what you don't know can hurt you
Showing 1 - 17 of 17 RSS Feed

Files Date: 2016-03-21

Mandos Encrypted File System Unattended Reboot Utility 1.7.7
Posted Mar 21, 2016
Authored by Teddy | Site fukt.bsnet.se

The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.

Changes: Various updates.
tags | tool, remote, root
systems | linux, unix
MD5 | a53a3e001eb029a8a25f39c687ab7b35
IP-Array IPTables Firewall Script 1.2.1
Posted Mar 21, 2016
Authored by AllKind | Site ip-array.sourceforge.net

A Linux IPv4 firewall and traffic shaper for single hosts to small and mid-sized networks. It allows flexible rule creation, while also shipping with presets for common needs. Rules are written in simple XML, allowing various ways to group and nest the iptables arguments. An interactive mode is available in order to build configuration files in a wizard based manner. Extensive documentation is also included.

Changes: The old /proc filesystem PROC_* variable configuration system has been removed. Now the system settings are done using the sysctl program. The sysctl rules are now written in XML. A sysctl builder has been added to the interactive mode, allowing to create sysctl rule files easily. A bash completion compspec has been added. An uninstall script has been added. Parsing of XML files by category is now possible even if not in parse-xml mode. Various fixes and improvements.
tags | tool
systems | linux, unix
MD5 | 175bf9ef4950b8f4a49299b129f3c540
NetSTR 0.19
Posted Mar 21, 2016
Authored by Jay Fink | Site systhread.net

NetSTR is an open source small, fast and easy to use port scanner and packet sniffer. IPv4 scanner can perform ranged, single or use an internal top ports list plus it has a flexible timers/port capability. IPv6 single port single host is supported. The tcp and arp sniffers print an easy to read dump format and have a full packet decode capability. Additionally netstr sports a fuzzy passive network scanner.

Changes: Timer bugfix on ipv4scan, start/stop times for scan6 and fast option bugfix.
tags | tool, scanner, tcp
systems | unix
MD5 | a6aad907e0ddb03b8694680c703f7057
AbsoluteTelnet 10.14 DLL Hijacking
Posted Mar 21, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

AbsoluteTelnet version 10.14 suffers from a DLL hijacking vulnerability.

tags | exploit
systems | windows
MD5 | 5040ccf18b3560a2ecc3ad6b720c4bdf
Debian Security Advisory 3524-1
Posted Mar 21, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3524-1 - It was discovered that the ActiveMQ Java message broker performs unsafe deserialisation.

tags | advisory, java
systems | linux, debian
advisories | CVE-2015-5254
MD5 | d25e08612f2dd23bca0a434c0194cafe
Debian Security Advisory 3523-1
Posted Mar 21, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3523-1 - This update disables the Graphite font shaping library in Iceweasel, Debian's version of the Mozilla Firefox web browser.

tags | advisory, web
systems | linux, debian
MD5 | 4c2a7764ff74bc2aa12f37104ae20524
Debian Security Advisory 3522-1
Posted Mar 21, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3522-1 - Alex Rousskov from The Measurement Factory discovered that Squid3, a fully featured web proxy cache, does not properly handle errors for certain malformed HTTP responses. A remote HTTP server can exploit this flaw to cause a denial of service (assertion failure and daemon exit).

tags | advisory, remote, web, denial of service
systems | linux, debian
advisories | CVE-2016-2571
MD5 | a43d5a8fe8968f2c1d995b2b89502b27
Gentoo Linux Security Advisory 201603-15
Posted Mar 21, 2016
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201603-15 - Multiple vulnerabilities have been found in OpenSSL, the worst allowing remote attackers to decrypt TLS sessions. Versions less than 1.0.2g-r2 are affected.

tags | advisory, remote, vulnerability
systems | linux, gentoo
advisories | CVE-2016-0702, CVE-2016-0703, CVE-2016-0704, CVE-2016-0705, CVE-2016-0797, CVE-2016-0798, CVE-2016-0799, CVE-2016-0800
MD5 | 76272f137f358f98c8ed9a0c861ba44b
D-Link DWR-932 Authentication Bypass / Password Disclosure
Posted Mar 21, 2016
Authored by Saeed reza Zamanian

D-Link DWR-932 with firmware versions 4.00 and below suffer from authentication bypass and password disclosure vulnerabilities.

tags | exploit, vulnerability, bypass
MD5 | cb4b395185b8d0f04af4c54a0468d04e
WordPress eBook Download 1.1 Directory Traversal
Posted Mar 21, 2016
Authored by Wadeek

WordPress eBook Download plugin version 1.1 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 7f868e251f717dc4ce6adab5e27c9935
WordPress Import CSV 1.1 Directory Traversal
Posted Mar 21, 2016
Authored by Wadeek

WordPress Import CSV plugin version 1.1 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | bda86101546303236ccb0e160ffd38f0
AsusTEK asio.sys MSR Manipulation
Posted Mar 21, 2016
Authored by 0x3d5157636b525761

AsusTEK asio.sys driver accepts IOCTLs that allow the user to freely manipulate MSRs.

tags | advisory
MD5 | c18c9c0b57d01cc8efce04b22b9fd19f
DORG Cross Site Scripting / SQL Injection
Posted Mar 21, 2016
Authored by SECUPENT

DORG Disc Organization System suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | b769f9a139eba6180fb8ef81b2f18c2a
Wildfly Filter Restriction Bypass / Information Disclosure
Posted Mar 21, 2016
Authored by Tal Solomon

Wildfly versions prior to 10.0.0.Final, including 9.0.2.Final, and 8.2.1.Final suffer from a WEB-INF and META-INF information disclosure issue via a filter restriction bypass vulnerability. Video included showing the proof of concept.

tags | exploit, web, proof of concept, bypass, info disclosure
systems | linux
advisories | CVE-2016-0793
MD5 | 552cf1689a4ca3d334fbbb88f6f4b414
WordPress Abtest Local File Inclusion
Posted Mar 21, 2016
Authored by CrashBandicot

WordPress Abtest plugin suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 8fd923bde8518c5aa9f6a2239ee31282
Netgear DGNv2200 Authorization Bypass / Command Injection
Posted Mar 21, 2016
Authored by 0x3d5157636b525761

Netgear DGNv2200 suffers from authentication bypass, memory corruption, and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, bypass, csrf
MD5 | 2fd1a102edd92745455ae066fd342de5
Sysax Multi Server 6.50 SEH Overflow
Posted Mar 21, 2016
Authored by Paul Purcell

Sysax Multi Server version 6.50 HTTP file share SEH overflow remote code execution exploit.

tags | exploit, remote, web, overflow, code execution
MD5 | 9d0bf49c04a7a3383e049f792b5de424
Page 1 of 1

File Archive:

December 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    18 Files
  • 2
    Dec 2nd
    11 Files
  • 3
    Dec 3rd
    23 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    13 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags


packet storm

© 2020 Packet Storm. All rights reserved.

Security Services
Hosting By