🔔️我們已經出現了財務危機,請不要攔截廣告,感謝您的支持🙏🏻️

Enhome

From PwnWiki
Jump to navigation Jump to search


BannarNew.png
 

PwnWiki

Free, everyone editable vulnerability library

 
2021 June,13 Sunday
There are 4,295 Pages 310 Active editors
Telegram Group
Twitter
 
Getting Started
Translation
 
About
Donate
Other languages:

中文Español русский English Український Français Lietuvis norsk Tiếng Việt عربى Gaeilge 한국어 Nederlands bahasa Indonesia 粵語 简体中文 עִברִית

Latest Recommended
Popular Articles
Excellent Article

CVE-2021-3493

The OverlayFS vulnerability allows local users under Ubuntu to gain root privileges. An Ubuntu specific issue in the overlayfs file system in the Linux kernel, in which it did not correctly validate the application regarding the file system function of the user namespace. Since Ubuntu comes with a patch that allows unprivileged overlayfs to mount, local attackers can use it to gain higher privileges.

Ubuntu-logo32.png

Affected version

Ubuntu 20.10
Ubuntu 20.04 LTS
Ubuntu 18.04 LTS
Ubuntu 16.04 LTS
Ubuntu 14.04 ESM

Repair suggestions

  • Update system package version
  • Update the Linux kernel to 5.11
Featured Articles

There is a denial of service vulnerability in the Windows IPv6 protocol stack. An unauthorized remote attacker can exploit this vulnerability by sending specially crafted data packets to the target system. Successful exploitation of this vulnerability can lead to a denial of service of the target system.

Windows-logo.png

Affected version

Windows All

Introduction

There is a denial of service vulnerability in the Windows IPv6 protocol stack. When IPv6 fragmentation is reorganized, because the parameter types used by the NetioRetreatNetBuffer function and the NdisGetDataBuffer function do not match, the latter can cause the latter to return a null pointer, which will cause a null pointer problem during subsequent copy operations. The attacker can insert the Fragment header for IPv6 option with another identifier at the end of the last fragment of a very large data packet, and continue to send the remaining fragments of the data packet with this identifier, thereby reorganizing the second group of data packets. The vulnerability is triggered at the time, causing the target system to deny service. see details

Saying

  • Freedom is one of the greatest happiness God has given to mankind. ---- Cervantes
  • To make a person a truly educated person, he must possess three qualities: profound knowledge, habit of thinking, and noble sentiment. Not much knowledge is ignorance; not accustomed to thinking is rude and stupid; without noble sentiment, it is vulgarity. ----Nikola Gavrinovich Chernyshevsky
  • I want to take you back from all ages, from all nights, from all golden banners, from all swords; I want to throw away the keys and drive the dog away from the stone steps, because the night on the earth Here, I am more loyal than a dog. ----Tsvetayeva
  • There is nothing in the world that is more complicated and richer than a person's personality... It is impossible to turn a child's spiritual world into a simple learning of knowledge. If we strive to focus all the spiritual power of a child on his homework, his life will become unbearable. Not only should he be a student, but first of all he should be a person with many interests, requirements and desires. ----V.A.Sukhomlinski
  • People's happiness does not depend on the degree of wealth, but on the relationship between heart and heart and our outlook on life. These two points are always up to us, and this means that people can get happiness at any time as long as they want, and no one can hinder him. ----Alexander Solzhenitsyn
Disclaimer

NOTE: Please read the following:
All materials on this site are from the Internet or written by fans. If there is any controversial content, please contact the original author. PwnWiki does not assume any responsibility. You can check local legal information for more information.