what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 20 of 20 RSS Feed

Files Date: 2016-10-11

SAP Netweaver 7.40 SP 12 SCTC_REORG_SPOOL OS Command Injection
Posted Oct 11, 2016
Authored by Pablo Artuso | Site onapsis.com

SAP Netweaver version 7.40 SP 12 suffers from an OS command injection vulnerability in SCTC_REORG_SPOOL.

tags | advisory
advisories | CVE-2016-7435
SHA-256 | 1517d473275190d714f68c8e5b64ce52162f23de86d95e76ba101651b720bb43
SAP Netweaver 7.40 SP 12 SCTC_TMS_MAINTAIN_ALOG OS Command Injection
Posted Oct 11, 2016
Authored by Pablo Artuso | Site onapsis.com

SAP Netweaver version 7.40 SP 12 suffers from an OS command injection vulnerability in SCTC_TMS_MAINTAIN_ALOG.

tags | advisory
advisories | CVE-2016-7435
SHA-256 | 5b5b36310db340722cc3361ec4f659c8cd7c00bbaa4b49e34fec23b994713be0
OpenSSL x509 Parsing Double-Free / Invalid-Free
Posted Oct 11, 2016
Authored by Guido Vranken

Double-free and invalid-free vulnerabilities in x509 parsing were found in the latest OpenSSL (1.1.0b).

tags | exploit, vulnerability
advisories | CVE-2016-6304
SHA-256 | 84e0be7df2d3c2e2d251ffdb420dc03c362c9b13bd364133b5db39a3fee9d934
SAP Netweaver 7.40 SP 12 SCTC_REFRESH_IMPORT_USR_CLNT OS Command Injection
Posted Oct 11, 2016
Authored by Pablo Artuso | Site onapsis.com

SAP Netweaver version 7.40 SP 12 suffers from an OS command injection vulnerability in SCTC_REFRESH_IMPORT_USR_CLNT.

tags | advisory
advisories | CVE-2016-7435
SHA-256 | a4de11bcf1661481197db31f9b2b638350c10d8d54f02b10699db0167d5fa303
RSA Enterprise Compromise Assessment Tool (ECAT) 4.1.0.1 XXE Injection
Posted Oct 11, 2016
Authored by Samandeep Singh

RSA Enterprise Compromise Assessment Tool (ECAT) version 4.1.0.1 suffers from an XML external entity injection vulnerability.

tags | exploit, xxe
SHA-256 | 92a6d69e452163a03f152d0c049d53dc3060863f2a2c064d3f56464a83839051
SAPCRYPTOLIB 5.555.38 Missing Signature Check
Posted Oct 11, 2016
Authored by Fernando Russ, Sergio Abraham, Pablo Artuso | Site onapsis.com

SAPCRYPTOLIB version 5.555.38 suffers from a missing signature check in its DSA algorithm.

tags | advisory
advisories | CVE-2016-4407
SHA-256 | c57e938e01fd374e72b21d0aa73cc8d0c2ca106f33d2addda4e763f24c2e5a95
SAP Console 7.30 Insecure Password Storage
Posted Oct 11, 2016
Authored by Nahuel Sanchez | Site onapsis.com

SAP Console version 7.30 suffers from an insecure password storage vulnerability.

tags | advisory
advisories | CVE-2016-3946
SHA-256 | 15549212a42e06cbf90b62f838891fe78927981e3ff983ba5baa76bf21aa875c
SAP Netweaver 7.40 SP 12 SCTC_REFRESH_IMPORT_USR_CLNT OS Command Injection
Posted Oct 11, 2016
Authored by Pablo Artuso | Site onapsis.com

SAP Netweaver version 7.40 SP 12 suffers from an OS command injection vulnerability in SCTC_REFRESH_IMPORT_USR_CLNT.

tags | advisory
advisories | CVE-2016-7435
SHA-256 | a8c367bdf4221ca8854b79fe4ceb7e4596e9d9cda855b6f8a1e5f94bbcae970e
BSides SF 2017 Call For Papers
Posted Oct 11, 2016
Site bsidessf.com

BSides SF is soliciting papers and presentations for the 2017 annual BSidesSF conference. It will be held at the DNA Lounge, 375 11th Street, San Francisco, CA, USA on February 12th through the 13th, 2017.

tags | paper, conference
SHA-256 | f560c33cfc842e3781dd209f6d51f36bd28fefd9d19c276217870f6cf3e3a4a1
SAP Netweaver 7.4 UCON Security Protection Bypass
Posted Oct 11, 2016
Authored by Sergio Abraham, Pablo Muller | Site onapsis.com

SAP Netweaver version 7.4 suffers from a UCON security protection bypass vulnerability.

tags | advisory, bypass
advisories | CVE-2016-3635
SHA-256 | b6b6da161f5f6d99d64676628f359e1d03196f8e0db85b8e37097dc37b2fefce
SAP Netweaver 7.40 SP 12 PREPARE_CHECK_CAPACITY OS Command Injection
Posted Oct 11, 2016
Authored by Pablo Artuso | Site onapsis.com

SAP Netweaver version 7.40 SP 12 suffers from an OS command injection vulnerability in PREPARE_CHECK_CAPACITY.

tags | advisory
advisories | CVE-2016-7435
SHA-256 | f3adb601ddc92854728dd2ee8a7942701a0cd93b9ae01ead9009fb048194fcad
Avtech IP Camera / NVR / DVR CSRF / Disclosure / Command Injection
Posted Oct 11, 2016
Authored by Gergely Eberhardt

Avtech IP cameras, NVRs, and DVRs suffer from bypass, cross site request forgery, command injection, information disclosure, and many other vulnerabilities.

tags | exploit, vulnerability, info disclosure, csrf
SHA-256 | 399d48068b915f13ed98e6fe0ab90e57c85ffe1dd876027e0a871bcf5fae97b9
IBM WebSphere 7 / 8 / 8.5 / 9 Deserialization Issue
Posted Oct 11, 2016
Authored by Maurizio Agazzini

IBM WebSphere versions 7, 8, 8.5, and 9 deserialize untrusted data. This can lead to denial of service and remote code execution vulnerabilities.

tags | exploit, remote, denial of service, vulnerability, code execution
advisories | CVE-2016-5983
SHA-256 | bf5b14004b9ffc6d5c085efaffcaac568b0e312cb09a579f088dbe0c0dc3d9c7
Contenido 4.9.11 Cross Site Scripting
Posted Oct 11, 2016
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Contenido version 4.9.11 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 9e160d0e09895a7fdae7e8fe08a8a3abd55fd84a85780d943ea6e96282ce850a
LG PC Suite For Windows 5.3.25.20150529 (Build 18212) Man-In-The-Middle
Posted Oct 11, 2016
Site bluefrostsecurity.de

LG PC Suite for Windows versions 5.3.25.20150529 (Build 18212) and below suffer from a man-in-the-middle vulnerability.

tags | advisory
systems | windows
SHA-256 | 4a9f021d64da18c6aef5a1e09483630a61f41192180d89869816d04626c05dad
Facebook API 2.1 Open Redirect
Posted Oct 11, 2016
Authored by Vulnerability Laboratory, SaifAllah benMassaoud | Site vulnerability-lab.com

Facebook API version 2.1 suffers from an open redirection vulnerability.

tags | exploit
SHA-256 | 523eba27adf38e226b12826d46c2f68757089561873ce6cf109ec06a9a2bb895
Microsoft Wireless Desktop 2000 Cryptography Issues
Posted Oct 11, 2016
Authored by Matthias Deeg, Gerhard Klostermeier | Site syss.de

Microsoft Wireless Desktop 2000 version A suffers from cryptographic issues and replay attacks.

tags | advisory
SHA-256 | 5b91e6090047fef94d34dd0fd973cc4e86a6c54ee1ac8d86d8a8818ca9bfdeca
Apache Tomcat JK ISAPI Connector 1.2.41 Buffer Overflow
Posted Oct 11, 2016
Authored by Mark Thomas | Site tomcat.apache.org

Apache Tomcat JK ISAPI Connector versions 1.2.0 through 1.2.41 suffer from a buffer overflow vulnerability.

tags | advisory, overflow
advisories | CVE-2016-6808
SHA-256 | af3e2192d229265af6b020a6c9364f60ab9600ec86a04efb358cb0d02c2df87a
sheed Antivirus 2.3 Privilege Escalation
Posted Oct 11, 2016
Authored by Amir.ght

sheed Antivirus version 2.3 suffers from an unquoted service path privilege escalation vulnerability.

tags | exploit
SHA-256 | bad3bd51df99a142958e2129d99bda395eb2c64cc5824aea9f0f65f793f4ae4b
Limny 3.0.0 Cross Site Scripting
Posted Oct 11, 2016
Authored by indoushka

Limny version 3.0.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | acfe2788c566228e9d19e6d2a5e7fdb7a3f6375cdb55391b9873d0b6dc1d22e4
Page 1 of 1
Back1Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    21 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    14 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close