all things security
Showing 1 - 16 of 16 RSS Feed

Files Date: 2017-02-10

Gentoo Linux Security Advisory 201702-06
Posted Feb 10, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201702-6 - Multiple vulnerabilities have been found in Graphviz and the extent of these vulnerabilities are unspecified. Versions less than 2.36.0 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2014-0978, CVE-2014-1235, CVE-2014-1236
MD5 | 90f94b15783aa679caf90fb10ad693c4
Gentoo Linux Security Advisory 201702-05
Posted Feb 10, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201702-5 - A vulnerability in Lsyncd allows execution of arbitrary code. Versions less than 2.1.6 are affected.

tags | advisory, arbitrary
systems | linux, gentoo
advisories | CVE-2014-8990
MD5 | 6dc0ac6edf2ea21f3729605b8d83c272
Gentoo Linux Security Advisory 201702-04
Posted Feb 10, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201702-4 - Multiple vulnerabilities have been found in GnuTLS, the worst of which may allow execution of arbitrary code. Versions less than 3.3.26 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-5334, CVE-2017-5335, CVE-2017-5336, CVE-2017-5337
MD5 | c9681ed405f2d4d8780d824b9f892bcb
Ticketbleed F5 TLS Information Disclosure
Posted Feb 10, 2017
Authored by Filippo Valsorda

Ticketbleed is a software vulnerability in the TLS stack of certain F5 products that allows a remote attacker the ability to extract up to 31 bytes of uninitialized memory at a time, which can contain any kind of random sensitive information, like in Heartbleed.

tags | exploit, remote
advisories | CVE-2016-9244
MD5 | c9470a49bec0c0baa99767923f325e84
HP Smart Storage Administrator 2.30.6.0 Remote Command Injection
Posted Feb 10, 2017
Authored by Nicolas Mattiocco | Site metasploit.com

This Metasploit module exploits a vulnerability found in HP Smart Storage Administrator. By supplying a specially crafted HTTP request, it is possible to control the 'command' variable in function isDirectFileAccess (found in ipcelmclient.php), which will be used in a proc_open() function. Versions prior to HP SSA 2.60.18.0 are vulnerable.

tags | exploit, web, php
advisories | CVE-2016-8523
MD5 | 48859d411d55d006d79ae52f42803259
InfoSec 2017 Call For Papers
Posted Feb 10, 2017
Authored by InfoSec17 | Site sdiwc.net

The Call For Papers for InfoSec 2017 has been announced. It will be hosted by the Faculty of Management, Comenius University in Bratislava, Slovakia on June 29th through July 1st, 2017.

tags | paper, conference
MD5 | dc21984aa17f26a6f3f9698f5731df0d
Ubuntu Security Notice USN-3195-1
Posted Feb 10, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3195-1 - James Page discovered that Nova-LXD incorrectly set up virtual network devices when creating LXD instances. This could result in an unintended firewall configuration.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2017-5936
MD5 | 36f4126c03527c80b4c26832924f4fc3
Ubuntu Security Notice USN-3190-2
Posted Feb 10, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3190-2 - Mikulas Patocka discovered that the asynchronous multibuffer cryptographic daemon in the Linux kernel did not properly handle being invoked with incompatible algorithms. A local attacker could use this to cause a denial of service. It was discovered that a use-after-free existed in the KVM susbsystem of the Linux kernel when creating devices. A local attacker could use this to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2016-10147, CVE-2016-10150, CVE-2016-8399, CVE-2016-8632, CVE-2016-9777
MD5 | b38325f7bdec3aa46af2a02a781f69fb
Youtube Analytics Multi Channel 3.0 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Youtube Analytics Multi Channel version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 74378b5df1f826cd816c9e140572b4c5
Creative Management System CMS Lite 1.3.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Creative Management System CMS Lite version 1.3.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6ddde03d24f7be3c75a19ad0e22235bf
Gram Post Instagram Auto Post Multi Accounts With Paypal Integration 1.0 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Gram Post Instagram Auto Post Multi Accounts with Paypal Integration version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 47875d5497585fdbb0a5e209abd95aed
Takas Classified Cogeigniter PHP Classified Ad Script 1.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Takas Classified Codeigniter PHP Classified Ad Script version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | cad1bb405a50ac3f626bde9986910db1
Tiger Post Facebook Auto Post Multi Pages/Groups/Profiles 3.0.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Tiger Post Facebook Auto Post Multi Pages/Groups/Profiles version 3.0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2f69995fe64b570932c98ac47dfbf575
Zigaform PHP Form Builder Contact And Survey 2.9.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Zigaform PHP Form Builder Contact and Survey version 2.9.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | e7b8da442f7a7ebb9bafb4c0735bd024
Collabo TeamBusiness Collaboration Network Arbitrary File Download
Posted Feb 10, 2017
Authored by Ihsan Sencan

Collabo TeamBusiness Collaboration Network suffers from arbitrary file download vulnerability.

tags | exploit, arbitrary
MD5 | 8d6d1fb4ba58e3bfe17cbb3e7292cd4e
Apache OpenOffice Text Document Malicious Macro Execution
Posted Feb 10, 2017
Authored by sinn3r | Site metasploit.com

This Metasploit module generates an Apache OpenOffice Text Document with a malicious macro in it. To exploit successfully, the targeted user must adjust the security level in Macro Security to either Medium or Low. If set to Medium, a prompt is presented to the user to enable or disable the macro. If set to Low, the macro can automatically run without any warning. The module also works against LibreOffice.

tags | exploit
MD5 | 79e465107cfd91f5c5020df4f837616e
Page 1 of 1
Back1Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    5 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close