accept no compromises
Showing 1 - 15 of 15 RSS Feed

Files Date: 2017-07-10

ToorCon 19 Call For Papers
Posted Jul 10, 2017
Site sandiego.toorcon.net

ToorCon 19 has announced its call for papers. This conference will take place September 1st through the 3rd, 2017 in San Diego, CA, USA.

tags | paper, conference
MD5 | ab72109010be30c6fdbfb50303e718ba
Gentoo Linux Security Advisory 201707-14
Posted Jul 10, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201707-14 - A vulnerability in Gajim might allow remote attackers to intercept encrypted communications. Versions less than 0.16.6-r1 are affected.

tags | advisory, remote
systems | linux, gentoo
advisories | CVE-2016-10376
MD5 | 2ce7a444a40b74b85f8b2e84b09636cf
Apache Impala 2.8.0 Plain-Text Information Disclosure
Posted Jul 10, 2017
Authored by Cloudera

Apache Impala versions 2.7.0 through 2.8.0 suffers from an information disclosure vulnerability. During a routine security analysis, it was found that one of the ports sent data in plaintext even when the cluster was configured to use TLS. The port in question was used by the StatestoreSubscriber class which did not use the appropriate secure Thrift transport when TLS was turned on. It was therefore possible for an adversary, with access to the network, to eavesdrop on the packets going to and coming from that port and view the data in plaintext.

tags | advisory, info disclosure
advisories | CVE-2017-5652
MD5 | ab733eb3ce590ffbb6683f715c26e63a
Apache Impala 2.8.0 Authentication Bypass
Posted Jul 10, 2017
Authored by Cloudera

Apache Impala versions 2.7.0 through 2.8.0 suffers from an information disclosure vulnerability. It was noticed that a malicious process impersonating an Impala daemon could cause Impala daemons to skip authentication checks when Kerberos is enabled (but TLS is not). If the malicious server responds with 'COMPLETE' before the SASL handshake has completed, the client will consider the handshake as completed even though no exchange of credentials has happened.

tags | advisory, info disclosure
advisories | CVE-2017-5640
MD5 | b530e7bbb86b2191fd3c6186258dd8ec
Rise Ultimate Project Manager 1.8 Cross Site Scripting
Posted Jul 10, 2017
Authored by 8bitsec

Rise Ultimate Project Manager version 1.8 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 777631a23b625f4d7d95e352bf19262c
HP Security Bulletin HPESBNS03755 1
Posted Jul 10, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBNS03755 1 - HPE NonStop Server using Samba is vulnerable to remote code execution and remote access restriction bypass. Revision 1 of this advisory.

tags | advisory, remote, code execution
advisories | CVE-2017-2619, CVE-2017-7494
MD5 | 6ce75c5c108a7bf07db88659287115b8
Pulse Connect Secure 8.3R1 CSRF / XSS
Posted Jul 10, 2017
Authored by sxcurity | Site insecurity.zone

Pulse Connect Secure version 8.3R1 suffer from cross site scripting and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | f881d55ec2c771f14be93daa0a0887bf
Slackware Security Advisory - irssi Updates
Posted Jul 10, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New irssi packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.

tags | advisory
systems | linux, slackware
advisories | CVE-2017-10965, CVE-2017-10966
MD5 | 6f917da1caa8bfc75814b1bb03ee4aa7
Gentoo Linux Security Advisory 201707-13
Posted Jul 10, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201707-13 - Multiple vulnerabilities have been found in libcroco, the worst of which may have unspecified impacts. Versions less than 0.6.12-r1 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2017-7960, CVE-2017-7961
MD5 | 1793e2952d6addae780a82cc3f100816
Debian Security Advisory 3905-1
Posted Jul 10, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3905-1 - Two security issues have been discovered in the X.org X server, which may lead to privilege escalation or an information leak.

tags | advisory
systems | linux, debian
advisories | CVE-2017-10971, CVE-2017-10972
MD5 | eec15ef958b064e5d22c3fbaa8454462
Gentoo Linux Security Advisory 2017-07-12
Posted Jul 10, 2017
Site security.gentoo.org

glsa-2017-07-12.txt - A vulnerability in MAN DB allows local users to gain root privileges. Versions less than 2.7.6.1-r2 are affected.

tags | advisory, local, root
advisories | CVE-2015-1336
MD5 | d2cf885e9f9b4d10d6902996a35ca9d1
NfSen 1.3.7 / AlienVault USM/OSSIM 5.3.4 Command Injection
Posted Jul 10, 2017
Authored by Paul Taylor

NfSen version 1.3.7 and AlienVault USM/OSSIM version 5.3.4 suffer from a remote command injection vulnerability.

tags | exploit, remote
advisories | CVE-2017-6971
MD5 | a5c06ecae8b80e27d7f7876e20f6c2d1
NfSen 1.3.7 / AlienVault USM/OSSIM 5.3.6 Local Root
Posted Jul 10, 2017
Authored by Paul Taylor

NfSen versions 1.3.7 and below and AlienVault USM/OSSIM versions 5.3.6 and below suffer from a local privilege escalation vulnerability.

tags | exploit, local
advisories | CVE-2017-6970
MD5 | 787b269cad22ea86e1c32d8ac3022b2f
DNS/DNSSEC RR Stub Resolver Denial Of Service
Posted Jul 10, 2017
Authored by Todor Donev

DNS/DNSSEC RR stub resolvers amplification distributed denial of service exploit.

tags | exploit, denial of service
MD5 | 0dcc402c9b94f66a14d0a3fd9f69f56b
CRLF Injector
Posted Jul 10, 2017
Authored by Rudra Sarkar

This is a python script for testing CRLF injecting issues.

tags | tool, scanner, python
systems | unix
MD5 | 795c5aeb093a8fefd41411dfeb63b7aa
Page 1 of 1
Back1Next

File Archive:

August 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    30 Files
  • 3
    Aug 3rd
    20 Files
  • 4
    Aug 4th
    17 Files
  • 5
    Aug 5th
    4 Files
  • 6
    Aug 6th
    2 Files
  • 7
    Aug 7th
    15 Files
  • 8
    Aug 8th
    18 Files
  • 9
    Aug 9th
    10 Files
  • 10
    Aug 10th
    24 Files
  • 11
    Aug 11th
    10 Files
  • 12
    Aug 12th
    3 Files
  • 13
    Aug 13th
    3 Files
  • 14
    Aug 14th
    10 Files
  • 15
    Aug 15th
    16 Files
  • 16
    Aug 16th
    18 Files
  • 17
    Aug 17th
    15 Files
  • 18
    Aug 18th
    4 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close