exploit the possibilities

Recent Files

Files RSS Feed
ManageEngine ADSelfService Plus Authentication Bypass / Code Execution
Posted Nov 27, 2021
Authored by mr_me, wvu, Wilfried Becard, Antoine Cervoise | Site metasploit.com

This Metasploit module exploits CVE-2021-40539, a REST API authentication bypass vulnerability in ManageEngine ADSelfService Plus, to upload a JAR and execute it as the user running ADSelfService Plus - which is SYSTEM if started as a service.

tags | exploit, bypass
D-Link DSL-3782 Pre-Authentication Remote Root
Posted Nov 27, 2021
Authored by Cody Sixteen

D-Link DSL-3782 pre-authentication remote root exploit.

tags | exploit, remote, root
Backdoor.Win32.Coredoor.10.a Man-In-The-Middle
Posted Nov 27, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Coredoor.10.a malware suffers from a man-in-the-middle vulnerability.

tags | exploit
systems | windows
Email-Worm.Win32.Deltad Insecure Permissions
Posted Nov 27, 2021
Authored by malvuln | Site malvuln.com

Email-Worm.Win32.Deltad malware suffers from an insecure permissions vulnerability.

tags | exploit, worm
systems | windows
Wireshark For Newbies
Posted Nov 26, 2021
Authored by Anmol K Sachan

Whitepaper called Wireshark for Newbies. Written in Spanish.

tags | paper
Ubuntu Security Notice USN-5156-1
Posted Nov 25, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5156-1 - It was discovered that ICU contains a double free issue. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
Backdoor.Win32.Coredoor.10.a Authentication Bypass / Code Execution
Posted Nov 25, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Coredoor.10.a malware suffers from bypass and code execution vulnerabilities.

tags | exploit, vulnerability, code execution
systems | windows
Bagisto 1.3.3 Client-Side Template Injection
Posted Nov 25, 2021
Authored by Mohamed Abdellatif Jaber

Bagisto version 1.3.3 suffers from a client-side template injection vulnerability.

tags | exploit
Gerdab.ir SQL Injection
Posted Nov 25, 2021
Authored by E1.Coders

Gerdab.ir suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
Red Hat Security Advisory 2021-4837-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4837-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
Apple ColorSync CMMNDimLinear::Interpolate Uninitialized Memory
Posted Nov 24, 2021
Authored by Google Security Research, mjurczyk

Apple ColorSync suffers from a use of uninitialized memory in CMMNDimLinear::Interpolate.

tags | exploit
systems | apple
Red Hat Security Advisory 2021-4838-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4838-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
Red Hat Security Advisory 2021-4839-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4839-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
GNU Privacy Guard 2.2.33
Posted Nov 24, 2021
Site gnupg.org

GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions. This is the LTS release.

Changes: 4 new options added, a new command, and many bug fixes and improvements.
tags | tool, encryption
Red Hat Security Advisory 2021-4826-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4826-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
Red Hat Security Advisory 2021-4774-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4774-02 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.

tags | advisory, kernel
systems | linux, redhat
Red Hat Security Advisory 2021-4788-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4788-02 - Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center. Issues addressed include a null pointer vulnerability.

tags | advisory
systems | linux, redhat
HTTPDebuggerPro 9.11 Unquoted Service Path
Posted Nov 24, 2021
Authored by Aryan Chehreghani

HTTPDebuggerPro version 9.11 suffers from an unquoted service path vulnerability.

tags | exploit
Red Hat Security Advisory 2021-4798-02
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4798-02 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include a use-after-free vulnerability.

tags | advisory, kernel
systems | linux, redhat
Red Hat Security Advisory 2021-4773-03
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4773-03 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include a use-after-free vulnerability.

tags | advisory, kernel
systems | linux, redhat
Ubuntu Security Notice USN-5155-1
Posted Nov 24, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5155-1 - It was discovered that BlueZ incorrectly handled the Discoverable status when a device is powered down. This could result in devices being powered up discoverable, contrary to expectations. This issue only affected Ubuntu 20.04 LTS, Ubuntu 21.04, and Ubuntu 21.10. It was discovered that BlueZ incorrectly handled certain memory operations. A remote attacker could possibly use this issue to cause BlueZ to consume resources, leading to a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
CMSimple 5.4 Local File Inclusion / Remote Code Execution
Posted Nov 24, 2021
Authored by S1lv3r

CMSimple version 5.4 local file inclusion to remote code execution exploit.

tags | exploit, remote, local, code execution, file inclusion
Red Hat Security Advisory 2021-4782-01
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4782-01 - OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Issues addressed include a privilege escalation vulnerability.

tags | advisory, protocol
systems | linux, redhat, unix
Red Hat Security Advisory 2021-4785-01
Posted Nov 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4785-01 - The RPM Package Manager is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Issues addressed include a bypass vulnerability.

tags | advisory, bypass
systems | linux, redhat
Remote Code Execution In WhatsApp
Posted Nov 24, 2021
Authored by cor le

Whitepaper that gives an analysis of the remote code execution vulnerability noted in CVE-2019-11932 for WhatsApp that affects versions prior to 2.19.244. Written in Spanish.

tags | paper, remote, code execution
View Older Files →

Recent News

News RSS Feed
China Trying To Export Its Great Firewall And Governance Model
Posted Nov 24, 2021

tags | headline, government, privacy, china, cyberwar
Attackers Actively Target Windows Installer Zero-Day
Posted Nov 24, 2021

tags | headline, hacker, microsoft, flaw, zero day
Cybercriminals Continue Using Zelle To Scam Victims
Posted Nov 24, 2021

tags | headline, email, bank, cybercrime, fraud, phish
Tolkien Estate Blocks JRR Token Crypto Currency
Posted Nov 24, 2021

tags | headline, cryptography, new zealand
Apple Sues 'Amoral 21st Century Mercenaries' NSO For Infecting iPhones With Pegasus Malware
Posted Nov 24, 2021

tags | headline, government, privacy, phone, israel, spyware, apple, backdoor
Analyzing A Watering Hole Campaign Using macOS Exploits
Posted Nov 24, 2021

tags | headline, hacker, malware, flaw, google, patch, apple, backdoor
Suspect Arrested In Ransom Your Employer Scheme
Posted Nov 23, 2021

tags | headline, malware, cybercrime, fraud, africa
FBI And CISA Issue Holiday Ransomware, Cyberattack Warning
Posted Nov 23, 2021

tags | headline, government, malware, usa, cybercrime, fraud, fbi
Code Execution Bug Patched In Imunify360 Linux Server Security Suite
Posted Nov 23, 2021

tags | headline, linux, flaw, patch
UK Ministry Of Justice Secures HVAC Systems After Register Tipoff
Posted Nov 23, 2021

tags | headline, government, britain, wireless, flaw, password, backdoor
View More News →

File Archive:

November 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    19 Files
  • 2
    Nov 2nd
    25 Files
  • 3
    Nov 3rd
    8 Files
  • 4
    Nov 4th
    7 Files
  • 5
    Nov 5th
    24 Files
  • 6
    Nov 6th
    0 Files
  • 7
    Nov 7th
    0 Files
  • 8
    Nov 8th
    18 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    106 Files
  • 11
    Nov 11th
    19 Files
  • 12
    Nov 12th
    13 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    18 Files
  • 16
    Nov 16th
    12 Files
  • 17
    Nov 17th
    15 Files
  • 18
    Nov 18th
    12 Files
  • 19
    Nov 19th
    4 Files
  • 20
    Nov 20th
    2 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    22 Files
  • 23
    Nov 23rd
    14 Files
  • 24
    Nov 24th
    19 Files
  • 25
    Nov 25th
    4 Files
  • 26
    Nov 26th
    1 Files
  • 27
    Nov 27th
    4 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

News Tags

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close