Exploit the possiblities
Showing 1 - 12 of 12 RSS Feed

Files Date: 2016-08-26

Red Hat Security Advisory 2016-1776-01
Posted Aug 26, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-1776-01 - The java-1.6.0-openjdk packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Java Software Development Kit. Security Fix: An insufficient bytecode verification flaw was discovered in the Hotspot component in OpenJDK. An untrusted Java application or applet could use this flaw to completely bypass Java sandbox restrictions. Multiple denial of service flaws were found in the JAXP component in OpenJDK. A specially crafted XML file could cause a Java application using JAXP to consume an excessive amount of CPU and memory when parsed.

tags | advisory, java, denial of service
systems | linux, redhat
advisories | CVE-2016-3458, CVE-2016-3500, CVE-2016-3508, CVE-2016-3550, CVE-2016-3606
MD5 | 81517340d8fc3adf6849fbcb67656354
DataLife Engine 11.1 Cross Site Scripting
Posted Aug 26, 2016
Authored by 0x3a

DataLife Engine versions 11.1 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 70f0651525f6276d6b0aaee65ecc6f3a
NECROSOFT NScan 0.9.1 Buffer Overflow
Posted Aug 26, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

NECROSOFT NScan versions 0.9.1 and below suffer from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | f6cbb79573db730cba9529fb9101b7cf
Htcap Analysis Tool 1.0.1
Posted Aug 26, 2016
Authored by Filippo Cavallarin

Htcap is a web application analysis tool for detecting communications between javascript and the server. It crawls the target application and maps ajax calls, dynamically inserted scripts, websockets calls, dynamically loaded resources and some interesting elements. The generated report is meant to be a good starting point for a manual web application security audit. Htcap is written in python and uses phantomjs to load pages injecting a probe that analyzes javascript behaviour. Once injected, the probe, overrides native javascript methods in order to intercept communications and DOM changes. It also simulates user interaction by firing all attached events and by filling html inputs.

Changes: This release is focused on stability, bugfixes, and minor improvements.
tags | tool, web, javascript, sniffer, python
MD5 | a4f577e9f89d71d5f6c3d79d81ba29d4
Debian Security Advisory 3654-1
Posted Aug 26, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3654-1 - Two vulnerabilities were discovered in quagga, a BGP/OSPF/RIP routing daemon.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2016-4036, CVE-2016-4049
MD5 | b7855f2f305fde4384f397def31126a3
Debian Security Advisory 3652-1
Posted Aug 26, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3652-1 - handling problems and cases of missing or incomplete input sanitising may result in denial of service or the execution of arbitrary code if malformed TIFF, WPG, RLE, RAW, PSD, Sun, PICT, VIFF, HDR, Meta, Quantum, PDB, DDS, DCM, EXIF, RGF or BMP files are processed.

tags | advisory, denial of service, arbitrary
systems | linux, debian
advisories | CVE-2016-4562, CVE-2016-4563, CVE-2016-4564, CVE-2016-5010, CVE-2016-5687, CVE-2016-5688, CVE-2016-5689, CVE-2016-5690, CVE-2016-5691, CVE-2016-5841, CVE-2016-5842, CVE-2016-6491
MD5 | cab4883976a43af7a1adf802c23c4309
KV Site Admin CMS 3.0 SQL Injection
Posted Aug 26, 2016
Authored by xBADGIRL21

KV Site Admin CMS version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e53bae1a90560ba68253b455e4a46347
Zarafe CMS 1.0 Cross Site Request Forgery
Posted Aug 26, 2016
Authored by Mojtaba MobhaM

Zarafe CMS version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 0033311cc8814e81b67eb25769462af9
Zarafe CMS 1.0 Cross Site Scripting
Posted Aug 26, 2016
Authored by Mojtaba MobhaM

Zarafe CMS version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 343bed877d6bdd74243544d1d3553b69
Apple libc Incomplete Fix
Posted Aug 26, 2016
Authored by Maksymilian Arciemowicz

Apple's libc security update for OS X El Capitan version 10.11.2 has an incomplete fix.

tags | advisory
systems | apple, osx
advisories | CVE-2015-7038, CVE-2015-7039
MD5 | fe1c63555847aae8ffd0309a67cf9bee
Hotspot Shield DLL Hijacking
Posted Aug 26, 2016
Authored by Amir.ght

Hotspot Shield suffers from a dll hijacking vulnerability.

tags | exploit
systems | windows
MD5 | 5727e97ea08c22eba7fdb9ab7569deb1
E-Cidade 2.3.52 Directory Traversal
Posted Aug 26, 2016
Authored by vesp3r

E-Cidade versions 2.3.52 and below suffer from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 14eb302e60cd2545331bf8e3e72ce95a
Page 1 of 1
Back1Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    19 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close