Twenty Year Anniversary
Showing 1 - 15 of 15 RSS Feed

Files Date: 2015-05-05

TOR Virtual Network Tunneling Tool
Posted May 5, 2015
Authored by Roger Dingledine | Site

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

Changes: Tor fixes two security issues that could be used by an attacker to crash hidden services, or crash clients visiting hidden services. Hidden services should upgrade as soon as possible; clients should upgrade whenever packages become available.
tags | tool, remote, local, peer2peer
systems | unix
MD5 | a43b4dc6a95d219927aab0a2bb7ed322
RM Downloader Local Buffer Overflow
Posted May 5, 2015
Authored by TUNISIAN CYBER | Site

This Metasploit module exploits a stack buffer overflow in RM Downloader version by creating a specially crafted .ram file allowing an attacker the able to execute arbitrary code.

tags | exploit, overflow, arbitrary
MD5 | 255a689cb73d7bc7eaed0384fec5acaf
vPhoto-Album 4.2 Local File Inclusion
Posted May 5, 2015
Authored by Katharina S.L. | Site

vPhoto-Album version 4.2 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 11af5bd66e5d80004c4f5f24b8f022ff
ICU Heap / Integer Overflows
Posted May 5, 2015
Authored by Pedro Ribeiro

The ICU library suffers from heap and integer overflows. Confirmed vulnerable are versions 52 through 54.

tags | advisory, overflow
advisories | CVE-2014-8146, CVE-2014-8147
MD5 | c20f81dbe5f336d4b887a8ebb2a797f4
Dell SonicWALL Secure Remote Access 7.5 / 8.0 CSRF
Posted May 5, 2015
Authored by Veit Hailperin

Dell SonicWALL Secure Remote Access (SRA) versions 7.5 prior to and 8.0 prior to proof of concept cross site request forgery exploit.

tags | exploit, remote, proof of concept, csrf
advisories | CVE-2015-2248
MD5 | 8354c1619d71c02b3f5273b088bb67da
mrtparse MRT Parsing Tool 1.2
Posted May 5, 2015
Authored by Nobuhiro ITOU, Tetsumune KISO, Yoshiyuki YAMAUCHI | Site

mrtparse is a module to read and analyze the MRT format data. The MRT format data can be used to export routing protocol messages, state changes, and routing information base contents, and is standardized in RFC6396. Programs like Quagga / Zebra, BIRD, OpenBGPD and PyRT can dump the MRT format data. Written in Python.

Changes: Various updates and bug fixes.
tags | tool, protocol, python
systems | unix
MD5 | a57da40b4e742305a431ed61314b82d3
Mandriva Linux Security Advisory 2015-227
Posted May 5, 2015
Authored by Mandriva | Site

Mandriva Linux Security Advisory 2015-227 - This update provides MariaDB 5.5.43, which fixes several security issues and other bugs.

tags | advisory
systems | linux, mandriva
advisories | CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2571
MD5 | 55a49b28f280e56e00f5b32d3caace27
Ubuntu Security Notice USN-2595-1
Posted May 5, 2015
Authored by Ubuntu | Site

Ubuntu Security Notice 2595-1 - It was discovered that ppp incorrectly handled large PIDs. When pppd is used with a RADIUS server, a remote attacker could use this issue to cause it to crash, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2015-3310
MD5 | b086634e63bcb5994e064a5d90eeffec
Ubuntu Security Notice USN-2594-1
Posted May 5, 2015
Authored by Ubuntu | Site

Ubuntu Security Notice 2594-1 - It was discovered that ClamAV incorrectly handled certain malformed files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. In the default installation, attackers would be isolated by the ClamAV AppArmor profile.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2015-2170, CVE-2015-2221, CVE-2015-2222, CVE-2015-2305, CVE-2015-2668
MD5 | 8c85b27865d8c0ffe4f2cccc861691d7
Debian Security Advisory 3251-1
Posted May 5, 2015
Authored by Debian | Site

Debian Linux Security Advisory 3251-1 - Nick Sampanis discovered that dnsmasq, a small caching DNS proxy and DHCP/TFTP server, did not properly check the return value of the setup_reply() function called during a TCP connection, which is used then as a size argument in a function which writes data on the client's connection. A remote attacker could exploit this issue via a specially crafted DNS request to cause dnsmasq to crash, or potentially to obtain sensitive information from process memory.

tags | advisory, remote, tcp
systems | linux, debian
advisories | CVE-2015-3294
MD5 | 95940c36620ec858819120c04c513b6d
Mediacoder Buffer Overflow
Posted May 5, 2015
Authored by evil_comrade

Mediacoder version SEH buffer overflow exploit.

tags | exploit, overflow
MD5 | e3842ee875ae81d74dcabd13cb5349b4
WordPress 4.2.1 XSS / Code Execution
Posted May 5, 2015
Authored by Evex

Exploit that uses a WordPress cross site scripting flaw to execute code as the administrator.

tags | exploit, xss
MD5 | 9a04af37341fdd422f7a74cb9e814084
Fortinet FortiAnalyzer / FortiManager Cross Site Scripting
Posted May 5, 2015
Authored by Benjamin Kunz Mejri | Site

Fortinet FortiAnalyzer and FortiManager suffer from a client-side cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2015-3620
MD5 | 2a027a2498801cb526beb6737915cea5
WordPress Ultimate Product Catalogue 3.1.2 XSS / CSRF / File Upload
Posted May 5, 2015
Authored by Felipe Molina

WordPress Ultimate Product Catalogue plugin version 3.1.2 suffers from cross site request forgery, cross site scripting, and file upload vulnerabilities.

tags | exploit, vulnerability, xss, file upload, csrf
MD5 | fc709b773a7895ee575a26129cc929f2
Apache Xerces-C XML Parser Denial Of Service
Posted May 5, 2015
Authored by beford

Apache Xerces-C XML Parser versions prior to 3.1.2 denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
advisories | CVE-2015-0252
MD5 | 9e721975893aa5c83e05abd0b7d9e405
Page 1 of 1

Want To Donate?

Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

August 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    19 Files
  • 2
    Aug 2nd
    17 Files
  • 3
    Aug 3rd
    16 Files
  • 4
    Aug 4th
    1 Files
  • 5
    Aug 5th
    1 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    15 Files
  • 8
    Aug 8th
    9 Files
  • 9
    Aug 9th
    7 Files
  • 10
    Aug 10th
    10 Files
  • 11
    Aug 11th
    1 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    14 Files
  • 14
    Aug 14th
    18 Files
  • 15
    Aug 15th
    38 Files
  • 16
    Aug 16th
    16 Files
  • 17
    Aug 17th
    22 Files
  • 18
    Aug 18th
    3 Files
  • 19
    Aug 19th
    3 Files
  • 20
    Aug 20th
    21 Files
  • 21
    Aug 21st
    7 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2018 Packet Storm. All rights reserved.

Security Services
Hosting By