Qubes Mirage Firewall versions 0.8.0 through 0.8.3 suffer from a denial of service vulnerability.
5f45f1b2f19df34e7b84103b836c78bb7dd504a9c645807af0e711e38743d5edDASAN H660RM allows for unauthenticated ping access, has a hardcoded key for encryption, and logs sensitive information into /tmp.
de1439ba49e2762cb6f57ff0e775a7b05e70db3ea5a1aa4a0759ccc8915120d4DASAN H665 has a vendor backdoor built into BusyBox /bin/login that provides remote root access with no password.
5e47fa1a890c1030cf4c2331d9b4e17e17faa13a9fda18a25c3fac4c38f799b6Avahi-daemon in Avahi version through 0.7 inadvertently sends Legacy Unicast Responses to IPv4 unicast queries with source addresses that are not link-local, which allows remote attackers to cause a denial of service (traffic amplification) or obtain potentially sensitive information via port-5353 UDP packets.
59a83fca87a2b35f897b8738a94296f531af9928d8dc72e40d1758d19aaf1931sptrace is a secure ptrace() module for Linux. It limits users' access to the ptrace() call. It can disable ptrace altogether, or if you add a ptrace group to your system, only users in that group will be able to use ptrace().
6930bc9c9ee364d44e11ca82990ed89fcb6f0fbb39d10cfb065b9a069d1253d2Search Unleashed version 0.2.10 suffers from a javascript inject vulnerability that can lead to cross site scripting.
095cb94e4cb81ec22f10734eb2b0ed187bd60ed82e5064ca039ef7954df12c99sptrace is a secure ptrace() module for Linux. It limits users' access to the ptrace() call. It can disable ptrace altogether, or if you add a ptrace group to your system, only users in that group will be able to use ptrace().
5b12b0751d6b446ffc9e5227b0c97bbcef5ba151fe0717c374a2e204b1422aa5ARP Tools is collection of libnet and libpcap based ARP utilities. It currently contains ARP Discover (arpdiscover), an Ethernet scanner based on ARP protocol; ARP Flood (arpflood), an ARP request flooder; and ARP Poison (arppoison), for poisoning switches' MAC address tables.
7d53ee3fc70c2ad13338d721b84507f407a41ac1d4602ef6b5532651f928e9b6ARP Tools is collection of libnet and libpcap based ARP utilities. It currently contains ARP Discover (arpdiscover), an Ethernet scanner based on ARP protocol; ARP Flood (arpflood), an ARP request flooder; and ARP Poison (arppoison), for poisoning switches' MAC address tables.
02c84696d1a9d9338986cb09008f6d96617de3535cf85db3acf13e29e5f87de8sptrace is a secure ptrace() module for Linux. It limits users' access to the ptrace() call. It can disable ptrace altogether, or if you add a ptrace group to your system, only users in that group will be able to use ptrace().
925d39bcb5258c0d96f619078df465b16b74d54e5578f6050b89569e1a9e3f5f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed