what you don't know can hurt you
Showing 1 - 13 of 13 RSS Feed

Files Date: 2013-07-05

rsyslog ElasticSearch Memory Corruption
Posted Jul 5, 2013
Authored by Markus Vervier, Marius Ionescu | Site lsexperts.de

rsyslog ElasticSearch plugin suffers from a double free memory corruption. rsyslog versions 7.4.0 stable through 7.4.1 stable and 7.3.2 devel through 7.5.1 devel are affected.

tags | advisory
advisories | CVE-2013-4758
MD5 | eea6c79e143ed123ecc4eddfa060448c
Mobile Atlas Creator 1.9.12 Command Injection
Posted Jul 5, 2013
Authored by Ateeq ur Rehman Khan | Site vulnerability-lab.com

Mobile Atlas Creator version 1.9.12 suffers from a persistent command injection vulnerability.

tags | exploit
MD5 | 986696c2d8a8fb15d77dea7f2c637bcd
AVAST Antivirus 8.0.1489 Code Execution
Posted Jul 5, 2013
Authored by Ateeq ur Rehman Khan | Site vulnerability-lab.com

AVAST Antivirus version 8.0.1489 suffers from persistent code execution and local command path injection vulnerabilities.

tags | exploit, local, vulnerability, code execution
MD5 | 000abfecfca3ead095717fe9a614a38c
PayPal QR Labs Authentication Bypass
Posted Jul 5, 2013
Authored by Cernica Ionut Cosmin | Site vulnerability-lab.com

PayPal QR Labs service web application suffers from an authentication bypass vulnerability.

tags | exploit, web, bypass
MD5 | 3d308d8011a926fcc335c26355192fc5
OpenVZ Kernel 2.6.32 Memory Leaks
Posted Jul 5, 2013
Authored by Jonathan Salwan

OpenVZ kernel version 2.6.32 suffers from multiple memory leaks.

tags | advisory, kernel, memory leak
advisories | CVE-2013-2239
MD5 | c7043e797e0ab4ea599afa19f67edef9
AVAST Universal Core Installer Local Code Injection
Posted Jul 5, 2013
Authored by Ateeq ur Rehman Khan | Site vulnerability-lab.com

AVAST Universal Core Installer suffers from multiple local code injection vulnerabilities.

tags | exploit, local, vulnerability
MD5 | 81a4bfe6051f4c9504ef4e29ab2a4e30
AVAST Internet Security Suite 8.0.1489 Local Code Injection
Posted Jul 5, 2013
Authored by Ateeq ur Rehman Khan | Site vulnerability-lab.com

AVAST Internet Security Suite version 8.0.1489 suffers from multiple persistent local code injection vulnerabilities.

tags | exploit, local, vulnerability
MD5 | 2713caad2fbf20d40906aa56e91edd0d
Microsoft Advanced Notice Security Bulletin Summary For July, 2013
Posted Jul 5, 2013
Site microsoft.com

This bulletin summary lists 7 released Microsoft security bulletins for July, 2013.

tags | advisory
MD5 | 22ce62f27d75d16d206eda07a1b2a171
Ubuntu Security Notice USN-1900-1
Posted Jul 5, 2013
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1900-1 - Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. An information leak was discovered in the Linux kernel's tkill and tgkill system calls when used from compat processes. A local user could exploit this flaw to examine potentially sensitive kernel memory. A format string vulnerability was discovered in Broadcom B43 wireless driver for the Linux kernel. A local user could exploit this flaw to gain administrative privileges. Various other issues were also addressed.

tags | advisory, kernel, local
systems | linux, ubuntu
advisories | CVE-2012-4508, CVE-2013-2141, CVE-2013-2852, CVE-2012-4508, CVE-2013-2141, CVE-2013-2852
MD5 | 4248cdb5374d0b8f58403ee24c28487d
Ubuntu Security Notice USN-1899-1
Posted Jul 5, 2013
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1899-1 - Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. An information leak was discovered in the Linux kernel's tkill and tgkill system calls when used from compat processes. A local user could exploit this flaw to examine potentially sensitive kernel memory. A format string vulnerability was discovered in Broadcom B43 wireless driver for the Linux kernel. A local user could exploit this flaw to gain administrative privileges. Various other issues were also addressed.

tags | advisory, kernel, local
systems | linux, ubuntu
advisories | CVE-2012-4508, CVE-2013-2141, CVE-2013-2852, CVE-2012-4508, CVE-2013-2141, CVE-2013-2852
MD5 | 0dc268d390c5d5febe9f6a8aff3807bc
Ubuntu Security Notice USN-1898-1
Posted Jul 5, 2013
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1898-1 - The TLS protocol 1.2 and earlier can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext content by observing length differences during a series of guesses in which a provided string potentially matches an unknown string in encrypted and compressed traffic. This is known as a CRIME attack in HTTP. Other protocols layered on top of TLS may also make these attacks practical. This update disables compression for all programs using SSL and TLS provided by the OpenSSL library. To re-enable compression for programs that need compression to communicate with legacy services, define the variable OPENSSL_DEFAULT_ZLIB in the program's environment. Various other issues were also addressed.

tags | advisory, web, protocol
systems | linux, ubuntu
advisories | CVE-2012-4929
MD5 | e91d77a40497225c8f494207c70a3478
Microsoft Windows 98/ME/2000/XP/2003 HTML Help File Hijack
Posted Jul 5, 2013
Authored by Luigi Auriemma, Eduardo Braun Prado

Multiple Microsoft Windows 98/ME/2000/XP/2003 HTML Help file loading hijack vulnerabilities exist. Proof of concept included.

tags | exploit, vulnerability, proof of concept
systems | linux, windows, 9x
MD5 | 69b1395597072062ce9c6404beb68260
Mobile Application Hacking Diary Part 1
Posted Jul 5, 2013
Authored by CWH Underground, ZeQ3uL, diF

Mobile Application Hacking Diary whitepaper part one.

tags | paper
MD5 | d6b5042e469671607ad2ccf9c8c949b4
Page 1 of 1
Back1Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    28 Files
  • 26
    Jul 26th
    2 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close