iPhone/iPad Phone Drive version 1.1.1 suffers from a directory traversal vulnerability.
b63ce126d747f94ec58cd93bc00718d0Excel SLYK format parsing buffer overrun proof of concept denial of service exploit.
14cb1acfc048a39f4909e7ad24b8dc08TNR Enhanced Joomla Search version 3.0.0 suffers from a remote SQL injection vulnerability.
89e9c785778fc7ebf3a1943fd5f92edbBlogPHP version 2 suffers from a cross site scripting vulnerability.
ed28a7f7cf150a9b313de011be57ff35Acoustica Mixcraft version 1.00 local crash proof of concept exploit.
b260403b11536ae4b5c7d0f2d079d162FCKeditor suffers from a shell upload vulnerability when a specially crafted htaccess file is used.
e5941cae27a5d7f432555ab02019f4ddLasernet CMS version 1.5 suffers from a remote SQL injection vulnerability.
a0e1928290ba47bd6754ca4cb84fd7deUbuntu Security Notice 1187-1 - It was discovered that KVM did not correctly initialize certain CPU registers. A local attacker could exploit this to crash the system, leading to a denial of service. Thomas Pollet discovered that the RDS network protocol did not check certain iovec buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Various other issues were also addressed.
334e1774d95bf6c254e449cac03b734fUbuntu Security Notice 1186-1 - Dan Rosenberg discovered that IPC structures were not correctly initialized on 64bit systems. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Steve Chen discovered that setsockopt did not correctly check MSS values. A local attacker could make a specially crafted socket call to crash the system, leading to a denial of service. Vladymyr Denysov discovered that Xen virtual CD-ROM devices were not handled correctly. A local attacker in a guest could make crafted blkback requests that would crash the host, leading to a denial of service. Various other issues were also addressed.
c5e74b8176fba1d422fe47aa4c8e7658BlogPHP version 2 suffers from a cross site scripting vulnerability.
9624276f865bb0d35ab6953ca2617bf4BlogPHP version 2 suffers from a remote SQL injection vulnerability.
3ee5aa96912581ca8bf348ecdb8f9a5aE-SolBiz suffers from multiple remote SQL injection vulnerabilities.
749c0777efee975708f4c1b1fde1cd9bMatrix Media WD Plymouth suffers from multiple remote SQL injection vulnerabilities.
fce8dad2b8d2c19e4d9455383ef370d8This post-escalation bash script sanitizes 29 logs, adds a root user, and allows for package installation including hashcat, nmap, and more. Written for Ubuntu.
6ce86ef3082d68ab9743dcd313e30a22Secunia Security Advisory - Gjoko Krstic has discovered multiple vulnerabilities in AContent, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting and SQL injection attacks.
c936847e7eb4775b4ad288ddbfac50afSecunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes multiple weaknesses and vulnerabilities, which can be exploited by malicious, local users to disclose certain system information and cause a DoS (Denial of Service).
3526d946d50b130b7942f9100e614dedSecunia Security Advisory - Fedora has issued an update for quake3. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
e74e9a8a2e0a1b9c64563dca40b95a3bSecunia Security Advisory - Two vulnerabilities have been reported in McAfee SaaS Endpoint Protection, which can be exploited by malicious people to compromise a user's system.
4bc5362d6921fd0d44044ba3727d3a1eSecunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
6517a438f7d9044617fc951b47b8a306Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service).
0ad0afbda46f1f658b9e8664b1291b05Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to conduct cross-site scripting attacks.
ff105ab8e6fb575fc13d3ed04bfc5fd0Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service).
4c64ef9b1f4d7ee023bed1fc50fc867aSecunia Security Advisory - A vulnerability has been reported in Microsoft .NET Framework, which can be exploited by malicious people to bypass certain security restrictions or gain knowledge of sensitive information.
3e4edfb6fe38b300c02fb06d0b7e6d0eSecunia Security Advisory - Two vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
35797ff19a44bb0b30b1014983f5f1b6Secunia Security Advisory - A vulnerability has been reported in Microsoft .NET Framework, which can be exploited by malicious people to gain knowledge of sensitive information.
1eee9b7d9fab5efd657fe9d30ef84c14
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed