what you don't know can hurt you
Showing 1 - 16 of 16 RSS Feed

Files Date: 2013-11-13

Gentoo Linux Security Advisory 201311-09
Posted Nov 13, 2013
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201311-9 - Multiple vulnerabilities have been found in FreeRADIUS, the worst of which allow execution of arbitrary code or Denial of Service. Versions less than 2.2.0 are affected.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2010-3696, CVE-2010-3697, CVE-2011-2701, CVE-2012-3547
MD5 | 4bdd3d3a4adb9cae0f5a67ff4921a502
Red Hat Security Advisory 2013-1519-01
Posted Nov 13, 2013
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2013-1519-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A race condition was found in the way asynchronous I/O and fallocate() interacted when using the ext4 file system. A local, unprivileged user could use this flaw to expose random data from an extent whose data blocks have not yet been written, and thus contain data from a deleted file. An information leak flaw was found in the way Linux kernel's device mapper subsystem, under certain conditions, interpreted data written to snapshot block devices. An attacker could use this flaw to read data from disk blocks in free space, which are normally inaccessible.

tags | advisory, kernel, local
systems | linux, redhat
advisories | CVE-2012-4508, CVE-2013-4299
MD5 | 47ff7c84810048cb180ee2ff0df2a546
Zikula 1.3.5 Build 20 Cross Site Scripting
Posted Nov 13, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

Zikula version 1.3.5 build 20 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-6168
MD5 | ffc50264903ce7c70e0e7c15ac55e09e
Gentoo Linux Security Advisory 201311-08
Posted Nov 13, 2013
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201311-8 - A vulnerability in Netpbm could result in execution of arbitrary code or Denial of Service. Versions less than 10.49.00 are affected.

tags | advisory, denial of service, arbitrary
systems | linux, gentoo
advisories | CVE-2009-4274
MD5 | 505da4c2e568b72bad6b20e82c331f40
Red Hat Security Advisory 2013-1518-01
Posted Nov 13, 2013
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2013-1518-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed in the Adobe Security bulletin APSB13-26, listed in the References section. Specially-crafted SWF content could cause flash-plugin to crash or, potentially, execute arbitrary code when a victim loads a page containing the malicious SWF content. All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.327.

tags | advisory, web, arbitrary, vulnerability
systems | linux, redhat
advisories | CVE-2013-5329, CVE-2013-5330
MD5 | 21cf777ba3c32678270136dccbe49403
Ubuntu Security Notice USN-2029-1
Posted Nov 13, 2013
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2029-1 - It was discovered that Apache Commons FileUpload incorrectly handled file names with NULL bytes in serialized instances. An attacker could use this issue to possibly write to arbitrary files.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2013-2186
MD5 | c4d6950352746a52c822bb7a54f21a0e
Gentoo Linux Security Advisory 201311-07
Posted Nov 13, 2013
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201311-7 - Multiple vulnerabilities have been found in Blender, the worst of which could allow attackers to execute arbitrary code. Versions less than 2.49b-r2 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2008-1102, CVE-2008-1103, CVE-2009-3850
MD5 | 4d86daf19597e2c94e74b9006aaa6860
Debian Security Advisory 2795-1
Posted Nov 13, 2013
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2795-1 - Several vulnerabilities have been discovered in the lighttpd web server.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2013-4508, CVE-2013-4559, CVE-2013-4560
MD5 | 0fafb33b2d3154cff50fb341e5470566
HP Security Bulletin HPSBHF02939
Posted Nov 13, 2013
Authored by HP | Site hp.com

HP Security Bulletin HPSBHF02939 - Potential security vulnerabilities have been identified with HP Integrated Lights-Out 4 (iLO4). The vulnerabilities could be exploited remotely resulting in Cross Site Scripting (XSS) or an unauthorized disclosure of information. Revision 1 of this advisory.

tags | advisory, vulnerability, xss
advisories | CVE-2013-4842, CVE-2013-4843
MD5 | 7748395f1575ba80beb006f070865d95
LastPass Android Container PIN / Auto-Wipe Bypass
Posted Nov 13, 2013
Authored by Chris John Riley

LastPass suffers from container PIN and auto-wipe security feature bypass vulnerabilities.

tags | advisory, vulnerability, bypass
advisories | CVE-2013-5113, CVE-2013-5114
MD5 | f052c12e26ca0c1cbe9bc92f377cc123
ZoneDirector Cross Site Scripting
Posted Nov 13, 2013
Authored by Ruckus Product Security Team

A persistent cross site scripting weakness has been discovered in the guest pass provisioning web interface of the ZoneDirector controller devices. An attacker with access to an authenticated user session with privileges for guest pass generation may cause certain malicious javascript code to execute in the user's browser with privileges of the user or the admin. ZoneDirector Controllers versions 9.3.x, 9.4.x, 9.5.x, and 9.6.x are affected.

tags | advisory, web, javascript, xss
MD5 | 0bfe45d312ae0aa56f3f9376b3bd7697
WordPress Themes Remote File Upload
Posted Nov 13, 2013
Authored by Black Devils

Bordeaux, Bulteno, Oxygen, Radial, Rayoflight, Reganto, and Rockstar WordPress themes suffer from a remote file upload vulnerability. This archive houses metasploit modules that exploits these issues.

tags | exploit, remote, file upload
systems | linux
MD5 | 6cbb43ddbeea15582889fb65a6f632e6
Drupal Misery 6.x / 7.x Denial Of Service
Posted Nov 13, 2013
Authored by David Norman | Site drupal.org

Drupal Misery third party module versions 6.x and 7.x suffer from a denial of service vulnerability.

tags | advisory, denial of service
MD5 | 616df9e2a4a8b847bbb91b956ac1616c
Toshiba e-Studio Cross Site Request Forgery
Posted Nov 13, 2013
Authored by Hubert Gradek

Toshiba e-Studio versions 232, 233, 282, and 283 suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | c336e35ac73a542ec48c52b8512dbf73
Drupal GCC 7.x Access Bypass
Posted Nov 13, 2013
Authored by Jean Jacques Ancel | Site drupal.org

Drupal Groups, Communities and Co third party module version 7.x suffers from an access bypass vulnerability.

tags | advisory, bypass
MD5 | afc9a0f0c86d5e3d9c02f10b1414e0dd
Drupal Revisioning 7.x Access Bypass
Posted Nov 13, 2013
Authored by Pete Gillis | Site drupal.org

Drupal Revisioning third party module version 7.x suffers from an access bypass vulnerability.

tags | advisory, bypass
MD5 | 8b42a509c370c7e92cbd141bf21c5b92
Page 1 of 1
Back1Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    1 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    1 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close