Exploit the possiblities
Showing 1 - 17 of 17 RSS Feed

Files Date: 2016-07-25

FreeBSD Security Advisory - FreeBSD-SA-16:25.bspatch
Posted Jul 25, 2016
Site security.freebsd.org

FreeBSD Security Advisory - The implementation of bspatch does not check for a negative value on numbers of bytes read from the diff and extra streams, allowing an attacker who can control the patch file to write at arbitrary locations in the heap. This issue was first discovered by The Chromium Project and reported independently by Lu Tung-Pin to the FreeBSD project. An attacker who can control the patch file can cause a crash or run arbitrary code under the credentials of the user who runs bspatch, in many cases, root.

tags | advisory, arbitrary, root
systems | freebsd
advisories | CVE-2014-9862
MD5 | 82e698f904115c3510c38a29f992e781
Debian Security Advisory 3628-1
Posted Jul 25, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3628-1 - Multiple vulnerabilities were discovered in the implementation of the Perl programming language.

tags | advisory, perl, vulnerability
systems | linux, debian
advisories | CVE-2016-1238, CVE-2016-6185
MD5 | 954df4e8b02c51487e71cb3bba066346
Red Hat Security Advisory 2016-1481-01
Posted Jul 25, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-1481-01 - MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb55-mariadb. Security Fix: It was found that the MariaDB client library did not properly check host names against server identities noted in the X.509 certificates when establishing secure connections using TLS/SSL. A man-in-the-middle attacker could possibly use this flaw to impersonate a server to a client.

tags | advisory
systems | linux, redhat
advisories | CVE-2015-4792, CVE-2015-4802, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2016-0505, CVE-2016-0546, CVE-2016-0596, CVE-2016-0597, CVE-2016-0598, CVE-2016-0600, CVE-2016-0606, CVE-2016-0608, CVE-2016-0609, CVE-2016-0616, CVE-2016-0640, CVE-2016-0641, CVE-2016-0642, CVE-2016-0643, CVE-2016-0644
MD5 | efa9724512a2f9fdf9269b28164f57e1
Red Hat Security Advisory 2016-1480-01
Posted Jul 25, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-1480-01 - MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. The following packages have been upgraded to a newer upstream version: mysql55-mysql. Security Fix: This update fixes several vulnerabilities in the MySQL database server.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2015-4792, CVE-2015-4802, CVE-2015-4815, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4870, CVE-2015-4913, CVE-2016-0505, CVE-2016-0546, CVE-2016-0596, CVE-2016-0597, CVE-2016-0598, CVE-2016-0600, CVE-2016-0606, CVE-2016-0608, CVE-2016-0609, CVE-2016-0616, CVE-2016-0640, CVE-2016-0641, CVE-2016-0642, CVE-2016-0643, CVE-2016-0644, CVE-2016-0646, CVE-2016-0647, CVE-2016-0648
MD5 | 11e08cc43fd535921b6ac3c3d399ba50
MediaCoder 0.8.43.5852 SEH Overflow
Posted Jul 25, 2016
Authored by Karn Ganeshen

MediaCoder version 0.8.43.5852 SEH buffer overflow exploit that spawns calc.exe.

tags | exploit, overflow
MD5 | 1c1fa76792e4d6df15ec3eff7959ef23
CoolPlayer+ Portable 2.19.6 Stack Overflow
Posted Jul 25, 2016
Authored by Karn Ganeshen

CoolPlayer+ Portable version 2.19.6 m3u stack overflow exploit with egghunter shellcode and aslr bypass.

tags | exploit, overflow, shellcode
MD5 | 76cdc69cd07deceac6f7097d0e6c81f3
CodoForum 3.2.1 SQL Injection
Posted Jul 25, 2016
Authored by Yakir Wizman

CodoForum version 3.2.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 837e2c727e64c6444537a21fa7a159bf
Micro Focus Filr CSRF / XSS / Code Execution
Posted Jul 25, 2016
Authored by Wolfgang Ettlinger | Site sec-consult.com

Multiple Micro Focus Filr appliances suffer from cross site request forgery, cross site scripting, command injection, insecure design, missing cookie flag, authentication bypass, poor permission, and path traversal vulnerabilities.

tags | exploit, vulnerability, xss, csrf
advisories | CVE-2016-1607, CVE-2016-1608, CVE-2016-1609, CVE-2016-1610, CVE-2016-1611
MD5 | a5fc9da404b4e72d05033b99d55f7fbc
PHP File Vault 0.9 Directory Traversal / File Read
Posted Jul 25, 2016
Authored by N_A

PHP File Vault version 0.9 suffers from directory traversal and file reading vulnerabilities.

tags | exploit, php, vulnerability, file inclusion
MD5 | fb965e8bb6bca353893f455a104c8a5f
Debian Security Advisory 3627-1
Posted Jul 25, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3627-1 - Several vulnerabilities have been fixed in phpMyAdmin, the web-based MySQL administration interface.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2016-1927, CVE-2016-2039, CVE-2016-2040, CVE-2016-2041, CVE-2016-2560, CVE-2016-2561, CVE-2016-5099, CVE-2016-5701, CVE-2016-5705, CVE-2016-5706, CVE-2016-5731, CVE-2016-5733, CVE-2016-5739
MD5 | 571b6eb2420c207161d742d83030088a
WordPress Code Snippets 2.6.1 Cross Site Scripting
Posted Jul 25, 2016
Authored by Burak Kelebek

WordPress Code Snippets plugin version 2.6.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 70a5b9bf93215b98aa2394d7e1ba60ce
WordPress Contact Form To Email 1.1.47 Cross Site Scripting
Posted Jul 25, 2016
Authored by Burak Kelebek

WordPress Contact Form to Email plugin version 1.1.47 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c93c86885ecc45c0e71ea585934a0b17
Bellini/Supercook Wi-Fi Yumi SC200 Information Disclosure / Code Execution
Posted Jul 25, 2016
Authored by James McLean

Bellini/Supercook Wi-Fi Yumi SC200 suffers from code execution, weak default password, and information disclosure vulnerabilities.

tags | exploit, vulnerability, code execution, info disclosure
MD5 | 3f528368cd2de48b3add786c94a02798
Joomla Showdown 1.5.0 SQL Injection
Posted Jul 25, 2016
Authored by xBADGIRL21

Joomla Showdown component version 1.5.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2fd5b2d5bd6a1b86068e61983a883529
Neoscreen 4.5 Cross Site Scripting
Posted Jul 25, 2016
Authored by Alex Haynes

Neoscreen version 4.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d72a5e8bda9d4bf5623cf7e1122dc09c
Neoscreen 4.5 Blind SQL Injection
Posted Jul 25, 2016
Authored by Alex Haynes

Neoscreen version 4.5 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4b04168e00bcc39ad49666a2faa50d50
Neoscreen 4.5 Authentication Bypass
Posted Jul 25, 2016
Authored by Alex Haynes

Neoscreen version 4.5 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
MD5 | c929843994300106f3fe6a97be7a3750
Page 1 of 1
Back1Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    33 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close