what you don't know can hurt you
Showing 1 - 15 of 15 RSS Feed

Files Date: 2015-02-05

Packet Fence 4.6.0
Posted Feb 5, 2015
Site packetfence.org

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.

Changes: This is a major release with new features, enhancements, and important bug fixes.
tags | tool, remote
systems | unix
MD5 | 7a2cd10a6c6c1a6e20415c2d98570371
Windows tcpip.sys Arbitrary Write Privilege Escalation
Posted Feb 5, 2015
Authored by Matt Bergin, Jay Smith | Site metasploit.com

A vulnerability within the Microsoft TCP/IP protocol driver tcpip.sys, can allow an attacker to inject controlled memory into an arbitrary location within the kernel.

tags | exploit, arbitrary, kernel, tcp, protocol
advisories | CVE-2014-4076
MD5 | 5747cd6bbd24f85419c0aa3e24d03646
Red Hat Security Advisory 2015-0138-01
Posted Feb 5, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0138-01 - Fuse ESB Enterprise is an integration platform based on Apache ServiceMix. Fuse MQ Enterprise, based on Apache ActiveMQ, is a standards-compliant messaging system that is tailored for use in mission critical applications. This release of Fuse ESB Enterprise/MQ Enterprise 7.1.0 Patch 8 on Rollup Patch 1 is an update to Fuse ESB Enterprise 7.1.0 and Fuse MQ Enterprise 7.1.0. The following security issues are addressed with this release: It was found that if a configured LDAP server supported the unauthenticated authentication mechanism, the LDAPLoginModule implementation, provided by ActiveMQ Java Authentication and Authorization Service, would consider an authentication attempt to be successful for a valid user that provided an empty password. A remote attacker could use this flaw to bypass the authentication mechanism of an application using LDAPLoginModule, and assume a role of any valid user within that application.

tags | advisory, java, remote
systems | linux, redhat
advisories | CVE-2014-3600, CVE-2014-3612
MD5 | cd1c3bab3952712086a27112172df642
Red Hat Security Advisory 2015-0137-01
Posted Feb 5, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0137-01 - Red Hat JBoss Fuse, based on Apache ServiceMix, provides a small-footprint, flexible, open source enterprise service bus and integration platform. Red Hat JBoss A-MQ, based on Apache ActiveMQ, is a standards compliant messaging system that is tailored for use in mission critical applications. This patch is an update to Red Hat JBoss Fuse 6.1.0 and Red Hat JBoss A-MQ 6.1.0. It includes a bug fix, which is documented in the readme.txt file included with the patch files. The following security issues are addressed in this release: It was found that if a configured LDAP server supported the unauthenticated authentication mechanism, the LDAPLoginModule implementation, provided by ActiveMQ Java Authentication and Authorization Service, would consider an authentication attempt to be successful for a valid user that provided an empty password. A remote attacker could use this flaw to bypass the authentication mechanism of an application using LDAPLoginModule, and assume a role of any valid user within that application.

tags | advisory, java, remote
systems | linux, redhat
advisories | CVE-2014-3600, CVE-2014-3612
MD5 | 6a359a245eed9f2add92623ec271d29a
Red Hat Security Advisory 2015-0136-01
Posted Feb 5, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0136-01 - IBM J2SE version 5.0 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2014-6585, CVE-2014-6591, CVE-2014-6593, CVE-2014-8891, CVE-2014-8892, CVE-2015-0395, CVE-2015-0407, CVE-2015-0408, CVE-2015-0410
MD5 | ea78a53f54dd2ecc59adb3b64cc79d8c
Red Hat Security Advisory 2015-0135-01
Posted Feb 5, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0135-01 - IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2014-6585, CVE-2014-6587, CVE-2014-6591, CVE-2014-6593, CVE-2014-8891, CVE-2014-8892, CVE-2015-0395, CVE-2015-0403, CVE-2015-0406, CVE-2015-0407, CVE-2015-0408, CVE-2015-0410, CVE-2015-0412
MD5 | 0d80efefa88283583b93aaff4272b816
Red Hat Security Advisory 2015-0134-01
Posted Feb 5, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0134-01 - IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2014-6549, CVE-2014-6585, CVE-2014-6587, CVE-2014-6591, CVE-2014-6593, CVE-2014-8891, CVE-2014-8892, CVE-2015-0403, CVE-2015-0406, CVE-2015-0407, CVE-2015-0408, CVE-2015-0410, CVE-2015-0412
MD5 | c06276ca0b2d4b65d87d2dc9ab8e8011
Red Hat Security Advisory 2015-0133-01
Posted Feb 5, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0133-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2014-6549, CVE-2014-6585, CVE-2014-6587, CVE-2014-6591, CVE-2014-6593, CVE-2014-8891, CVE-2014-8892, CVE-2015-0403, CVE-2015-0406, CVE-2015-0407, CVE-2015-0408, CVE-2015-0410, CVE-2015-0412
MD5 | 91f79ed8e932404c08124a4a9db66da8
eFront 3.6.15.2 Cross Site Request Forgery
Posted Feb 5, 2015
Authored by Steffen Roesemann

eFront version 3.6.15.2 suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | 4013b51d9d33090b510c9b378a9a90b9
Magento Server MAGMI Cross Site Scripting / Local File Inclusion
Posted Feb 5, 2015
Authored by SECUPENT

Magento Server MAGMI suffers from cross site scripting and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion
MD5 | b613e86630bccf8acd59db0b22e6e9af
INURLBR MD5 Checker
Posted Feb 5, 2015
Authored by Cleiton Pinheiro

This is a PHP script that uses md5.gromweb.com to see if a provided md5 is a known value.

tags | tool, cracker, php
MD5 | 21056090b72f071e17eb8030a9208326
AVG Internet Security 2015.0.5315 Privilege Escalation
Posted Feb 5, 2015
Authored by Parvez Anwar

AVG Internet Security 2015 suffers from an arbitrary write privilege escalation vulnerability.

tags | exploit, arbitrary
advisories | CVE-2014-9632
MD5 | 2ad6ca15ac520dcddb15c6dc966d61ae
BullGuard 14.1.285.4 Privilege Escalation
Posted Feb 5, 2015
Authored by Parvez Anwar

Multiple products from BullGuard suffer from an arbitrary write privilege escalation vulnerability.

tags | exploit, arbitrary
advisories | CVE-2014-9642
MD5 | 407789f743bc4f6269642d81773509f9
K7 Computing 14.2.0.240 Privilege Escalation
Posted Feb 5, 2015
Authored by Parvez Anwar

Multiple products from K7 Computing suffer from an arbitrary write privilege escalation vulnerability.

tags | exploit, arbitrary
advisories | CVE-2014-9643
MD5 | 65bb884e730bb74600a494c9b6a35cf5
Shuttle Tech ADSL Modem-Router 915 WM DNS Changer
Posted Feb 5, 2015
Authored by Todor Donev

Shuttle Tech ADSL Modem-Router 915 WM unauthenticated remote DNS change exploit.

tags | exploit, remote
MD5 | 97009ecb921a7487a636e4b5142113a3
Page 1 of 1
Back1Next

File Archive:

April 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    60 Files
  • 2
    Apr 2nd
    18 Files
  • 3
    Apr 3rd
    0 Files
  • 4
    Apr 4th
    0 Files
  • 5
    Apr 5th
    0 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    0 Files
  • 9
    Apr 9th
    0 Files
  • 10
    Apr 10th
    0 Files
  • 11
    Apr 11th
    0 Files
  • 12
    Apr 12th
    0 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    0 Files
  • 16
    Apr 16th
    0 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close