Exploit the possiblities
Showing 1 - 16 of 16 RSS Feed

Files Date: 2016-02-08

SIN 2016 Call For Papers
Posted Feb 8, 2016
Site sinconf.org

The 9th International Conference on Security of Information and Networks (SIN 2016) has announced its call for papers. It will be held July 20th through the 22nd, 2016 at Rutgers University, New Jersey, USA.

tags | paper, conference
MD5 | ca0d80aa9df124b72154357eb5381a80
Debian Security Advisory 3468-1
Posted Feb 8, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3468-1 - It was discovered that polarssl, a library providing SSL and TLS support, contained two heap-based buffer overflows that could allow a remote attacker to trigger denial of service (via application crash) or arbitrary code execution.

tags | advisory, remote, denial of service, overflow, arbitrary, code execution
systems | linux, debian
advisories | CVE-2015-5291, CVE-2015-8036
MD5 | 5827001e3c770a434ee1a6566a3693a8
Debian Security Advisory 3467-1
Posted Feb 8, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3467-1 - Several vulnerabilities have been found in tiff, a Tag Image File Format library. Multiple out-of-bounds read and write flaws could cause an application using the tiff library to crash.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2015-8665, CVE-2015-8683, CVE-2015-8781, CVE-2015-8782, CVE-2015-8783, CVE-2015-8784
MD5 | c60fb20a079daee1650ebe606d162d21
HP Security Bulletin HPSBGN03430 3
Posted Feb 8, 2016
Authored by HP | Site hp.com

HP Security Bulletin HPSBGN03430 3 - A potential security vulnerability has been identified with ArcSight Management Center, ArcSight Connector Appliance, ArcSight Logger, and ArcSight SmartConnectors. The vulnerability could be exploited locally to allow elevation of privilege. Note: The following products are not vulnerable if installed as a non-root user: ArcSight Management Center, ArcSight Connector Appliance, ArcSight Logger, and ArcSight SmartConnectors. Revision 3 of this advisory.

tags | advisory, root
advisories | CVE-2015-6030
MD5 | 61343a378147c5fa063f043249e5ff1e
HP Security Bulletin HPSBGN03434 1
Posted Feb 8, 2016
Authored by HP | Site hp.com

HP Security Bulletin HPSBGN03434 1 - A vulnerability in Apache Commons Collections for handling Java object deserialization was addressed by HP Continuous Delivery Automation. The vulnerability could be exploited remotely to allow remote code execution. Revision 1 of this advisory.

tags | advisory, java, remote, code execution
advisories | CVE-2016-1986
MD5 | 28c704c90036a8e1a440e7a4840d4387
Red Hat Security Advisory 2016-0126-01
Posted Feb 8, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-0126-01 - OpenStack Object Storage provides object storage in virtual containers, which allows users to store and retrieve files. The service's distributed architecture supports horizontal scaling; redundancy as failure-proofing is provided through software-based data replication. Because Object Storage supports asynchronous eventual consistency replication, it is well suited to multiple data-center deployment. A memory-leak issue was found in OpenStack Object Storage, in the proxy-to-server connection. An OpenStack-authenticated attacker could remotely trigger this flaw to cause denial of service through excess memory consumption.

tags | advisory, denial of service
systems | linux, redhat
advisories | CVE-2016-0737, CVE-2016-0738
MD5 | 1153218392d580b7198354776d8d0d08
HP Security Bulletin HPSBHF03431 2
Posted Feb 8, 2016
Authored by HP | Site hp.com

HP Security Bulletin HPSBHF03431 2 - Potential security vulnerabilities have been identified with HPE Network Switches. The vulnerabilities could be exploited locally to allow bypass of security restrictions, and indirect vulnerabilities. Note: Versions 15.16.xxxx and 15.17.xxxx were incorrectly identified as vulnerable, the only affected versions are KB.15.18.0006 & KB.15.18.0007. Revision 2 of this advisory.

tags | advisory, vulnerability
advisories | CVE-2015-6859, CVE-2015-6860
MD5 | 8484419b78c24c10b6e213833baac793
Open Real Estate 1.15.1 XSS / SQL Injection / Weak Hashing
Posted Feb 8, 2016
Authored by Simon Waters

Open Real Estate version 1.15.1 suffers from weak password hashing, cross site scripting, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | ab2a2f36d97c9c4531007304f29e6c39
Charts 4 PHP 1.2.3 Cross Site Scripting
Posted Feb 8, 2016
Authored by 1N3

Charts 4 PHP version 1.2.3 suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | 56e59ec0b66eb2f65509a7130f5bae5e
WordPress Booking Calendar Contact Form 1.0.23 Shortcode SQL Injection
Posted Feb 8, 2016
Authored by Joaquin Ramirez Martinez

WordPress Booking Calendar Contact Form plugin versions 1.0.23 and below suffer from a remote shortcode blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 25f2be1726829e418b22af60a9e6ec75
WordPress Booking Calendar Contact Form 1.0.23 Blind SQL Injection
Posted Feb 8, 2016
Authored by Joaquin Ramirez Martinez

WordPress Booking Calendar Contact Form plugin versions 1.0.23 and below suffer from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 247430b519f3f9c0bf0fff1c088c7ee7
Oracle Java 6/7/8 / VirtualBox DLL Hijacking
Posted Feb 8, 2016
Authored by Stefan Kanthak

Oracle Java versions 6, 7, and 8, and Virtualbox are all susceptible to DLL hijacking vulnerabilities.

tags | advisory, java, vulnerability
systems | windows
advisories | CVE-2016-0602, CVE-2016-0603
MD5 | 280f165125f9a2cf62e0580c18f03684
WinRAR 5.30 DLL Hijacking
Posted Feb 8, 2016
Authored by Stefan Kanthak

WinRAR versions 5.30 and below suffer from a DLL hijacking vulnerability.

tags | advisory
systems | windows
MD5 | 5b4a0d05130e9982cbf04fb3768d58b6
Getdpd Script Insertion
Posted Feb 8, 2016
Authored by Hadji Samir | Site vulnerability-lab.com

Getdpd suffers from a malicious script insertion vulnerability.

tags | exploit
MD5 | d0db3694df04526138922d9d0d4ed2e5
WordPress Booking Calendar Contact Form 1.0.23 CSRF / XSS
Posted Feb 8, 2016
Authored by Joaquin Ramirez Martinez

WordPress Booking Calendar Contact Form plugin versions 1.0.23 and below suffer from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 9f85a6ed1472ccdc80fb5f6d3b6ff3ff
Alsovalue CMS 2016Q1 SQL Injection
Posted Feb 8, 2016
Authored by Iran Cyber Security Group | Site vulnerability-lab.com

Alsovalue CMS from 2016Q1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 52ab7259d70bb30ba68ec2f31d7fd1e7
Page 1 of 1
Back1Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    19 Files
  • 18
    Nov 18th
    4 Files
  • 19
    Nov 19th
    2 Files
  • 20
    Nov 20th
    9 Files
  • 21
    Nov 21st
    15 Files
  • 22
    Nov 22nd
    23 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close