exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 16 of 16 RSS Feed

Files Date: 2013-11-13

Gentoo Linux Security Advisory 201311-09
Posted Nov 13, 2013
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201311-9 - Multiple vulnerabilities have been found in FreeRADIUS, the worst of which allow execution of arbitrary code or Denial of Service. Versions less than 2.2.0 are affected.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2010-3696, CVE-2010-3697, CVE-2011-2701, CVE-2012-3547
SHA-256 | 57bcce463337b741d7d21b72cef8fb2112833dc0e82e9e2ffac188cc8c2cd7ed
Red Hat Security Advisory 2013-1519-01
Posted Nov 13, 2013
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2013-1519-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A race condition was found in the way asynchronous I/O and fallocate() interacted when using the ext4 file system. A local, unprivileged user could use this flaw to expose random data from an extent whose data blocks have not yet been written, and thus contain data from a deleted file. An information leak flaw was found in the way Linux kernel's device mapper subsystem, under certain conditions, interpreted data written to snapshot block devices. An attacker could use this flaw to read data from disk blocks in free space, which are normally inaccessible.

tags | advisory, kernel, local
systems | linux, redhat
advisories | CVE-2012-4508, CVE-2013-4299
SHA-256 | b7e3670d1883b8a69860346779ea0650b4c74cff69296f9794b964c54532bad5
Zikula 1.3.5 Build 20 Cross Site Scripting
Posted Nov 13, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Zikula version 1.3.5 build 20 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-6168
SHA-256 | d4aa7a019d25c876743342db6f2f79b44ee7b8795498b59486f415c5a8de7698
Gentoo Linux Security Advisory 201311-08
Posted Nov 13, 2013
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201311-8 - A vulnerability in Netpbm could result in execution of arbitrary code or Denial of Service. Versions less than 10.49.00 are affected.

tags | advisory, denial of service, arbitrary
systems | linux, gentoo
advisories | CVE-2009-4274
SHA-256 | ea8452d7a1cee55fb0d6a0685cf72c7fe00baa2d82e6e1e8656247eb497acac8
Red Hat Security Advisory 2013-1518-01
Posted Nov 13, 2013
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2013-1518-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed in the Adobe Security bulletin APSB13-26, listed in the References section. Specially-crafted SWF content could cause flash-plugin to crash or, potentially, execute arbitrary code when a victim loads a page containing the malicious SWF content. All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.327.

tags | advisory, web, arbitrary, vulnerability
systems | linux, redhat
advisories | CVE-2013-5329, CVE-2013-5330
SHA-256 | 178b171f3369f1af2726ea0d63663fd56d037b6043e9271330d369a6b06ba904
Ubuntu Security Notice USN-2029-1
Posted Nov 13, 2013
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2029-1 - It was discovered that Apache Commons FileUpload incorrectly handled file names with NULL bytes in serialized instances. An attacker could use this issue to possibly write to arbitrary files.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2013-2186
SHA-256 | e46f28c46612b15cb45c3973ca0a42be6548193b0092ba892008a75ab4d2f9b3
Gentoo Linux Security Advisory 201311-07
Posted Nov 13, 2013
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201311-7 - Multiple vulnerabilities have been found in Blender, the worst of which could allow attackers to execute arbitrary code. Versions less than 2.49b-r2 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2008-1102, CVE-2008-1103, CVE-2009-3850
SHA-256 | 895983cec8d709bd182528490c8480f44f15829aec91e36fe248418bc732dbc2
Debian Security Advisory 2795-1
Posted Nov 13, 2013
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2795-1 - Several vulnerabilities have been discovered in the lighttpd web server.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2013-4508, CVE-2013-4559, CVE-2013-4560
SHA-256 | 97f5377fa5f81c44691c211cbba072e5b63c58f1e78e4fb2f095951a55ecdee1
HP Security Bulletin HPSBHF02939
Posted Nov 13, 2013
Authored by HP | Site hp.com

HP Security Bulletin HPSBHF02939 - Potential security vulnerabilities have been identified with HP Integrated Lights-Out 4 (iLO4). The vulnerabilities could be exploited remotely resulting in Cross Site Scripting (XSS) or an unauthorized disclosure of information. Revision 1 of this advisory.

tags | advisory, vulnerability, xss
advisories | CVE-2013-4842, CVE-2013-4843
SHA-256 | 3888291bf876153209249206c85f63b50efba76aa74e3d2a2402421cca1fc42f
LastPass Android Container PIN / Auto-Wipe Bypass
Posted Nov 13, 2013
Authored by Chris John Riley

LastPass suffers from container PIN and auto-wipe security feature bypass vulnerabilities.

tags | advisory, vulnerability, bypass
advisories | CVE-2013-5113, CVE-2013-5114
SHA-256 | e553b2ef39e91a61d36ce85dd65b50d74e4a10ec344dbac343f09847deddb505
ZoneDirector Cross Site Scripting
Posted Nov 13, 2013
Authored by Ruckus Product Security Team

A persistent cross site scripting weakness has been discovered in the guest pass provisioning web interface of the ZoneDirector controller devices. An attacker with access to an authenticated user session with privileges for guest pass generation may cause certain malicious javascript code to execute in the user's browser with privileges of the user or the admin. ZoneDirector Controllers versions 9.3.x, 9.4.x, 9.5.x, and 9.6.x are affected.

tags | advisory, web, javascript, xss
SHA-256 | d9fdcc876fdb2924d1ff1acb39eb8b431d9858e58ba9bb63afddfef5b1a68a58
WordPress Themes Remote File Upload
Posted Nov 13, 2013
Authored by Black Devils

Bordeaux, Bulteno, Oxygen, Radial, Rayoflight, Reganto, and Rockstar WordPress themes suffer from a remote file upload vulnerability. This archive houses metasploit modules that exploits these issues.

tags | exploit, remote, file upload
systems | linux
SHA-256 | 22d89edcefa40f2e4c5a02d158b4a1dab6cbe9a532bae5bebe50cbf50b186e55
Drupal Misery 6.x / 7.x Denial Of Service
Posted Nov 13, 2013
Authored by David Norman | Site drupal.org

Drupal Misery third party module versions 6.x and 7.x suffer from a denial of service vulnerability.

tags | advisory, denial of service
SHA-256 | 2dbacaa5074afcac5bea98ac5f26e51b44c1bb2fe470ed14db52df337f08beac
Toshiba e-Studio Cross Site Request Forgery
Posted Nov 13, 2013
Authored by Hubert Gradek

Toshiba e-Studio versions 232, 233, 282, and 283 suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 813b25171d5d0ee903faa0d349f7ab7458ca3298b27e86eb94edb42fed507bfc
Drupal GCC 7.x Access Bypass
Posted Nov 13, 2013
Authored by Jean Jacques Ancel | Site drupal.org

Drupal Groups, Communities and Co third party module version 7.x suffers from an access bypass vulnerability.

tags | advisory, bypass
SHA-256 | 5534d53fdaf0ab5ad1c221bbf831f350d4927ba1423383b21c4974e91427dec0
Drupal Revisioning 7.x Access Bypass
Posted Nov 13, 2013
Authored by Pete Gillis | Site drupal.org

Drupal Revisioning third party module version 7.x suffers from an access bypass vulnerability.

tags | advisory, bypass
SHA-256 | a310c0a00913e9a0020fe05c25ea2ad4190dbaac412bf4800f58506a13bf4c70
Page 1 of 1
Back1Next

File Archive:

July 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    27 Files
  • 2
    Jul 2nd
    10 Files
  • 3
    Jul 3rd
    35 Files
  • 4
    Jul 4th
    27 Files
  • 5
    Jul 5th
    18 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    28 Files
  • 9
    Jul 9th
    44 Files
  • 10
    Jul 10th
    24 Files
  • 11
    Jul 11th
    25 Files
  • 12
    Jul 12th
    11 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    28 Files
  • 16
    Jul 16th
    6 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close