exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 16 of 16 RSS Feed

Files Date: 2017-02-10

Gentoo Linux Security Advisory 201702-06
Posted Feb 10, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201702-6 - Multiple vulnerabilities have been found in Graphviz and the extent of these vulnerabilities are unspecified. Versions less than 2.36.0 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2014-0978, CVE-2014-1235, CVE-2014-1236
SHA-256 | 6d526b3a704b696a9016a681dd53bf7c56c7694bfdc8266a8dee795262b2905c
Gentoo Linux Security Advisory 201702-05
Posted Feb 10, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201702-5 - A vulnerability in Lsyncd allows execution of arbitrary code. Versions less than 2.1.6 are affected.

tags | advisory, arbitrary
systems | linux, gentoo
advisories | CVE-2014-8990
SHA-256 | 82d270f75e49221985702d35ec908de18e8a93bd043b6f85969aa3e3d1eff23a
Gentoo Linux Security Advisory 201702-04
Posted Feb 10, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201702-4 - Multiple vulnerabilities have been found in GnuTLS, the worst of which may allow execution of arbitrary code. Versions less than 3.3.26 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-5334, CVE-2017-5335, CVE-2017-5336, CVE-2017-5337
SHA-256 | 31206f8eaf8408614d3a0a6e9d6e303fd32e4b6e8db8090724eacc5a0cdbf158
Ticketbleed F5 TLS Information Disclosure
Posted Feb 10, 2017
Authored by Filippo Valsorda

Ticketbleed is a software vulnerability in the TLS stack of certain F5 products that allows a remote attacker the ability to extract up to 31 bytes of uninitialized memory at a time, which can contain any kind of random sensitive information, like in Heartbleed.

tags | exploit, remote
advisories | CVE-2016-9244
SHA-256 | 669dc4759a3f8fc7d705e8d378a7374aa8ecb2569e1b4a7d4d775e646c0a12ff
HP Smart Storage Administrator 2.30.6.0 Remote Command Injection
Posted Feb 10, 2017
Authored by Nicolas Mattiocco | Site metasploit.com

This Metasploit module exploits a vulnerability found in HP Smart Storage Administrator. By supplying a specially crafted HTTP request, it is possible to control the 'command' variable in function isDirectFileAccess (found in ipcelmclient.php), which will be used in a proc_open() function. Versions prior to HP SSA 2.60.18.0 are vulnerable.

tags | exploit, web, php
advisories | CVE-2016-8523
SHA-256 | 2def32fe02d755ad11317dd47474037a1faca567366fe70d7255b7709aebb8ec
InfoSec 2017 Call For Papers
Posted Feb 10, 2017
Authored by InfoSec17 | Site sdiwc.net

The Call For Papers for InfoSec 2017 has been announced. It will be hosted by the Faculty of Management, Comenius University in Bratislava, Slovakia on June 29th through July 1st, 2017.

tags | paper, conference
SHA-256 | 069a55dad5818290b2c1b1febf66cdb88b41b8be3bfde65037582df783d0cf64
Ubuntu Security Notice USN-3195-1
Posted Feb 10, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3195-1 - James Page discovered that Nova-LXD incorrectly set up virtual network devices when creating LXD instances. This could result in an unintended firewall configuration.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2017-5936
SHA-256 | b33d1891fb200df1b719816daf78d72d25ceec6b9d4f6c1023bfcc7fc7814fec
Ubuntu Security Notice USN-3190-2
Posted Feb 10, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3190-2 - Mikulas Patocka discovered that the asynchronous multibuffer cryptographic daemon in the Linux kernel did not properly handle being invoked with incompatible algorithms. A local attacker could use this to cause a denial of service. It was discovered that a use-after-free existed in the KVM susbsystem of the Linux kernel when creating devices. A local attacker could use this to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2016-10147, CVE-2016-10150, CVE-2016-8399, CVE-2016-8632, CVE-2016-9777
SHA-256 | cf4cc9859b178aeba3d7971d5f7e2816de9414942d6b55bc51f88f58392aac87
Youtube Analytics Multi Channel 3.0 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Youtube Analytics Multi Channel version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | e7fc054b5219e4c2ed54a86ff4b85be9d672aa354b95305094b690dbbb072d36
Creative Management System CMS Lite 1.3.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Creative Management System CMS Lite version 1.3.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | db6ec5724701de58c68abbaa190307f602c526132f68d7df9232203115f394d8
Gram Post Instagram Auto Post Multi Accounts With Paypal Integration 1.0 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Gram Post Instagram Auto Post Multi Accounts with Paypal Integration version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | cbe856c7436dfc456e4e71b2bf528e2bd71c65dc78bdd72e3a05f8150842e203
Takas Classified Cogeigniter PHP Classified Ad Script 1.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Takas Classified Codeigniter PHP Classified Ad Script version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
SHA-256 | 855deda835837c4de8a4be5bc12b68b7512e89dd5b06a0789a60f412da28513e
Tiger Post Facebook Auto Post Multi Pages/Groups/Profiles 3.0.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Tiger Post Facebook Auto Post Multi Pages/Groups/Profiles version 3.0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | e4fd9daa211f428a1d952ad7fbbd65de8be206880484c4dc0359bded058c57d8
Zigaform PHP Form Builder Contact And Survey 2.9.1 SQL Injection
Posted Feb 10, 2017
Authored by Ihsan Sencan

Zigaform PHP Form Builder Contact and Survey version 2.9.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
SHA-256 | 3aa25ba7cab45a837b477b6e08b9c79041ac2a5320ab25b44049bf3fdbeafe30
Collabo TeamBusiness Collaboration Network Arbitrary File Download
Posted Feb 10, 2017
Authored by Ihsan Sencan

Collabo TeamBusiness Collaboration Network suffers from arbitrary file download vulnerability.

tags | exploit, arbitrary
SHA-256 | c90072b649ce96590c5c5f0d8da7206ffc321ffafbc18bc42feaae216b94f639
Apache OpenOffice Text Document Malicious Macro Execution
Posted Feb 10, 2017
Authored by sinn3r | Site metasploit.com

This Metasploit module generates an Apache OpenOffice Text Document with a malicious macro in it. To exploit successfully, the targeted user must adjust the security level in Macro Security to either Medium or Low. If set to Medium, a prompt is presented to the user to enable or disable the macro. If set to Low, the macro can automatically run without any warning. The module also works against LibreOffice.

tags | exploit
SHA-256 | 1b7cc506664ea4d132ab76a0a888077b8c6444117218027b8a1181b3bd87e829
Page 1 of 1
Back1Next

File Archive:

December 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    2 Files
  • 2
    Dec 2nd
    12 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close