This is a shellshock exploit for RSSMON and BEAM, network services for Red Star OS version 3.0 SERVER edition.
bbdf7dd5e3730d17196110e9505289469c26b6f29655125d1177485822c140deTor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
fbdd33d3384574297b88744622382008d1e0f9ddd300d330746c464b7a7d746aNaenara Browser version 3.5 exploit (JACKRABBIT) that uses a known Firefox bug to obtain code execution on Red Star OS 3.0 desktop.
c4b4b34b00cd3c056e46e8970c599fc698341f1def3f5d9c4ca35d64efaf0e59Ubuntu Security Notice 3158-1 - Frederic Besler and others discovered that the ndr_pull_dnsp_nam function in Samba contained an integer overflow. An authenticated attacker could use this to gain administrative privileges. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 16.10. Simo Sorce discovered that that Samba clients always requested a forwardable ticket when using Kerberos authentication. An attacker could use this to impersonate an authenticated user or service. Various other issues were also addressed.
c5fe62a970f183ffc5d75284e01fcf427714cde3f3e461393f730eee65e8054fThis is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
1b1fc4a14e2024293181924ed24872e6f2e06293f3e8926a376b8aec481f19d1This bulletin summary lists one bulletin that has undergone a major revision increment.
ff6225bec8950ff72d45bce6368a1eaa607641403cd731d14c1aba300f276222Apport version 2.x on Ubuntu Desktop versions 12.10 up to 16.04 local code execution exploit.
58f056541314215738fc565a181c0095886482addab3394cc2cc59a0b2938a0fChrome suffers from an HTTP 1xx base::String-Tokenizer-T<...>::Quick-Get-Next out of bounds read vulnerability.
1e98ef1c15cfbb5403ae431bbabeb470f15d7ef4d514ed6d6a693821d7b957b6A vulnerability exists in the hotlinking feature of Glype on all versions that allow the bypass and makes possible to link directly to proxified files or develop applications that integrate direct linking into the url. Affects version 1.4.4.
d55fbea987eb4347de12abe19f1c01e146547b622100b21be3e43aed9be160f3WordPress Support Plus Responsive Ticket System plugin version 7.1.3 suffers from a remote SQL injection vulnerability.
b583e950585a6eb789ef5b3a6a7e6e2710c3f8b81b7caa7b7b078e5179e566ebWordPress Private Messages plugin version 1.0.1 suffers from a remote SQL injection vulnerability.
563ec4a32eba3e2587889183e91fef371987515d235776ea10f509a1163b7c37WordPress 404 plugin version 1.0 suffers from a remote SQL injection vulnerability.
5356d9ce1edc74cf2db216bad89a723cd74842e4685b09f8feb0e7dfbe494f16ntop-ng version 2.5.160805 suffers from a username enumeration vulnerability.
f40d02b7f20b7f0528175d898875e7bacb449de724a69ec4f5123de828170650
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed