This archive contains all of the 234 exploits added to Packet Storm in June, 2016.
65c670ff496ef48d9ad7f1fde630d9c0a156ee29bb9a365516085aaa8f307064A privilege escalation vulnerability was identified in the Huawei HiSuite software which can be used by a local user to elevate privileges to become the SYSTEM user. The root cause of the problem are insecure ACLs on the HandSet service directory which allows any authenticated user to place a crafted DLL file in that directory to perform a DLL hijacking attack. Versions 4.0.3.301 and below are affected.
6c6581b85754886f7bf71324c9215879a17f5cce30ef4b37096ab2d6b6d81ffaJoomla Smartformer component version 2.4.1 suffers from a remote shell upload vulnerability.
1b4e93b6e8307844e941b5738100e3231e02e90071e189914c94886f43387028Ktools Photostore versions 4.7.5 and below suffer from a remote blind SQL injection vulnerability.
e1c064ba516e117f8148f9926109b58abaffa30ddd6ae6668dae0ecd6362f63eThe RockLoader malware tool suffers from remote shell upload and remote SQL injection vulnerabilities.
6791a3d9faefcca7817af221317b6551aea06e2523ac2d59b9090b612529dd50Phoenix Exploit Kit suffers from a remote code execution vulnerability.
1f25ff92651bd8bb32029e3adf634acf5d0f7f6e4d481eafd322a6ba7c9eb2c9Symantec Endpoint Protection Manager and Client version 12.1 suffers from cross site request forgery, cross site scripting, and open redirection vulnerabilities.
65b13d36661ece87ba1bdd49bd3f70a0e5b540ef29bbd7ab7cc57d9d5d95b4acWordPress Ultimate Membership Pro plugin version 3.3 suffers from a remote SQL injection vulnerability.
9edba755da9d970478234df675d2e2057d355945224203a45b1c7c3945f3736cCuckoo Sandbox Guest versions 2.0.1 and below XMLRPC privilege remote code execution exploit.
c0ec4947410116d6957300d0f302ff16f00765aa7038deb88954db8885fafbdaThis code exploits a 0day privilege escalation vulnerability (or possible backdoor) in the SystemSmmRuntimeRt UEFI driver (GUID is 7C79AC 8C-5E6C-4E3D-BA6F-C260EE7C172E) of Lenovo firmware.
d7cc976511ad7609235445cc38467f50cb436c74822e85605a700f38f803fe60Windows 7 SP1 x86 privilege escalation exploit that leverages the issue documented in MS16-014.
90dceeedf953cb4edb51470fa645fd788318328c628cb56e0c176a1148d50f58Symantec suffers from a PowerPoint misaligned stream-cache remote stack buffer overflow vulnerability.
052761903f16d88db4affd9da98d81a78c52c8c900fd66dad4540b019026eb1eSymantec suffers from a missing bounds checks in dec2zip ALPkOldFormatDecompressor::UnShrink.
34b4ac0ff008d01486602041869fd3b2080584c09bba6351c3c21ccd2dc47d09Symantec suffers from an integer overflow in the TNEF decoder.
ade0be4c94efeb64e7d34ea7456d064b5cda1c9f3ea14dd9429dca9736285693Symantec attempts to clean or remove components from archives or other multipart containers that they detect as malicious. The code that they use to remove components from MIME encoded messages in CMIMEParser::UpdateHeader() assumes that filenames cannot be longer than 77 characters. This assumption is obviously incorrect, names can be any length, resulting in a very clean heap overflow.
4ee204b77a45094748b81a74a8091d2a517ab376bd6d2bf0dafe5788af13c366Symantec Antivirus suffers from multiple remote memory corruption issues when unpacking MSPACK archives.
e9d8e37d67b1b78a70b6ba1087bb9ad488f89ea7270258280a0c162de1eee2f1The Symantec dec2lha library is the library responsible for decompressing LZH and LHA archives. The CSymLHA::get_header() routine has a trivial stack buffer overflow.
7a45122b3424d74bb5da649ff1caa2ecb47dc7b5c6a0d4f9cfd4d9d854735409Symantec Antivirus version 5.3.11 suffers from multiple remote memory corruption vulnerabilities when unpacking RAR files.
9e44f967c750c035ba888192a2e531afb42978c1fb75803ba25499dfcaae8bc4The Ubiquiti AirGateway, AirFiber, and mFi platforms feature remote administration via an authenticated web-based portal. Lack of CSRF protection in the Remote Administration Portal, and unsafe passing of user input to operating system commands executed with root privileges, can be abused in a way that enables remote command execution.
90378a8805d8e7a9d70f57b6789f59dbe576e315ddf496817ce14425c0361204Concrete5 versions 5.7.3.1 and below suffer from a local file inclusion vulnerability.
616ea7b3f7f6993c3c30d60eb69b780ea3e5f8f3d92361e6075cb57b7e9dbbdbConcrete5 versions 5.7.3.1 and below suffer from multiple persistent cross site scripting vulnerabilities.
9b6d1d19af3879b7eef3ddc8135c623b1cdf6ce2e8e040cf285212c36278ddf2Alfine CMS version 2.6 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
bd8d25abe0c3ba989859567b7465ae932a92d91005c70b7e47e11d8aeae2d32dMutualaid CMS version 4.3.1 suffers from a remote SQL injection vulnerability.
a455179bbdccd33589cb9f67403270734ddad7760c1b837bbbfb7bf933be47ebA password reset session web vulnerability has been discovered in the official Ladesk online service web-application. The vulnerability allows remote attackers to reset a session credentials to unauthorized access user accounts or data.
48448a68d6625f37f4bfd263b2acf7e8357e8b4ea8097b513d291e4aa57a873dIranian Weblog Service CMS version 3.3 suffers from cross site scripting, remote shell upload, and remote SQL injection vulnerabilities.
c3116d6596bcb349a186df81125f516059f566a684a9d04972b62ea8182c4147
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed