 2019
Authored by Karsten Konig

Local root exploit for the FreeBSD fd vulnerability as disclosed in FreeBSD-SA-19:02.fd.

tags | exploit, local, root
systems | freebsd, bsd
advisories | CVE-2019-5596
SHA-256 | 05adfc97defa9b66032601dddbc7174d89d7c42893b3449bce122d3043b86df0
FreeBSD mqueuefs Privilege Escalation
Posted Dec 30, 2019
Authored by Karsten Konig

Local root exploit for the FreeBSD mqueuefs vulnerability as disclosed in FreeBSD-SA-19:15.mqueuefs.

tags | exploit, local, root
systems | freebsd, bsd
SHA-256 | 90adbf6571ee419b5720c2c77c09ae73c0b991d5356d6bf9cdef1949b5a67b6d
FreeBSD Security Advisory - FreeBSD-SA-19:24.mqueuefs
Posted Aug 21, 2019
Authored by Karsten Konig | Site security.freebsd.org

FreeBSD Security Advisory - System calls operating on file descriptors obtain a reference to relevant struct file which due to a programming error was not always put back, which in turn could be used to overflow the counter of affected struct file. A local user can use this flaw to obtain access to files, directories, sockets, etc., opened by processes owned by other users. If obtained struct file represents a directory from outside of user's jail, it can be used to access files outside of the jail. If the user in question is a jailed root they can obtain root privileges on the host system.

tags | advisory, overflow, local, root
systems | freebsd, bsd
advisories | CVE-2019-5603
SHA-256 | b8976c51a157ffad5c715c1c5e8e3c4be69500c550b1d9f9a9862cd2b065c512
phpLiteAdmin 1.9.7.1 Authorization Bypass
Posted Apr 25, 2018
Authored by Karsten Konig

phpLiteAdmin versions 1.9.7.1 and below suffer from an authorization bypass vulnerability.

tags | advisory, bypass
SHA-256 | d4cdc05f789f02812006ddc2f04c93065977af3d3e13fccdee0a1147ceb6b814
heinekingmedia StashCat Cryptographic Issues
Posted Aug 1, 2017
Authored by Sebastian Horzela, Karsten Konig, Lennart Henke

heinekingmedia StashCat Android versions 1.7.5 and below, Web versions 0.0.80w and below, and Desktop versions 0.0.86 and below suffer from cryptographic and various other vulnerabilities.

tags | advisory, web, vulnerability
advisories | CVE-2017-11129, CVE-2017-11130, CVE-2017-11131, CVE-2017-11132, CVE-2017-11133, CVE-2017-11134, CVE-2017-11135, CVE-2017-11136
SHA-256 | 4bab8f2f74766bd7c12e476c20b3571bffe8e9742d8e279326fd26383dcb3b75
Page 1 of 1
Back1Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    25 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close