all things security
Showing 1 - 25 of 42 RSS Feed

Files Date: 2017-03-09

Stegano 0.6.8
Posted Mar 9, 2017
Authored by Cedric Bonhomme | Site github.com

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit (LSB) technique. It is possible to use a more advanced LSB method based on integers sets. The sets (Sieve of Eratosthenes, Fermat, Carmichael numbers, etc.) are used to select the pixels used to hide the information.

Changes: Fixed an error when revealing a hidden binary file in an image.
tags | tool, encryption, steganography, python
systems | unix
MD5 | 52f57be3040e681abd2d814ce9196afa
OpenDNSSEC 2.1.0
Posted Mar 9, 2017
Site opendnssec.org

OpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.

Changes: Enforce and signconf tasks are now scheduled individually per zone. Resign per policy. Zone delete removes tasks associated with zone from queue. Various other fixes.
tags | tool
systems | unix
MD5 | c23c7c0ce5333549ee513d789318b4d7
Lynis Auditing Tool 2.4.5
Posted Mar 9, 2017
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Allow host alias to be specified in profile. Code readability enhancements. Solaris support has been improved.
tags | tool, scanner
systems | unix
MD5 | 4e162b145aa3432628e43d710ed2db10
Navetti PricePoint 4.6.0.0 XSS / CSRF / SQL Injection
Posted Mar 9, 2017
Site sec-consult.com

Navetti PricePoint version 4.6.0.0 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | 413f4d05beb87131d150169e6bcc9f74
HP Security Bulletin HPESBHF03713 1
Posted Mar 9, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBHF03713 1 - A potential security vulnerability has been identified in HPE Intelligent Management Center (IMC) PLAT. The vulnerability could be remotely exploited to allow code execution. Revision 1 of this advisory.

tags | advisory, code execution
advisories | CVE-2017-5792
MD5 | 5cff7a8294d8c9ffeecbc4a085157f1e
HP Security Bulletin HPESBGN03712 1
Posted Mar 9, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBGN03712 1 - A potential security vulnerability has been identified in HPE LoadRunner and Performance Center. This vulnerability could be remotely exploited to allow remote code execution. Revision 1 of this advisory.

tags | advisory, remote, code execution
advisories | CVE-2017-5789
MD5 | b49eecabae9d70a34d9f85a02c39dc9a
Ubuntu Security Notice USN-3222-1
Posted Mar 9, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3222-1 - It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2016-10062, CVE-2016-10144, CVE-2016-10145, CVE-2016-10146, CVE-2016-8707, CVE-2017-5506, CVE-2017-5507, CVE-2017-5508, CVE-2017-5510, CVE-2017-5511
MD5 | c6ab5516d2427e61eb9ce7f130198b5e
Red Hat Security Advisory 2017-0462-01
Posted Mar 9, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-0462-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR4-FP1. Security Fix: This update fixes a vulnerability in the IBM Java Runtime Environment and the IBM Java Software Development Kit.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2016-2183
MD5 | 9dcd24d3c08c3a2fef92496aae5ff591
Slackware Security Advisory - mozilla-firefox Updates
Posted Mar 9, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New mozilla-firefox packages are available for Slackware 14.1, 14.2, and -current to fix security issues.

tags | advisory
systems | linux, slackware
MD5 | 584e2d927948501010ec46685166ee3a
HP Security Bulletin HPESBHF03710 1
Posted Mar 9, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBHF03710 1 - A potential security vulnerability has been identified in HPE Intelligent Management Center (IMC) PLAT. The vulnerability could be exploited remotely to allow deserialization of untrusted data. Revision 1 of this advisory.

tags | advisory
advisories | CVE-2017-5790
MD5 | 368e96c3d451d239f407de30d346f4a0
Ubuntu Security Notice USN-3221-1
Posted Mar 9, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3221-1 - Alexander Popov discovered that the N_HDLC line discipline implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service or possibly gain administrative privileges.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2017-2636
MD5 | 1adb09b9390d58f10d9ef367b880d424
Ubuntu Security Notice USN-3223-1
Posted Mar 9, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3223-1 - Itzik Kotler, Yonatan Fridburg, and Amit Klein discovered that KDE-Libs incorrectly handled certain PAC files. A remote attacker could possibly use this issue to obtain sensitive information.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2017-6410
MD5 | 335a95050c461dcb058a714df251093e
Ubuntu Security Notice USN-3220-3
Posted Mar 9, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3220-3 - USN-3220-1 fixed a vulnerability in the Linux kernel. This update provides the corresponding updates for the Linux kernel for Amazon Web Services. Alexander Popov discovered that the N_HDLC line discipline implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service or possibly gain administrative privileges. Various other issues were also addressed.

tags | advisory, web, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2017-2636
MD5 | 15c57e15fb53e20ef66bb05c5b168e33
HP Security Bulletin HPESBHF03714 1
Posted Mar 9, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBHF03714 1 - A potential security vulnerability has been identified in HPE Intelligent Management Center (IMC) PLAT that could be remotely exploited to allow the arbitrary reading of files without authentication or authorization. Revision 1 of this advisory.

tags | advisory, arbitrary
advisories | CVE-2017-5795
MD5 | d2b9d81893941098e5b7f8ecb79bc7c6
Debian Security Advisory 3804-1
Posted Mar 9, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3804-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or have other impacts.

tags | advisory, denial of service, kernel, vulnerability
systems | linux, debian
advisories | CVE-2016-9588, CVE-2017-2636, CVE-2017-5669, CVE-2017-5986, CVE-2017-6214, CVE-2017-6345, CVE-2017-6346, CVE-2017-6348, CVE-2017-6353
MD5 | 1295fa7b9a0ca6ed48c55af8dc82bf48
Red Hat Security Advisory 2017-0461-01
Posted Mar 9, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-0461-01 - Mozilla Firefox is an open source web browser. This update upgrades Firefox to version 52.0 ESR. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox.

tags | advisory, web, arbitrary
systems | linux, redhat
advisories | CVE-2017-5398, CVE-2017-5400, CVE-2017-5401, CVE-2017-5402, CVE-2017-5404, CVE-2017-5405, CVE-2017-5407, CVE-2017-5408, CVE-2017-5410
MD5 | 9eb5294858d20e8e39edde6c526c5000
Red Hat Security Advisory 2017-0459-01
Posted Mar 9, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-0459-01 - Mozilla Firefox is an open source web browser. This update upgrades Firefox to version 45.8.0 ESR. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox.

tags | advisory, web, arbitrary
systems | linux, redhat
advisories | CVE-2017-5398, CVE-2017-5400, CVE-2017-5401, CVE-2017-5402, CVE-2017-5404, CVE-2017-5405, CVE-2017-5407, CVE-2017-5408, CVE-2017-5410
MD5 | c4cb0da273d0241aa3a2d9345c53f0f9
Ubuntu Security Notice USN-3221-2
Posted Mar 9, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3221-2 - USN-3221-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.10. This update provides the corresponding updates for the Linux Hardware Enablement kernel from Ubuntu 16.10 for Ubuntu 16.04 LTS. Alexander Popov discovered that the N_HDLC line discipline implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service or possibly gain administrative privileges. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, ubuntu
advisories | CVE-2017-2636
MD5 | 4e393c18b0b6f82a3eedaf2592e7d0e4
Drupal 7.x Module Services Remote Code Execution
Posted Mar 9, 2017
Authored by Charles FOL

Drupal version 7.x module services remote code execution exploit.

tags | exploit, remote, code execution
MD5 | 835974e09557a41877938f189241232b
WordPress PICA Photo Gallery 1.0 SQL Injection
Posted Mar 9, 2017
Authored by Ihsan Sencan

WordPress PICA Photo Gallery plugin version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2f83143acf8490bc4a354dc7bed0feee
USBPcap 1.1.0.0 Privilege Escalation
Posted Mar 9, 2017
Authored by Parvez Anwar

USBPcap version 1.1.0.0 suffers from a privilege escalation vulnerability.

tags | exploit
advisories | CVE-2017-6178
MD5 | f629b951130791d2f70f3c63e9110091
Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 Denial Of Service
Posted Mar 9, 2017
Authored by Quentin Olagne

Livebox 3 Sagemcom version SG30_sip-fr-5.15.8.1 suffers from a buffer overflow denial of service vulnerability.

tags | exploit, denial of service, overflow
advisories | CVE-2017-6552
MD5 | 86cb84b071fd8f0ead15acaf328bfe9b
ICAutosales 1.2 SQL Injection
Posted Mar 9, 2017
Authored by Bilal Kardadou

ICAutosales version 1.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a0c50e64d4158bb338989c971fe94035
Wireless IP Camera (P2P) WIFICAM GoAhead Backdoor / Remote Command Execution
Posted Mar 9, 2017
Authored by Pierre Kim

Wireless IP Camera (P2P) WIFICAM, which gets rebranded as many others, suffers from a backdoor account, remote command execution, transit, and various authentication vulnerabilities.

tags | exploit, remote, vulnerability
MD5 | 0e1b2a533b379a94268af085356c0110
iball Baton 150M Password Disclosure
Posted Mar 9, 2017
Authored by Indrajith A.N

iball Baton 150M wireless router suffers from a password disclosure vulnerability.

tags | exploit, info disclosure
advisories | CVE-2017-6558
MD5 | c86864fd9b73789ae210d86c67ce992f
Page 1 of 2
Back12Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    15 Files
  • 19
    Oct 19th
    10 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    4 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close