Exploit the possiblities
Showing 1 - 18 of 18 RSS Feed

Files Date: 2017-06-01

Of Mice And Keyboards
Posted Jun 1, 2017
Authored by Matthias Deeg, Gerhard Klostermeier

Whitepaper call Of Mice and Keyboards. This write up gives you an overview on the security of modern wireless desktop sets.

tags | paper
MD5 | 82baeb29b56fe4569ce8c6faa36623bc
Wireshark Analyzer 2.2.7
Posted Jun 1, 2017
Authored by Gerald Combs | Site wireshark.org

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.

Changes: Removed imagemagick and demote xdg-utils dependencies. Various updates.
tags | tool, sniffer, protocol
systems | windows, unix
MD5 | a4d880554c7f925dafef60fa313b580d
Packet Fence 7.1.0
Posted Jun 1, 2017
Site packetfence.org

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.

Changes: Various other updates and improvements.
tags | tool, remote
systems | unix
MD5 | d4b7e5c73309c83e6adbabf0e0c793db
Ubuntu Security Notice USN-3307-1
Posted Jun 1, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3307-1 - Karsten Heymann discovered that OpenLDAP incorrectly handled certain search requests. A remote attacker could use this issue to cause slapd to crash, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2017-9287
MD5 | abb5acc7f5f41a4b1b0d5a29aff846c5
Ubuntu Security Notice USN-3306-1
Posted Jun 1, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3306-1 - Agostino Sarubbo and Jakub Jirasek discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-7585, CVE-2017-7586, CVE-2017-7741, CVE-2017-7742, CVE-2017-8361, CVE-2017-8362, CVE-2017-8363, CVE-2017-8365
MD5 | 505798742cdc6a942c1726695da1c6ae
Debian Security Advisory 3870-1
Posted Jun 1, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3870-1 - Several vulnerabilities were discovered in wordpress, a web blogging tool. They would allow remote attackers to force password resets, and perform various cross-site scripting and cross-site request forgery attacks.

tags | advisory, remote, web, vulnerability, xss, csrf
systems | linux, debian
advisories | CVE-2017-8295, CVE-2017-9061, CVE-2017-9062, CVE-2017-9063, CVE-2017-9064, CVE-2017-9065
MD5 | 34393add3f849a2fcd80e1d68c82c1e4
Debian Security Advisory 3869-1
Posted Jun 1, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3869-1 - It was discovered that tnef, a tool used to unpack MIME attachments of type "application/ms-tnef", did not correctly validate its input. An attacker could exploit this by tricking a user into opening a malicious attachment, which would result in a denial-of-service by application crash.

tags | advisory
systems | linux, debian
advisories | CVE-2017-8911
MD5 | 848a841d92659d1280501049cf8e0e33
Riverbed SteelHead VCX 9.6.0a Arbitrary File Read
Posted Jun 1, 2017
Authored by Gregory Draperi

Riverbed SteelHead VCX version 9.6.0a suffers from an arbitrary file read vulnerability.

tags | exploit, arbitrary
MD5 | 4e458dabdddb1178fc6a8461fd5f1c33
Digital Whisper Electronic Magazine #83
Posted Jun 1, 2017
Authored by cp77fk4r, digitalwhisper

Digital Whisper Electronic Magazine issue 83. Written in Hebrew.

tags | magazine
MD5 | 848da548e2b1659d382e101cbcea9059
POC OR GTFO 0x15
Posted Jun 1, 2017
Authored by pocgtfo

This is the fifteenth issue of POC || GTFO.

tags | magazine
MD5 | 8363161248b01cc83bc7b437c423ce70
Lynis Auditing Tool 2.5.1
Posted Jun 1, 2017
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Hebrew translation by Dolev Farhi. Improved detection of SSL certificate files. Minor changes to improve logging and results.
tags | tool, scanner
systems | unix
MD5 | 5b9da89c616344bbc73cbc5688a4a0bd
WebKit CachedFrameBase::restore Universal Cross Site Scripting
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit suffers from a universal cross site scripting vulnerability in CachedFrameBase::restore.

tags | exploit, xss
MD5 | 8ee769d64010284b4721a43aed2c95de
WebKit Element::setAttributeNodeNS Use-After-Free
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit suffers from a use-after-free vulnerability in Element::setAttributeNodeNS.

tags | exploit
MD5 | ae625a9497a928c686ddefc59db54d76
WebKit CachedFrame Universal Cross Site Scripting
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit CachedFrame does not detach openers allowing for a universal cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-2528
MD5 | 43a1c75b3576aaf06b38a05d7d55213c
WebKit JSC emitPutDerivedConstructorToArrowFunctionContextScope Incorrect Check
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit JSC suffers from an incorrect check in emitPutDerivedConstructorToArrowFunctionContextScope.

tags | exploit
advisories | CVE-2017-2531
MD5 | 3f73848d1965a00f303d261d8061f3f9
WebKit JSC JSObject::ensureLength Failure Check
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit JSC JSObject::ensureLength does not check if ensureLengthSlow fails.

tags | exploit
advisories | CVE-2017-2521
MD5 | 691f83669e1b3663794cb1b6b2db6a9b
WebKit Document::prepareForDestruction / CachedFrame Universal XSS
Posted Jun 1, 2017
Authored by Google Security Research, lokihardt

WebKit suffers from a universal cross site scripting vulnerability via Document::prepareForDestruction and CachedFrame.

tags | exploit, xss
MD5 | 78bf11e8b6ba2d240530d29aae957ca6
Digital Whisper Electronic Magazine #82
Posted Jun 1, 2017
Authored by cp77fk4r, digitalwhisper

Digital Whisper Electronic Magazine issue 82. Written in Hebrew.

tags | magazine
MD5 | b5cc9283710ca83300d73f6d1f637561
Page 1 of 1
Back1Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    19 Files
  • 18
    Nov 18th
    4 Files
  • 19
    Nov 19th
    2 Files
  • 20
    Nov 20th
    9 Files
  • 21
    Nov 21st
    14 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close