Exploit the possiblities
Showing 1 - 21 of 21 RSS Feed

Files Date: 2017-06-15

WebKit JSC Intl.getCanonicalLocales Heap Buffer Overflow
Posted Jun 15, 2017
Authored by Google Security Research, lokihardt

WebKit JSC suffers from a heap buffer overflow vulnerability in Intl.getCanonicalLocales.

tags | exploit, overflow
advisories | CVE-2017-6984
MD5 | 197641bde76dac8f3a3274ecd76b69a9
WebKit JSC arrayProtoFuncSplice Initialization Fail
Posted Jun 15, 2017
Authored by Google Security Research, lokihardt

WebKit JSC arrayProtoFuncSplice fails to initialize all indices.

tags | exploit
advisories | CVE-2017-6980
MD5 | 4d0a74c97acf50fd14172466d02b2a18
WebKit JSC JSGlobalObject::haveABadTime Type Confusion
Posted Jun 15, 2017
Authored by Google Security Research, lokihardt

WebKit JSC suffers from a JSGlobalObject::haveABadTime type confusion vulnerability.

tags | exploit
advisories | CVE-2017-7005
MD5 | 248577206c4066115f6703bf7bee7ff3
Mobius Forensic Toolkit 0.5.28
Posted Jun 15, 2017
Site savannah.nongnu.org

Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.

Changes: New extension gtk-report-dialog. Improvements in attribute-viewer and lshw-agent. Various other changes.
tags | tool, python, forensics
MD5 | 53152ed2bf330a6f792d962c03816bce
WebKit JSC Jit Optimization Check Failure
Posted Jun 15, 2017
Authored by Google Security Research, lokihardt

WebKit JSC suffers from a JIT optimization check failure in IntegerCheckCombiningPhase::handleBlock.

tags | exploit
advisories | CVE-2017-2547
MD5 | 83102fcc9791a753114bf84bbc574a30
Ubuntu Security Notice USN-3319-1
Posted Jun 15, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3319-1 - It was discovered that libmwaw incorrectly handled certain malformed document files. If a user or automated system were tricked into opening a specially crafted file, a remote attacker could cause libmwaw to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-9433
MD5 | 76f254bead5df0662c74a3eab069e762
Ubuntu Security Notice USN-3320-1
Posted Jun 15, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3320-1 - Agostino Sarubbo discovered that zziplib incorrectly handled certain malformed ZIP files. If a user or automated system were tricked into opening a specially crafted ZIP file, a remote attacker could cause zziplib to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-5974, CVE-2017-5975, CVE-2017-5976, CVE-2017-5978, CVE-2017-5979, CVE-2017-5980, CVE-2017-5981
MD5 | 7324e047f831f532d42a37367c635107
Aerohive AP340 HiveOS Remote Code Execution / Local File Inclusion
Posted Jun 15, 2017
Authored by Ike-Clinton

Aerohive AP340 HiveOS versions prior to 6.1r5 suffers from a local file inclusion vulnerability that allows for remote code execution.

tags | exploit, remote, local, code execution, file inclusion
MD5 | 23f7f0efaf290260644702d2fc4ec176
SAP Successfactors b1702p5e.1190658 Cross Site Scripting
Posted Jun 15, 2017
Authored by Dunston Pinto

SAP Successfactors release build b1702p5e.1190658 suffers from a stored cross site scripting vulnerability.

tags | advisory, xss
advisories | CVE-2017-9613
MD5 | b54e1dd8507e439c7eeb1399d63a933c
VX Search Enterprise 9.7.18 Local Buffer Overflow
Posted Jun 15, 2017
Authored by Greg Priest

VX Search Enterprise version 9.7.18 suffers from a local buffer overflow vulnerability.

tags | exploit, overflow, local
MD5 | 2ec9a5d7ceffedf86aa9c7785b1efcc4
Slackware Security Advisory - mozilla-firefox Updates
Posted Jun 15, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New mozilla-firefox packages are available for Slackware 14.2, and -current to fix security issues.

tags | advisory
systems | linux, slackware
MD5 | de018925abb7b31856e0c0c5b0e16e75
Slackware Security Advisory - bind Updates
Posted Jun 15, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue.

tags | advisory
systems | linux, slackware
advisories | CVE-2017-3140
MD5 | 28feb7d28a3b3fdf0cfbcea4837fa08a
Debian Security Advisory 3881-1
Posted Jun 15, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3881-1 - Several security issues have been found in the Mozilla Firefox web and other implementation errors may lead to the execution of arbitrary code, denial of service or domain spoofing.

tags | advisory, web, denial of service, arbitrary, spoof
systems | linux, debian
advisories | CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778
MD5 | 66a9fa3e07bdc4c6bfc06da38753d483
Ubuntu Security Notice USN-3315-1
Posted Jun 15, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3315-1 - Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, read uninitialized memory, obtain sensitive information, spoof the addressbar contents, or execute arbitrary code. Multiple security issues were discovered in the Graphite 2 library used by Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, read uninitialized memory, or execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, spoof
systems | linux, ubuntu
advisories | CVE-2017-5470, CVE-2017-5471, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7762, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778
MD5 | 03cd8db29ba33eeb4a79c5c06077fd1d
WordPress WP Job Manager 1.26.1 Cross Site Scripting
Posted Jun 15, 2017
Authored by Ehsan Hosseini

WordPress WP Job Manager plugin version 1.26.1 suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
MD5 | 22f715ada1cd2bc8be3ef851254722ce
Linux/x86_64 execve("/bin/sh") Shellcode
Posted Jun 15, 2017
Authored by m4n3dw0lf

24 bytes small Linux/x86_64 execve("/bin/sh") shellcode.

tags | shellcode
systems | linux
MD5 | 0f0aac7432db39e01e8955c07202ce5c
Linux/x86 XOR Encoded execve(/bin/sh) setuid(0) setgid(0) Shellcode
Posted Jun 15, 2017
Authored by nullparasite

66 bytes small Linux/x86 XOR encoded execve(/bin/sh) setuid(0) setgid(0) shellcode.

tags | x86, shellcode
systems | linux
MD5 | d1d73363a3b74b1aa86e532dd5cd3585
Web Application Penetration Testing Techniques
Posted Jun 15, 2017
Authored by Ahmed Al Mutairi

This is a brief whitepaper written in Arabic that gives some examples of tools that can be used to hack systems.

tags | paper
MD5 | 572bf4e683d8f97acf40bb8d297c0758
EMC ESRS Virtual Edition 3.18 Authentication Bypass
Posted Jun 15, 2017
Site emc.com

EMC ESRS Virtual Edition versions 3.18 and below suffer from an authentication bypass vulnerability.

tags | advisory, bypass
advisories | CVE-2017-4986
MD5 | 251bf4de8dd0bb54efd42555b138296d
RSA BSAFE Cert-C Improper Certificate Processing
Posted Jun 15, 2017
Site emc.com

RSA BSAFE Cert-C is affected by a potential improper certificate processing vulnerability. The vulnerability is caused by a faulty certificate processing logic that may potentially cause a crash in RSA BSAFE Cert-C. Versions prior to 2.9.0.5 are affected.

tags | advisory
advisories | CVE-2017-4981
MD5 | c92a9d20ac1a0dd38eed3516d024d5a4
SimpleCE 2.3.0 Cross Site Request Forgery / Cross Site Scripting
Posted Jun 15, 2017
Authored by 8bitsec

SimpleCE version 2.3.0 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 9585ae5beaede1fd55c691c3d1c2f53e
Page 1 of 1
Back1Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    28 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close