exploit the possibilities

Recent Files

Files RSS Feed
Ubuntu Security Notice USN-4885-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4885-1 - It was discovered that Pygments incorrectly handled parsing SML files. If a user or automated system were tricked into parsing a specially crafted SML file, a remote attacker could cause Pygments to hang, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
Red Hat Security Advisory 2021-0949-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0949-01 - Red Hat OpenShift Do is a simple CLI tool for developers to create, build, and deploy applications on OpenShift. The odo tool is completely client-based and requires no server within the OpenShift cluster for deployment. It detects changes to local code and deploys it to the cluster automatically, giving instant feedback to validate changes in real-time. It supports multiple programming languages and frameworks. Red Hat OpenShift Do openshift/odo-init-image 1.1.3 is a container image that is used as part of the InitContainer setup that provisions odo components.

tags | advisory, local
systems | linux, redhat
Red Hat Security Advisory 2021-0948-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0948-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include a cross site scripting vulnerability.

tags | advisory, xss
systems | linux, redhat
Ubuntu Security Notice USN-4884-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4884-1 - Loris Reiff discovered that the BPF implementation in the Linux kernel did not properly validate attributes in the getsockopt BPF hook. A local attacker could possibly use this to cause a denial of service. It was discovered that the priority inheritance futex implementation in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux, ubuntu
MacPaw Encrypto 1.0.1 Unquoted Service Path
Posted Mar 22, 2021
Authored by Ismael Nava

MacPaw Encrypto version 1.0.1 suffers from an unquoted service path vulnerability.

tags | exploit
Red Hat Security Advisory 2021-0947-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0947-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include a cross site scripting vulnerability.

tags | advisory, xss
systems | linux, redhat
Trojan-Dropper.Win32.Demp.rft Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Demp.rft malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
ProFTPD 1.3.7a Denial Of Service
Posted Mar 22, 2021
Authored by xynmaps

ProFTPD version 1.3.7a suffers from a denial of service vulnerability.

tags | exploit, denial of service
Ubuntu Security Notice USN-4883-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4883-1 - Adam Nichols discovered that heap overflows existed in the iSCSI subsystem in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Adam Nichols discovered that the iSCSI subsystem in the Linux kernel did not properly restrict access to iSCSI transport handles. A local attacker could use this to cause a denial of service or expose sensitive information. Various other issues were also addressed.

tags | advisory, denial of service, overflow, arbitrary, kernel, local
systems | linux, ubuntu
MyBB 1.8.25 Remote Command Execution
Posted Mar 22, 2021
Authored by SivertPL

MyBB version 1.8.25 chain remote command execution exploit that leverages cross site scripting and SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
Apache Ghostcat Exploitation
Posted Mar 22, 2021
Authored by Team SafeSecurity

This whitepaper focuses on explaining the Apache Ghostcat vulnerability and how it can be used to read file contents of all web applications deployed on Tomcat.

tags | paper, web
Credential Dumping Cheatsheet
Posted Mar 22, 2021
Authored by Jeenali Kothari | Site hackingarticles.in

Whitepaper called Credential Dumping Cheatsheet. It covers locations of data and various tooling you can use to find passwords.

tags | paper
Trojan-Dropper.Win32.Delf.da Buffer Overflow
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Delf.da malware suffers from a buffer overflow vulnerability.

tags | exploit, overflow, trojan
systems | windows
HEUR.Trojan.Win32.Generic Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

HEUR.Trojan.Win32.Generic malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
Red Hat Security Advisory 2021-0946-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0946-01 - The OpenJDK 8 container images provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. This release of the Red Hat build of OpenJDK 8 serves as a replacement for the Red Hat build of OpenJDK 8, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat
Red Hat Security Advisory 2021-0945-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0945-01 - The OpenJDK 11 container images provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. This release of the Red Hat Build of OpenJDK 11 serves as a replacement for the Red Hat Build of OpenJDK 11, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat
OSAS Traverse Extension 11 Unquoted Service Path
Posted Mar 22, 2021
Authored by Tech Johnny

OSAS Traverse Extension 11 suffers from an unquoted service path vulnerability.

tags | exploit
WordPress Delightful Downloads Jquery File Tree 1.6.6 Path Traversal
Posted Mar 22, 2021
Authored by Nicholas Ferreira

WordPress Delightful Downloads Jquery File Tree plugin versions 1.6.6 and below path traversal exploit.

tags | exploit, file inclusion
Trojan-Dropper.Win32.Dycler.vrp Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Dycler.vrp malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
hardwear.io 2021 Call For Papers
Posted Mar 22, 2021
Authored by hardwear.io CFP

The call for papers for hardwear.io 2021 is open. It will take place July 9th through the 10th, 2021.

tags | paper, conference
Zoom 5.4.3 (54779.1115) / 5.5.4 (13142.0301) Information Disclosure
Posted Mar 22, 2021
Authored by Matthias Deeg, Michael Strametz | Site sec-consult.com

Zoom versions 5.4.3 (54779.1115) and 5.5.4 (13142.0301) temporarily shares other application windows not in scope for sharing.

tags | exploit
systems | windows
SAPSetup Automatic Workstation Update Service 750 Unquoted Service Path
Posted Mar 22, 2021
Authored by Alan Mondragon

SAPSetup Automatic Workstation Update Service 750 suffers from an unquoted service path vulnerability.

tags | exploit
Winpakpro 4.8 Unquoted Service Path
Posted Mar 22, 2021
Authored by Alan Mondragon

Winpakpro version 4.8 suffers from multiple unquoted service path vulnerabilities.

tags | exploit, vulnerability
CMS Made Simple 2.2.15 Shell Upload
Posted Mar 21, 2021
Authored by Riccardo Krauter

CMS Made Simple version 2.2.15 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
CMS Made Simple 2.2.15 SQL Injection
Posted Mar 20, 2021
Authored by Riccardo Krauter

CMS Made Simple version 2.2.15 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
View Older Files →

Recent News

News RSS Feed
Apple Devs Targeted By Malicious Xcode Project
Posted Mar 19, 2021

tags | headline, malware, trojan, apple
Zoom Screen Sharing Glitch Briefly Leaks Sensitive Data
Posted Mar 19, 2021

tags | headline, privacy, phone, data loss, flaw
Swiss Hacker Indicted After Claiming Credit For Breaching Nissan, Intel
Posted Mar 19, 2021

tags | headline, hacker, switzerland, intel
Expert Hackers Used 11 Zero Days To Infect Windows, iOS, And Android Users
Posted Mar 19, 2021

tags | headline, hacker, microsoft, phone, google, apple, zero day
State-Sponsored Threat Groups Target Telcos, Steal 5G Secrets
Posted Mar 18, 2021

tags | headline, government, privacy, phone, cyberwar
Attackers Are Trying Hard To Backdoor iOS Developer's Macs
Posted Mar 18, 2021

tags | headline, hacker, phone, apple, backdoor
Florida Mother, Daughter Charged With Hacking Homecoming Queen Election
Posted Mar 18, 2021

tags | headline, hacker, usa
Google Cloud: Here Are The Six Best Vulnerabilities Security Researchers Found Last Year
Posted Mar 18, 2021

tags | headline, hacker, flaw, google
Mimecast Says SolarWinds Hackers Breached Its Network And Spied On Its Customers
Posted Mar 17, 2021

tags | headline, hacker, privacy, microsoft, email, data loss, flaw
Teen Mastermind Pleads Guilty To Celeb Twitter Hack
Posted Mar 17, 2021

tags | headline, hacker, twitter
View More News →

File Archive:

March 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    19 Files
  • 2
    Mar 2nd
    15 Files
  • 3
    Mar 3rd
    30 Files
  • 4
    Mar 4th
    13 Files
  • 5
    Mar 5th
    10 Files
  • 6
    Mar 6th
    1 Files
  • 7
    Mar 7th
    2 Files
  • 8
    Mar 8th
    19 Files
  • 9
    Mar 9th
    33 Files
  • 10
    Mar 10th
    16 Files
  • 11
    Mar 11th
    11 Files
  • 12
    Mar 12th
    14 Files
  • 13
    Mar 13th
    0 Files
  • 14
    Mar 14th
    2 Files
  • 15
    Mar 15th
    34 Files
  • 16
    Mar 16th
    16 Files
  • 17
    Mar 17th
    22 Files
  • 18
    Mar 18th
    17 Files
  • 19
    Mar 19th
    31 Files
  • 20
    Mar 20th
    1 Files
  • 21
    Mar 21st
    1 Files
  • 22
    Mar 22nd
    23 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

News Tags

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close