what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 16 of 16 RSS Feed

Files Date: 2017-10-02

Dnsmasq 2-Byte Heap-Based Overflow
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from a 2-byte heap-based overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2017-14491
SHA-256 | 055805c64fac47383be8dcb205cabe37b909202765ae70c0b6a566982e7e3d90
Dnsmasq Heap-Based Overflow
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffers from a heap-based overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2017-14492
SHA-256 | 3dd1901e9d790af9067aa877188bdf509221bdd29e9a73be8cd5f3ef727f941e
Ubuntu Security Notice USN-3433-1
Posted Oct 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3433-1 - It was discovered that Poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial service. This issue only affected Ubuntu 17.04. It was discovered that Poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2017-14517, CVE-2017-14519
SHA-256 | a8bfa99786e38cc437c2af641331373e2a9b86838db5974cee12b88f3e84aa90
Ubuntu Security Notice USN-3431-1
Posted Oct 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3431-1 - Martin Thomson discovered that NSS incorrectly generated handshake hashes. A remote attacker could use this issue to cause NSS to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-7805
SHA-256 | fe4737be42f43b336a1e315a9ed5152bf39d71a53f4cc93be2c015a4a5083301
Ubuntu Security Notice USN-3430-1
Posted Oct 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3430-1 - Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled IPv6 router advertisements. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496
SHA-256 | 3dad4acf0720be09289a42b685e45cc126f0c1cade57b137c68ab5283ae43c49
Red Hat Security Advisory 2017-2837-01
Posted Oct 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2837-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Security Fix: A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one of these options: enable-ra, ra-only, slaac, ra-names, ra-advrouter, or ra-stateless.

tags | advisory, overflow, arbitrary, local
systems | linux, redhat
advisories | CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494
SHA-256 | 90869c50cad4aa9014f75fd6b9307d81979a791208e043f504a417a1e7001350
Dnsmasq Stack-Based Overflow
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from a stack-based overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2017-14493
SHA-256 | e7693a6364ec3a51db0e94faef739843f2a7346005d5ab1cbade5c4cd89335da
Ubuntu Security Notice USN-3432-1
Posted Oct 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3432-1 - The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 20170717 package.

tags | advisory
systems | linux, ubuntu
SHA-256 | 5bb6d0f41b0263f04678ee64423412e5312f142b631a71f6443e80eea16e6de1
Red Hat Security Advisory 2017-2840-01
Posted Oct 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2840-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Security Fix: A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, redhat
advisories | CVE-2017-14491
SHA-256 | 0137f5aa40bb8ee22574ae9e460c91b1a00114d3dfa61f0affa468b3d299df6d
Red Hat Security Advisory 2017-2841-01
Posted Oct 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2841-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Security Fix: A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, redhat
advisories | CVE-2017-14491
SHA-256 | c4769c7be0ede11eeaa6232c34d7ba5f2d2503a11126f5b50a21044c09cb0e4d
Dnsmasq Information Leak
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from an information leak vulnerability.

tags | exploit, info disclosure
advisories | CVE-2017-14494
SHA-256 | 44728fd484c42216015e13563da54485bc1795b4bb81fc9f7cc62078d84f7eca
Dnsmasq Lack Of Free() Denial Of Service
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from a lack of free() denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2017-14495
SHA-256 | e3414e93cad6de29dce99b37e4df36e090e0dda08adf06bb6119647a01021c84
NPM-V (Network Power Manager) 2.4.1 Password Reset
Posted Oct 2, 2017
Authored by Saeed reza Zamanian

NPM-V (Network Power Manager) versions 2.4.1 and below suffer from a password reset vulnerability.

tags | exploit
SHA-256 | 2fa32f9685ab5375fb4be1fbaa559085be9318269d39826b29acbf18b4e50637
Dnsmasq Integer Underflow
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from an integer underflow vulnerability.

tags | exploit
advisories | CVE-2017-14496
SHA-256 | b30651e9f05e6690e614ee818b7dd9a9c45d82330c286167876931a6c623c955
Linux Kernel 4-14-rc1 Denial Of Service
Posted Oct 2, 2017
Authored by Wang Chenyu

Linux kernel versions prior to 4-14-rc3 suffer from a local denial of service vulnerability.

tags | exploit, denial of service, kernel, local
systems | linux
advisories | CVE-2017-14489
SHA-256 | 3e140d346c77430db69c1e634a3d1eab2ec755df0bcf6a33358119c7a1e176a2
Broadcom ICMPv6 Information Leak
Posted Oct 2, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from an information leak vulnerability in ICMPv6 router advertisement offloading.

tags | advisory
advisories | CVE-2017-11122
SHA-256 | 9c5be915161b05ece6582250e12e4414f152875c9a690b3c5e891a030e63fcb5
Page 1 of 1
Back1Next

File Archive:

April 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    10 Files
  • 2
    Apr 2nd
    26 Files
  • 3
    Apr 3rd
    40 Files
  • 4
    Apr 4th
    6 Files
  • 5
    Apr 5th
    26 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    22 Files
  • 9
    Apr 9th
    14 Files
  • 10
    Apr 10th
    10 Files
  • 11
    Apr 11th
    13 Files
  • 12
    Apr 12th
    14 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    30 Files
  • 16
    Apr 16th
    10 Files
  • 17
    Apr 17th
    22 Files
  • 18
    Apr 18th
    45 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close