the original cloud security
Showing 1 - 25 of 413 RSS Feed

Files Date: 2014-06-01 to 2014-06-30

Horde Framework Unserialize PHP Code Execution
Posted Jun 29, 2014
Authored by Akra Macha

Horde Framework unserialize PHP code execution exploit ported from Metasploit.

tags | exploit, php, code execution
advisories | CVE-2014-1691
MD5 | 6b032103e049eba1ea6aec18274ffbc7
Nagios check_dhcp 2.0.2 Race Condition
Posted Jun 29, 2014
Authored by Dawid Golunski

Nagios Plugins versions 2.0.2 suffer from a race condition in check_dhcp.

tags | exploit
MD5 | 3b5818b671388052eff5b48ed6b71593
Flussonic Media Server 4.3.3 File Read / Directory Listing
Posted Jun 29, 2014
Authored by Bilgi Guvenligi Akademisi

Flussonic Media Server version 4.3.3 suffers from arbitrary file read and directory listing disclosure vulnerabilities.

tags | exploit, arbitrary, vulnerability, info disclosure
MD5 | 2edae3b5533cfced5f9e0b078f955768
Sun/Oracle GlassFish Authenticated Code Execution
Posted Jun 29, 2014
Authored by Akra Macha

This module logs in to an Oracle GlassFish Server version 3.1 (Open Source or Commercial) instance using a default credential, uploads, and executes commands via deploying a malicious WAR.

tags | exploit
MD5 | 41172327582590a8cb4c5058826175e6
WordPress Blogstand Smart Banner 1.0 Cross Site Scripting
Posted Jun 29, 2014
Authored by ACC3SS

WordPress Blogstand Smart Banner plugin version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 82548ab53da11f90d235965573f399eb
WordPress Easy Banners 1.4 Cross Site Scripting
Posted Jun 29, 2014
Authored by ACC3SS

WordPress Easy Banners plugin version 1.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 35e9966f0ce320e4e488f7f9e59f0eb5
WordPress Random Banner 1.1.2.1 Cross Site Scripting
Posted Jun 29, 2014
Authored by ACC3SS

WordPress Random Banner plugin version 1.1.2.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b9c4d84bf4606c831690cfda346c48af
WordPress Custom Banners 1.2.2.2 Cross Site Scripting
Posted Jun 29, 2014
Authored by ACC3SS

WordPress Custom Banners plugin version 1.2.2.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 803256fef9d4cc2418a3f94519bd8db5
WordPress Bannerman 0.2.4 Cross Site Scripting
Posted Jun 29, 2014
Authored by ACC3SS

Wordpress Bannerman plugin version 0.2.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 3e94feef4e1f102c61944c6cb73e2b7d
openSIS 5.3 Cross Site Request Forgery
Posted Jun 28, 2014
Authored by Ubani Anthony Balogun

openSIS versions 4.5 through 5.3 suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 4895ab275f752242c4fc8c4d13e1e3cd
openSIS 5.3 SQL Injection
Posted Jun 28, 2014
Authored by Ubani Anthony Balogun

openSIS versions 4.5 through 5.3 suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | fc66767f4c606ec531d6498fccdce6d1
Reportico Admin Credential Leak
Posted Jun 28, 2014
Authored by ms

All versions of Reportico prior to version 4.0 leak administrative credentials.

tags | exploit
advisories | CVE-2014-3777
MD5 | b0bb0da4a54fc04d4bf58c026aa7bd82
WordPress ml-slider 2.5 Cross Site Scripting
Posted Jun 28, 2014
Authored by ACC3SS

Wordpress ml-slider plugin version 2.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 3c6d21bdb961fdccfb5d74401ee27796
WordPress Construction Mode 1.8 Cross Site Scripting
Posted Jun 28, 2014
Authored by ACC3SS

Wordpress wp-construction-mode plugin version 1.8 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 19ebcc4c6aefea83c62db837dab226d5
Suricata IDPE 2.0.2
Posted Jun 27, 2014
Site openinfosecfoundation.org

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.

Changes: Various clean up and bug fixes.
tags | tool, intrusion detection
systems | unix
MD5 | 90228925c6a42d41fb2ee86911bc4000
HP Security Bulletin HPSBMU03056
Posted Jun 27, 2014
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU03056 - Potential security vulnerabilities have been identified with HP Version Control Repository Manager (HP VCRM) running OpenSSL on Linux and Windows. The vulnerabilities could be exploited remotely to create a Denial of Service (DoS), execute code, allow unauthorized access, or disclose information. Revision 1 of this advisory.

tags | advisory, denial of service, vulnerability
systems | linux, windows
advisories | CVE-2010-5298, CVE-2014-0076, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470
MD5 | c593afb8ed3278760c923d0566ff0faf
HP Security Bulletin HPSBMU03057
Posted Jun 27, 2014
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU03057 - Potential security vulnerabilities have been identified with HP Version Control Agent (HP VCA) running OpenSSL on Linux and Windows. The vulnerabilities could be exploited remotely to create a Denial of Service (DoS), execute code, allow unauthorized access, or disclose information. Revision 1 of this advisory.

tags | advisory, denial of service, vulnerability
systems | linux, windows
advisories | CVE-2010-5298, CVE-2014-0076, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470
MD5 | c19a68128ba8889a700b22211e6d6ec2
HP Security Bulletin HPSBMU03061
Posted Jun 27, 2014
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU03061 - A potential security vulnerability has been identified with HP Release Control. The vulnerability could be exploited remotely to allow disclosure of privileged information and elevation of privilege. Revision 1 of this advisory.

tags | advisory
advisories | CVE-2014-2612, CVE-2014-2613
MD5 | 5aa6a2de9f9bae87505a42345dfd7019
Debian Security Advisory 2969-1
Posted Jun 27, 2014
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2969-1 - Bastian Blank reported a denial of service vulnerability in Email::Address, a Perl module for RFC 2822 address parsing and creation. Email::Address::parse used significant time on parsing empty quoted strings. A remote attacker able to supply specifically crafted input to an application using Email::Address for parsing, could use this flaw to mount a denial of service attack against the application.

tags | advisory, remote, denial of service, perl
systems | linux, debian
advisories | CVE-2014-0477
MD5 | d110df66b6bc321523c36bba21c87229
ZeroCMS 1.0 Cross Site Scripting
Posted Jun 27, 2014
Authored by Filippos Mastrogiannis

ZeroCMS version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2014-4195
MD5 | 20edd6a4a24ec2e08c0b9d0544d306d7
ICISSP 2015 Call For Papers
Posted Jun 27, 2014
Site icissp.org

The International Conference on Information Systems Security and Privacy (ICISSP) 2015 has announced its call for papers. It will take place in Loire Valley, France February 9th through the 11th, 2015.

tags | paper, conference
MD5 | 37ac53ef79c56bc9a35278b467735400
HP Security Bulletin HPSBMU03058
Posted Jun 27, 2014
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU03058 - A potential security vulnerability has been identified with HP BladeSystem c-Class Onboard Administrator (OA) running OpenSSL. This vulnerability could be exploited remotely to allow the disclosure of information. Revision 1 of this advisory.

tags | advisory
advisories | CVE-2014-0224
MD5 | 992e99489f216c3c329c8aea3165d112
Ubuntu Security Notice USN-2263-1
Posted Jun 27, 2014
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2263-1 - Salva discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2014-1739, CVE-2014-3144, CVE-2014-3145
MD5 | c5ac813daa3d2a7c0efc73e710d16d61
Ubuntu Security Notice USN-2262-1
Posted Jun 27, 2014
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2262-1 - A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2014-3144, CVE-2014-3145
MD5 | 7522864683e87425e4aa3030dcb1b7b9
Ubuntu Security Notice USN-2261-1
Posted Jun 27, 2014
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2261-1 - Salva discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2014-1739, CVE-2014-3144, CVE-2014-3145
MD5 | d00da09e7581a6bc1f4d880992cfaf1e
Page 1 of 17
Back12345Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close