accept no compromises
Showing 1 - 11 of 11 RSS Feed

Files Date: 2016-05-20

Red Hat Security Advisory 2016-1094-01
Posted May 20, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-1094-01 - OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service solution designed for on-premise or private cloud deployments. Security Fix: A vulnerability was found in the STI build process in OpenShift Enterprise. Access to STI builds was not properly restricted, allowing an attacker to use STI builds to access the Docker socket and escalate their privileges.

tags | advisory
systems | linux, redhat
advisories | CVE-2016-3703, CVE-2016-3708, CVE-2016-3738
MD5 | aba48a613cbacd687526446b02656547
Red Hat Security Advisory 2016-1095-01
Posted May 20, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-1095-01 - OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service solution designed for on-premise or private cloud deployments. Security Fix: An origin validation vulnerability was found in OpenShift Enterprise. An attacker could potentially access API credentials stored in a web browser's localStorage if anonymous access was granted to a service/proxy or pod/proxy API for a specific pod, and an authorized access_token was provided in the query parameter.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2016-3703
MD5 | d80c886246dcf65c41baea3dafec78d0
HP Security Bulletin HPSBGN03564 1
Posted May 20, 2016
Authored by HP | Site hp.com

HP Security Bulletin HPSBGN03564 1 - A vulnerability in Apache Commons Collections for handling Java object deserialization was addressed by HPE Release Control. The vulnerability could be exploited remotely to allow remote code execution. Revision 1 of this advisory.

tags | advisory, java, remote, code execution
advisories | CVE-2016-1999
MD5 | d9cb65a4c9c06e6d4ba3317603e93356
Debian Security Advisory 3584-1
Posted May 20, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3584-1 - Gustavo Grieco discovered several flaws in the way librsvg, a SAX-based renderer library for SVG files, parses SVG files with circular definitions. A remote attacker can take advantage of these flaws to cause an application using the librsvg library to crash.

tags | advisory, remote
systems | linux, debian
advisories | CVE-2015-7558, CVE-2016-4347, CVE-2016-4348
MD5 | a50686507cab25246aadcf35cb1b2bb2
Stegano 0.5.3
Posted May 20, 2016
Authored by Cedric Bonhomme | Site github.com

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit (LSB) technique. It is possible to use a more advanced LSB method based on integers sets. The sets (Sieve of Eratosthenes, Fermat, Carmichael numbers, etc.) are used to select the pixels used to hide the information.

Changes: Reorganization of all modules. No impact for the users of Stegano.
tags | tool, encryption, steganography, python
systems | unix
MD5 | bd306ba44fcfb86a91756fab19086af6
Slackware Security Advisory - curl Updates
Posted May 20, 2016
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New curl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue.

tags | advisory
systems | linux, slackware
advisories | CVE-2016-3739
MD5 | 93397711cc074339b244313ffff3d7e2
WordPress Brafton 3.3.10 Cross Site Scripting
Posted May 20, 2016
Authored by Mehrdad Linux

WordPress Brafton plugin version 3.3.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 4e2d68415f0db9c56c5926c106bd3297
GNU Transport Layer Security Library 3.4.12
Posted May 20, 2016
Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org

GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability. This is the previous stable release.

Changes: Various updates.
tags | protocol, library
MD5 | c76571745c31746ead94af9c4c719124
GNU Transport Layer Security Library 3.3.23
Posted May 20, 2016
Authored by Simon Josefsson, Nikos Mavrogiannopoulos | Site gnu.org

GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability. This is the previous stable release.

Changes: Various updates.
tags | protocol, library
MD5 | 513110c0a550138ab68d8afde5520aa4
Tuninfoforyou 2 / 2.5 Backdoor Account
Posted May 20, 2016
Authored by Mojtaba MobhaM

Tuninfoforyou versions 2 and 2.5 appear to have a backdoor account of admin/admin.

tags | exploit
MD5 | 2b6a789d741e51cd3202ea8ee18f3650
VirIT Explorer Lite / Pro 8.1.68 Privilege Escalation
Posted May 20, 2016
Authored by Paolo Stagno

VirIT Explorer versions Lite 8.1.68 and Pro 8.1.68 suffers from a local privilege escalation vulnerability.

tags | exploit, local
MD5 | 184ff6bdc76bfc0192ffcd4c32d7a13a
Page 1 of 1
Back1Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    15 Files
  • 19
    Oct 19th
    10 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    4 Files
  • 22
    Oct 22nd
    2 Files
  • 23
    Oct 23rd
    10 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close