exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 16 of 16 RSS Feed

Files Date: 2017-07-19

Sonicwall Secure Remote Access (SRA) 8.1.0.2-14sv Command Injection
Posted Jul 19, 2017
Authored by Russell Sanford

Sonicwall Secure Remote Access (SRA) version 8.1.0.2-14sv suffers from a remote command injection vulnerability.

tags | exploit, remote
advisories | CVE-2016-9682
SHA-256 | 058ee4560dcd1576fb23b43fa5fe3a3d28b656aedb5f932919ce0ded272f97b3
Red Hat Security Advisory 2017-1787-01
Posted Jul 19, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-1787-01 - collectd is a small C-language daemon, which reads various system metrics periodically and updates RRD files. Because the daemon does not start up each time it updates files, it has a low system footprint. The following packages have been upgraded to a later upstream version: collectd. Security Fix: collectd contains an infinite loop due to how the parse_packet() and parse_part_sign_sha256() functions interact. If an instance of collectd is configured with "SecurityLevel None" and empty "AuthFile" options, an attacker can send crafted UDP packets that trigger the infinite loop, causing a denial of service.

tags | advisory, denial of service, udp
systems | linux, redhat
advisories | CVE-2017-7401
SHA-256 | 9fe4cce5befb77f355add009553c2ae645b6b416db689aea5c036985f29dd3ac
Ubuntu Security Notice USN-3356-2
Posted Jul 19, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3356-2 - USN-3356-1 fix a vulnerability in Expat. This update provides the corresponding update for Ubuntu 12.04 ESM. A It was discovered that Expat incorrectly handled certain external A entities. A remote attacker could possibly use this issue to cause A Expat to hang, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
SHA-256 | 7298e45947fd02ee7303731ee6ff6c66f34cd68f1cb5281ef16ac87653584963
Ubuntu Security Notice USN-3356-1
Posted Jul 19, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3356-1 - It was discovered that Expat incorrectly handled certain external entities. A remote attacker could possibly use this issue to cause Expat to hang, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2017-9233
SHA-256 | 2bfed7f069c4187c12f4e904e868cfc4cb0052fe6d136336fe816266ea7e4044
Ubuntu Security Notice USN-3355-1
Posted Jul 19, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3355-1 - Frediano Ziglio discovered that Spice incorrectly handled certain invalid monitor configurations. A remote attacker could use this issue to cause Spice to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-7506
SHA-256 | f481df33912bb2d773edf10b5d92627116d5d3c05a54eb0ff478f8396d9e6b16
Ubuntu Security Notice USN-3212-3
Posted Jul 19, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3212-3 - USN-3212-1 and USN-3212-2 fixed a vulnerability in LibTIFF. This update provides a subset of corresponding update for Ubuntu 12.04 ESM. A It was discovered that LibTIFF incorrectly handled certain malformed A images. If a user or automated system were tricked into opening a A specially crafted image, a remote attacker could crash the A application, leading to a denial of service, or possibly execute A arbitrary code with user privileges. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
SHA-256 | f6649d7376a67bb72bac2ef5ba3d5a08ce63560aecf03229be010bd3ac125ae0
Ubuntu Security Notice USN-3307-2
Posted Jul 19, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3307-2 - USN-3307-1 fixed a vulnerability in OpenLDAP. This update provides the corresponding update for ubuntu 12.04 ESM. A Karsten Heymann discovered that OpenLDAP incorrectly handled certain A search requests. A remote attacker could use this issue to cause slapd A to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
SHA-256 | 6824128b7ce99a1b204ab1d8547f25786cb0ac458e388f96913fa120bc5b4c12
Microsoft Windows 7 SP1 x86 GDI Palette Objects Local Privilege Escalation
Posted Jul 19, 2017
Authored by Saif

Microsoft Windows 7 SP1 x86 GDI palette objects local privilege escalation exploit that leverages the vulnerability as described in MS17-017.

tags | exploit, x86, local
systems | windows
SHA-256 | f2f3ac2e44e98b915bc1b9bb278776c5d36cde513f23de2ed87db28c491ddaf7
WordPress Task Manager Pro 1.31 Cross Site Scripting
Posted Jul 19, 2017
Authored by 8bitsec

WordPress Task Manager Pro version 1.31 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 0ab5b7ff53cae033bdc9d97690414d0d194da945e56fab67995ebaee9abbcdc2
Citrix CloudBridge CAKEPHP Cookie Command Injection
Posted Jul 19, 2017
Authored by Russell Sanford

Citrix CloudBridge suffers from a CAKEPHP pre-authentication remote root cookie command injection vulnerability.

tags | exploit, remote, root
SHA-256 | ed35a3243301479f8f9b453927d581a3dab42f8438d6ee27f9608582962fb66f
Sonicwall importlogo/sitecustomization Remote Command Injection
Posted Jul 19, 2017
Authored by Russell Sanford

Sonicwall version 8.1.0.2-14sv importlogo/sitecustomization remote command execution exploit.

tags | exploit, remote
SHA-256 | bad044d4acf954bf0f910ffc7f39881c4498bc687a9f36640cd739cd6638bdc3
Citrix SD-WAN 9.1.2.26.561201 Remote Command Injection
Posted Jul 19, 2017
Authored by Russell Sanford

Citrix SD-WAN version 9.1.2.26.561201 logout cookie pre-authentication remote command injection exploit.

tags | exploit, remote
SHA-256 | a9d18103386b7c5413eb695eaee5e1020ef143fa405d4b964605ff5561db732d
Sonicwall SRA 8.1.0.2-14sv gencsr.cgi Command Injection
Posted Jul 19, 2017
Authored by Russell Sanford

Sonicwall SRA version 8.1.0.2-14sv gencsr.cgi remote command injection exploit.

tags | exploit, remote, cgi
SHA-256 | 329940cf4063e7a9fb0d94eae38b5e003d9143b085469fa57ef97279bed2d20e
Wireshark Analyzer 2.2.8
Posted Jul 19, 2017
Authored by Gerald Combs | Site wireshark.org

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.

Changes: Updated manuf, services enterprise numbers, translations, and other items. Various other updates.
tags | tool, sniffer, protocol
systems | windows, unix
SHA-256 | ecf02c148c9ab6e809026ad5743fe9be1739a9840ef6fece6837a7ddfbdf7edc
Microsoft Internet Explorer VBScript Type Confusion
Posted Jul 19, 2017
Authored by Ivan Fratric, Google Security Research

Microsoft Internet Explorer suffers from a VBScript arithmetic function type confusion vulnerability.

tags | exploit
SHA-256 | f40f028ace681031a746b0e8ecc785e770f04baf897fa1f1b397ec507e8a1a00
Bitcoin Core Wallet 0.14.2 Proof Of Concept
Posted Jul 19, 2017
Authored by Cryptocats

Bitcoin Core Wallet version 0.14.2 proof of concept crash exploit discovered while fuzzing.

tags | exploit, proof of concept
SHA-256 | 227422a7226384706d19cbd6aad8395f75a94cb2710b5fb7d7a3539b4dc90ddb
Page 1 of 1
Back1Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    0 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close