accept no compromises
Showing 1 - 20 of 20 RSS Feed

Files Date: 2017-08-03

TOR Virtual Network Tunneling Tool 0.3.0.10
Posted Aug 3, 2017
Authored by Roger Dingledine | Site tor.eff.org

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

Changes: Tor 0.3.0.10 backports a collection of small-to-medium bugfixes from the current Tor alpha series. OpenBSD users and TPROXY users should upgrade; others are probably okay sticking with 0.3.0.9.
tags | tool, remote, local, peer2peer
systems | unix
MD5 | c9920169798c28b60b03fa3f0e592509
Joomla PHP-Bridge 1.2.3 SQL Injection
Posted Aug 3, 2017
Authored by Ihsan Sencan

Joomla PHP-Bridge component version 1.2.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | e758c0825c15612d960b25a95f55f5f7
Joomla SIMGenealogy 2.1.5 SQL Injection
Posted Aug 3, 2017
Authored by Ihsan Sencan

Joomla SIMGenealogy component version 2.1.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6ac97bf2a2dbdadb0a485f97d9d6eb2b
Solarwinds Kiwi Syslog 9.6.1.6 Denial Of Service
Posted Aug 3, 2017
Authored by Guillaume Kaddouch

Solarwinds Kiwi Syslog version 9.6.1.6 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 0278ecdc30a2acf548d2d504ee692ad3
Joomla LMS King Professional 3.2.40 SQL Injection
Posted Aug 3, 2017
Authored by Ihsan Sencan

Joomla LMS King Professional component version 3.2.4.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a7328a694b64249ca16d5b02ff922cc2
Joomla Event Registration Pro Calendar 4.1.3 SQL Injection
Posted Aug 3, 2017
Authored by Ihsan Sencan

Joomla Event Registration Pro Calendar component version 4.1.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 5796203f105259afc27b43b06c323571
Joomla Ultimate Property Listing 1.0.2 SQL Injection
Posted Aug 3, 2017
Authored by Ihsan Sencan

Joomla Ultimate Property Listing component version 1.0.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0142bd8b4e26bed41d8a1f4ef6f33d47
SMBLoris Denial Of Service
Posted Aug 3, 2017
Authored by Hector Martin

Microsoft Windows 10 Pro SMBLoris denial of service exploit that takes down a fully patched system with 8 gigs of ram in less than 10 seconds.

tags | exploit, denial of service
systems | windows
MD5 | 58282a71fd20dab619fc61945f200983
IBM Worklight / MobileFirst Cross Site Scripting
Posted Aug 3, 2017
Authored by Gabriele Gristina

IBM Worklight Enterprise Edition and IBM MobileFirst Platform Foundation versions 6.1, 6.2, 6.3, 7.0, 7.1, and 8.0 suffer from an oauth server web api cross site scripting vulnerability.

tags | exploit, web, xss
advisories | CVE-2017-1500
MD5 | 4e3e108d064f35e60bc758a48668cf94
Hashicorp vagrant-vmware-fusion 4.0.23 Local Root Privilege Escalation
Posted Aug 3, 2017
Authored by Mark Wadham

Hashicorp vagrant-vmware-fusion versions 4.0.23 and below suffer from a local privilege escalation vulnerability.

tags | exploit, local
advisories | CVE-2017-11741
MD5 | 722af766c20d6b5f20bdb1b29bc26b37
Ubuntu Security Notice USN-3375-1
Posted Aug 3, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3375-1 - It was discovered that LXC incorrectly handled the TIOCSTI ioctl. An attacker could possibly use this issue to escape LXC containers.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2016-10124
MD5 | 77f4dfd619f9d84568e605b517a744a9
Ubuntu Security Notice USN-3376-1
Posted Aug 3, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3376-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2017-2538, CVE-2017-7018, CVE-2017-7030, CVE-2017-7034, CVE-2017-7037, CVE-2017-7039, CVE-2017-7046, CVE-2017-7048, CVE-2017-7052, CVE-2017-7055, CVE-2017-7056, CVE-2017-7061, CVE-2017-7064
MD5 | e387fcf37251d265cc71556e68ff7b81
Debian Security Advisory 3924-1
Posted Aug 3, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3924-1 - A denial of service vulnerability was discovered in Varnish, a state of the art, high-performance web accelerator. Specially crafted HTTP requests can cause the Varnish daemon to assert and restart, clearing the cache in the process.

tags | advisory, web, denial of service
systems | linux, debian
MD5 | 08e209f2df7bb0fe9ec85372eed8d17d
Red Hat Security Advisory 2017-2412-01
Posted Aug 3, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2412-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c.

tags | advisory, remote, kernel
systems | linux, redhat
advisories | CVE-2017-7895
MD5 | b05b56c2dbff79dc133eeb269529aa8a
Slackware Security Advisory - gnupg Updates
Posted Aug 3, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New gnupg packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue.

tags | advisory
systems | linux, slackware
advisories | CVE-2017-7526
MD5 | 4caa75ea2ec51b16d20510989f5b4c0a
HP Security Bulletin HPESBHF03763 1
Posted Aug 3, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBHF03763 1 - A potential security vulnerability has been identified in Comware 7, IMC, VCX products using OpenSSL. The vulnerability could be remotely exploited to allow a denial of service. Revision 1 of this advisory.

tags | advisory, denial of service
advisories | CVE-2016-2177
MD5 | 9280bc75189500cf6d819899228b178b
Red Hat Security Advisory 2017-1758-01
Posted Aug 3, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-1758-01 - Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred to managed machines automatically. Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web application development. Action Pack implements the controller and the view components.

tags | advisory, remote, web, ruby
systems | linux, redhat
advisories | CVE-2016-7047, CVE-2017-2664, CVE-2017-7497, CVE-2017-7530
MD5 | fe93f01d1cd8e7ef560224b2f2389d9a
HP Security Bulletin HPESBGN03766 1
Posted Aug 3, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBGN03766 1 - A potential security vulnerability has been identified in HPE Project and Portfolio Management(PPM) product. The vulnerability could be exploited to allow remote cross-site scripting (XSS). Revision 1 of this advisory.

tags | advisory, remote, xss
advisories | CVE-2017-8993
MD5 | c9555033805ad9202d914926cc16041c
Technicolor TC7337 Cross Site Scripting
Posted Aug 3, 2017
Authored by Geolado Giolado

Technicolor TC7337 suffers from a persistent cross site scripting vulnerability through the SSID of nearby Wi-Fi devices.

tags | exploit, xss
advisories | CVE-2017-11320
MD5 | e0af820380f083f555b3c05072d2e856
Entrepreneur B2B Script SQL Injection
Posted Aug 3, 2017
Authored by Meisam Monsef

Entrepreneur B2B script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 816161d234a310e669c84c3780f429cc
Page 1 of 1
Back1Next

File Archive:

August 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    30 Files
  • 3
    Aug 3rd
    20 Files
  • 4
    Aug 4th
    17 Files
  • 5
    Aug 5th
    4 Files
  • 6
    Aug 6th
    2 Files
  • 7
    Aug 7th
    15 Files
  • 8
    Aug 8th
    18 Files
  • 9
    Aug 9th
    10 Files
  • 10
    Aug 10th
    24 Files
  • 11
    Aug 11th
    10 Files
  • 12
    Aug 12th
    3 Files
  • 13
    Aug 13th
    3 Files
  • 14
    Aug 14th
    10 Files
  • 15
    Aug 15th
    16 Files
  • 16
    Aug 16th
    18 Files
  • 17
    Aug 17th
    15 Files
  • 18
    Aug 18th
    17 Files
  • 19
    Aug 19th
    15 Files
  • 20
    Aug 20th
    11 Files
  • 21
    Aug 21st
    15 Files
  • 22
    Aug 22nd
    15 Files
  • 23
    Aug 23rd
    13 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close