Showing 1 - 4 of 4

Files from Sam Johnston

Enomaly ECP 3.0.4 Insecure Silent Update Mechanism: Posted Feb 16, 2010; Authored by Sam Johnston; Enomaly ECP versions up to and including 3.0.4 are believed to contain an insecure silent update mechanism that could allow a remote attacker to execute arbitrary code as root, and to inject or modify VM workloads for execution within user environment or to replay older, insecure workloads. Both the Enomaly ECP implementation and the VMcasting protocol itself are believed to be vulnerable.; tags | advisory, remote, arbitrary, root, protocol; SHA-256 | e16285c2f1ba9ebc8fd42584526dc51cf5c5ff2063e048b6d25545b604a2ead0; Download | Favorite | View

Enomaly ECP/Enomalism enomalism2.sh Temporary Files: Posted Feb 16, 2009; Authored by Sam Johnston; All versions of Enomaly ECP/Enomalism before 2.2.1 have multiple issues relating to the use of temporary files in an insecure manner.; tags | exploit; advisories | CVE-2008-4990, CVE-2009-0390; SHA-256 | 461388d5af9b086c1ea7698c7c71be0f51f4b95fd1d2fce9bd1ff0fe15f9f6d3; Download | Favorite | View

Enomaly ECP/Enomalism Code Execution: Posted Feb 13, 2009; Authored by Sam Johnston; All versions of Enomaly ECP/Enomalism have an insecure silent update mechanism that could allow a remote attacker to execute arbitrary code as root.; tags | advisory, remote, arbitrary, root; SHA-256 | 9f314c7d809a33fd1f2f922ca6d89e8825901419404addfcf7d0d5e4c2e48bca; Download | Favorite | View

Enomaly ECP/Enomalism Insecure File Creation: Posted Jan 30, 2009; Authored by Sam Johnston; Enomaly ECP/Enomalism versions prior to 2.1.1 use temporary files in an insecure manner, allowing for symlink and command injection attacks.; tags | exploit; advisories | CVE-2008-4990; SHA-256 | c2f83d754ab9d6bdb0af2e41fc5bf6c46034f1807d705f25738a759685b5720d; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days