This Metasploit module exploits a bug in futex_requeue in the linux kernel. Any android phone with a kernel built before June 2014 should be vulnerable.
edb509825e7088dfdc443f8f8613f34f0bee062721bb567b7808210b3962498cWordPress Shopping Cart (WP EasyCart) Plugin for WordPress contains a flaw that allows a remote attacker to execute arbitrary PHP code. This flaw exists because the /inc/amfphp/administration/banneruploaderscript.php script does not properly verify or sanitize user-uploaded files. By uploading a .php file, the remote system will place the file in a user-accessible path. Making a direct request to the uploaded file will allow the attacker to execute the script with the privileges of the web server. In versions 3.0.8 and below authentication can be done by using the WordPress credentials of a user with any role. In later versions, a valid EasyCart admin password will be required that is in use by any admin user. A default installation of EasyCart will setup a user called "demouser" with a preset password
0495c750468ab31d70256f4e711a288852e5ea85871a98e83de8ce2b6b4ee15dUbuntu Security Notice 2496-1 - Michal Zalewski discovered that the setup_group function in libbfd in GNU binutils did not properly check group headers in ELF files. An attacker could use this to craft input that could cause a denial of service (application crash) or possibly execute arbitrary code. Hanno Boeck discovered that the _bfd_XXi_swap_aouthdr_in function in libbfd in GNU binutils allowed out-of-bounds writes. An attacker could use this to craft input that could cause a denial of service (application crash) or possibly execute arbitrary code. Various other issues were also addressed.
b6df17a5277d92fffca45fc1f904eb0996be802bd4b8791a28b757ad38007466u5CMS version 3.9.3 suffers from multiple remote SQL injection vulnerabilities.
9a7292bee32487e77761409357fcc5847d8f8c5465fc52983b7137498833bb77u5CMS version 3.9.3 suffers from a remote arbitrary file deletion vulnerability.
9da13126f17b6a7f1e71e3c840231ecbefd53d013b3fb52be45e8c9b8a084de9It was possible to craft a malformed chunk as part of a chunked request that caused Tomcat to read part of the request body as a new request. Versions affected include Apache Tomcat 8.0.0-RC1 to 8.0.8, 7.0.0 to 7.0.54, and 6.0.0 to 6.0.41.
1d5c8ddaa301a84465f162621064c1f462babcfcfd8432c0855a0ca51ba0abd7Wireless File Transfer Pro version 1.0.1 suffers from multiple cross site request forgery vulnerabilities.
14135bf3ad59a0a749b01822ac0e2d9019544be4e5a8b7b73f77b3942088efbdRadexscript CMS version 2.2.0 suffers from a remote SQL injection vulnerability.
9d25ec63bf90be0fe55d2ed9ed9a0e230f1fd97452b45e9cfde668101a50c2c1u5CMS version 3.9.3 suffers from multiple open redirect vulnerabilities.
8069af54741e8b7cb793d044ac4ce440ad11b5eeceb5fc8b95f6b52dd2ecdbb2WordPress Contact Form DB plugin version 2.8.26 suffers from a cross site scripting vulnerability.
de9229b23ead09cb3a64e00bd713490b577e5f3a5702afa826468aef0d83674bu5CMS version 3.9.3 suffers from a local file inclusion vulnerability.
41c0404a66314c45f269926de9812da9fd39f77232118fdd59db13afa949b037WordPress Cart66 Lite plugin version 1.5.4 suffers from a cross site scripting vulnerability.
d55d456da2969e8282ba5b0b286d7eaf4ed8485ce8a79ef1261715e49dd305deWordPress Acobot Live Chat and Contact Form plugin version 2.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
bdfc48dbd7f56bb4624b57c256326b0ae156e1a91cb1158d5afbfaee526866fdHP Security Bulletin HPSBGN03252 1 - A potential security vulnerability has been identified with HP AppPulse Active running SSLv3. This is the SSLv3 vulnerability known as "Padding Oracle on Downgraded Legacy Encryption" also known as "Poodle", which could be exploited remotely to allow disclosure of information. Revision 1 of this advisory.
38b0dffb711e0c8c8f9f1aa7b945de86485ecfefe051984c12cfe06dc70da2a1Debian Linux Security Advisory 3157-1 - Multiple vulnerabilities were discovered in the interpreter for the Ruby language.
ad0b1bc1dc150910ecc5028b1f499c6140172c1ab38abae8e3ea2bd478999d96Ubuntu Security Notice 2497-1 - Stephen Roettger, Sebastian Krahmer, and Harlan Stenn discovered that NTP incorrectly handled the length value in extension fields. A remote attacker could use this issue to possibly obtain leaked information, or cause the NTP daemon to crash, resulting in a denial of service. Stephen Roettger discovered that NTP incorrectly handled ACLs based on certain IPv6 addresses.
4f2ff3a4f845a75182dbeab18b0ed522016c38a4abb92f02a822a4c46c7edd86Debian Linux Security Advisory 3156-1 - A vulnerability was found in liveMedia, a set of C++ libraries for multimedia streaming. RTSP messages starting with whitespace were assumed to have a zero length, triggering an integer underflow, infinite loop, and then a buffer overflow. This could allow remote attackers to cause a denial of service (crash) or arbitrary code execution via crafted RTSP messages.
28921c67bbc3501276da7538ffec97c4bb18b334c7df1c348643c9942bc48d91Debian Linux Security Advisory 3154-2 - Marc Deslauriers reported that the patch applied to ntp for CVE-2014-9297 in DSA 3154-1 was incomplete. This update corrects that problem.
0434d7a7b858a60cfdf6842b9af0411841fc3184859bdd6af82c21d284eda31fHP Security Bulletin HPSBMU03216 2 - Potential security vulnerabilities have been identified with HP Service Manager running SSLv3. The vulnerabilities could be exploited remotely resulting in Denial of Service (DoS), unauthorized access or disclosure of information. Revision 2 of this advisory.
d6e4d8db5b70219011e3b645dfcaaf14015a67c7e5e692382493804c69e12e82HP Security Bulletin HPSBGN03254 1 - A potential security vulnerability has been identified with HP Service Health Analyzer running SSLv3. This is the SSLv3 vulnerability known as "Padding Oracle on Downgraded Legacy Encryption" also known as "Poodle", which could be exploited remotely to allow disclosure of information. Revision 1 of this advisory.
1a97f1ae112e6c9382a8b377252fbc93c3cade49087ca7c2d6a3ec73587df88aHP Security Bulletin HPSBMU03224 1 - A potential security vulnerability has been identified with HP LoadRunner and Performance Center, Load Generator Virtual Machine Images, running Windows. The vulnerability in Windows running in virtual machine images provided with LoadRunner and Load Generator could be exploited remotely to allow elevation of privilege. Revision 1 of this advisory.
cae6306f1766d2d3db1690322f5fa46746051ce0d44363127d3f078ff15a7943HP Security Bulletin HPSBGN03253 1 - A potential security vulnerability has been identified with HP Business Process Insight (BPI) running SSLv3. This is the SSLv3 vulnerability known as "Padding Oracle on Downgraded Legacy Encryption" also known as "Poodle", which could be exploited remotely to allow disclosure of information. Revision 1 of this advisory.
6d6df7b99c9e876ede2c843534de2d38344647a7b12f2919ec5fa1c818477a70HP Security Bulletin HPSBUX03235 SSRT101750 2 - A potential security vulnerability has been identified with HP-UX running BIND. This vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 2 of this advisory.
924d7f74cde87a934f3d4a52b5cd0d4c0a57304074cefdab1b18c7c7536e9634HP Security Bulletin HPSBUX03166 SSRT101489 2 - A potential security vulnerability has been identified in the HP-UX running PAM using libpam_updbe in pam.conf(4). This vulnerability could allow remote users to bypass certain authentication restrictions. Revision 2 of this advisory.
b5eb957ddcdbd719f788cfde78bdb8a883eb5829080b05cbd99accd22dd8917dDebian Linux Security Advisory 2978-2 - It was discovered that the update released for libxml2 in DSA 2978 fixing CVE-2014-0191 was incomplete. This caused libxml2 to still fetch external entities regardless of whether entity substitution or validation is enabled.
75ca24bacda68087f871e1aa68638a3e79c95dcff8d9fdea640df8af5b8a3b46
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed