Exploit the possiblities
Showing 1 - 23 of 23 RSS Feed

Files Date: 2016-07-08

CyberPower Systems PowerPanel 3.1.2 XXE Out-Of-Band Data Retrieval
Posted Jul 8, 2016
Authored by LiquidWorm | Site zeroscience.mk

CyberPower Systems PowerPanel version 3.1.2 suffers from an unauthenticated XML External Entity (XXE) vulnerability using the DTD parameter entities technique resulting in disclosure and retrieval of arbitrary data on the affected node via out-of-band (OOB) attack. The vulnerability is triggered when input passed to the xmlservice servlet using the ppbe.xml script is not sanitized while parsing the xml inquiry payload returned by the JAXB element translation.

tags | exploit, arbitrary
MD5 | 0d32573cd1a4724e961e726d4112e4e1
Gentoo Linux Security Advisory 201607-02
Posted Jul 8, 2016
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201607-2 - Multiple vulnerabilities have been found in libpcre, the worst of which could lead to arbitrary code execution, or cause a Denial of Service condition. Versions less than 8.38-r1 are affected.

tags | advisory, denial of service, arbitrary, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2014-8964, CVE-2015-5073, CVE-2015-8380, CVE-2015-8381, CVE-2015-8383, CVE-2015-8384, CVE-2015-8385, CVE-2015-8386, CVE-2015-8387, CVE-2015-8388, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8392, CVE-2015-8393, CVE-2015-8394, CVE-2015-8395, CVE-2016-1283
MD5 | d5142f70faf9cdfff03e7d3388c398a8
Gentoo Linux Security Advisory 201607-01
Posted Jul 8, 2016
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201607-1 - Multiple vulnerabilities have been found in Squid, the worst of which could lead to arbitrary code execution, or cause a Denial of Service condition. Versions less than 3.5.19 are affected.

tags | advisory, denial of service, arbitrary, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2014-6270, CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572, CVE-2016-3947, CVE-2016-3948, CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054, CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556
MD5 | dfa7b745c15730b751822c1df7f2463b
Microsoft WinDbg LogViewer Buffer Overflow
Posted Jul 8, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Microsoft WinDbg LogViewer suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | bc1f8f9ae42d4a111faf4c329bf07f02
Microsoft Process Kill Utility 6.3.9600.17298 Buffer Overflow
Posted Jul 8, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Microsoft Process Kill Utility version 6.3.9600.17298 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 49f4e1af907fb264151d0a04b071a279
Packet Fence 6.2.1
Posted Jul 8, 2016
Site packetfence.org

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.

Changes: Updated news and upgrade.
tags | tool, remote
systems | unix
MD5 | 7a71eff427b20a3db36475c0eb6d004a
Streamo Online Radio / TV Streaming CMS SQL Injection
Posted Jul 8, 2016
Authored by N4TuraL

Streamo Online Radio and TV Streaming CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 495e49dbe8bb36e635df2b02c603c1f6
Linux/x86 TCP Reverse Shellcode
Posted Jul 8, 2016
Authored by sajith

75 bytes small Linux/x86 TCP reverse shellcode.

tags | x86, tcp, shellcode
systems | linux
MD5 | ff67d385d7d7c84ef688cc48b7052120
Adobe Flash LMZA Property Decoding Heap Corruption
Posted Jul 8, 2016
Authored by Google Security Research, natashenka

This archive contains an images that causes heap corruption in Adobe Flash due to LMZA property decoding.

tags | exploit
systems | linux
advisories | CVE-2016-4137
MD5 | 87aee21de3441c042a6129bf986b3221
PHP Real Estate Script 3 Arbitrary File Disclosure
Posted Jul 8, 2016
Authored by Meisam Monsef

PHP Real Estate Script version 3 suffers from a file disclosure vulnerability.

tags | exploit, php, info disclosure
MD5 | 3a641595bd36ae2df63681d535de6414
BMW ConnectedDrive Session Validation
Posted Jul 8, 2016
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

A session validation approval web vulnerability has been discovered in the official BMW ConnectedDrive online service web application. The vulnerability allows remote attackers to manipulate specific configured parameters to compromise the affected web application service.

tags | exploit, remote, web
MD5 | 6627f63100c40173e739ce147645bc67
PaX Reference Count Overflow Mitigation Bypass
Posted Jul 8, 2016
Authored by Jann Horn, Google Security Research

PaX contains a mitigation for reference count overflows that is intended to prevent atomic_t variables from reaching 0x80000000 and, more importantly, wrapping around to zero. A documented special case on x86 is that, because "atomically increment unless current value is X" cannot be implemented without a cmpxchg loop, the code instead increments the counter, checks for an overflow and, if an overflow happened, immediately decrements the counter back.

tags | exploit, overflow, x86
systems | linux
MD5 | e880c7eff8d7b6a8064df89a254883a5
JetBrains PyCharm Professional 2016.1.4 DLL Hijacking
Posted Jul 8, 2016
Authored by Himanshu Mehta

JetBrains PyCharm Professional 2016.1.4 suffers from a dll hijacking vulnerability.

tags | exploit
systems | windows
MD5 | 78fb8b52654441654c3080d23949fcca
Notepad++ 6.9.2 DLL Hijacking
Posted Jul 8, 2016
Authored by Himanshu Mehta

The installer for Notepad++ version 6.9.2 suffers from a dll hijacking vulnerability.

tags | exploit
systems | windows
MD5 | cd34c145a112a9b94ab416e3926d9845
BMW Client-Side Cross Site Scripting
Posted Jul 8, 2016
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

The BMW online web application suffers from a cross site scripting vulnerability.

tags | exploit, web, xss
MD5 | 387086c39d6632ebe8f022cde9f1efac
Adobe Flash ATF Image Packing Overflow
Posted Jul 8, 2016
Authored by Google Security Research, natashenka

There is a heap overflow in ATF image packing. The file included in this archive demonstrates the vulnerability.

tags | exploit, overflow
systems | linux
advisories | CVE-2016-4138
MD5 | ddabcd240c70d06ff1e52d8d8ac2fa42
Adobe Flash JXR Processing Double Free
Posted Jul 8, 2016
Authored by Google Security Research, natashenka

This JXR file causes a heap overflow when loaded in Adobe Flash.

tags | exploit, overflow
systems | linux
advisories | CVE-2016-4136
MD5 | 19c28c336c3080073bcb449b841f8426
360 Total Security 2016 DLL Hijacking
Posted Jul 8, 2016
Authored by Himanshu Mehta

360 Total Security 2016 suffers from a dll hijacking vulnerability.

tags | exploit
systems | windows
MD5 | 219d3eacfd5f6195ea1439b83209bed8
Adobe Flash ATF Processing Overflow
Posted Jul 8, 2016
Authored by Google Security Research, natashenka

This ATF file causes a heap overflow in ATF processing in Adobe Flash.

tags | exploit, overflow
systems | linux
advisories | CVE-2016-4135
MD5 | b41231590b42bc6c8884d863bc59db1c
Joomla Topics 1.5.12 SQL Injection
Posted Jul 8, 2016
Authored by xBADGIRL21

Joomla Topics component version 1.5.12 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 66c9ec89379381fa400cda37a0e9dca4
AntiRansom 3.01
Posted Jul 8, 2016
Authored by YJesus | Site security-projects.com

AntiRansom is a tool capable of detecting and mitigating attacks of Ransomware using honeypots.

Changes: Fixed a nasty bug in psutil that made Anti Ransom not work in Windows 8 and 10.
tags | tool
systems | unix
MD5 | b0717e05fbb3dfdd1f1e12b8ecef4861
WordPress Lazy Content Slider 3.4 Cross Site Request Forgery
Posted Jul 8, 2016
Authored by Mojtaba MobhaM

WordPress Lazy Content Slider plugin version 3.4 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 18c582daf6b24b0d6c40dfa5efeee17f
Hide.Me VPN Client 1.2.4 Privilege Escalation
Posted Jul 8, 2016
Authored by sh4d0wman

Hide.Me VPN Client version 1.2.4 suffers from a privilege escalation vulnerability.

tags | exploit
MD5 | 37d8a687db49713289e5ba1509d43d78
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

January 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    2 Files
  • 2
    Jan 2nd
    13 Files
  • 3
    Jan 3rd
    16 Files
  • 4
    Jan 4th
    39 Files
  • 5
    Jan 5th
    26 Files
  • 6
    Jan 6th
    40 Files
  • 7
    Jan 7th
    2 Files
  • 8
    Jan 8th
    16 Files
  • 9
    Jan 9th
    25 Files
  • 10
    Jan 10th
    28 Files
  • 11
    Jan 11th
    44 Files
  • 12
    Jan 12th
    32 Files
  • 13
    Jan 13th
    2 Files
  • 14
    Jan 14th
    4 Files
  • 15
    Jan 15th
    31 Files
  • 16
    Jan 16th
    15 Files
  • 17
    Jan 17th
    16 Files
  • 18
    Jan 18th
    24 Files
  • 19
    Jan 19th
    0 Files
  • 20
    Jan 20th
    0 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close