what you don't know can hurt you
Showing 1 - 13 of 13 RSS Feed

Files Date: 2017-10-13

Gentoo Linux Security Advisory 201710-14
Posted Oct 13, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201710-14 - Multiple vulnerabilities have been found in WebkitGTK+, the worst of which may allow remote attackers to execute arbitrary code. Versions less than 2.16.6:4 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-7006, CVE-2017-7011, CVE-2017-7012, CVE-2017-7018, CVE-2017-7019, CVE-2017-7020, CVE-2017-7030, CVE-2017-7034, CVE-2017-7037, CVE-2017-7038, CVE-2017-7039, CVE-2017-7040, CVE-2017-7041, CVE-2017-7042, CVE-2017-7043
SHA-256 | 43af8a0df16e4463cc90e2e2043b2cd7b5b2bdc65c3a1be2521e687ee036d9ba
Gentoo Linux Security Advisory 201710-13
Posted Oct 13, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201710-13 - Multiple vulnerabilities have been found in Graphite, the worst of which could lead to the remote execution of arbitrary code. Versions less than 1.3.10 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778
SHA-256 | 1fc515997811b48f7dcb764101edd9caa941f703833a6e6b6e19790194606b3c
Gentoo Linux Security Advisory 201710-12
Posted Oct 13, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201710-12 - Multiple vulnerabilities have been found in Puppet Agent, the worst of which could result in the execution of arbitrary code. Versions less than 1.7.1 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2016-5714
SHA-256 | 98ba217a20c5de0270877d47a6ee84b96fc1c1aa0a4a90589175211bd14fafb9
Gentoo Linux Security Advisory 201710-11
Posted Oct 13, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201710-11 - Multiple vulnerabilities have been found in GNU Libtasn1, the worst of which may allow remote attackers to execute arbitrary code. Versions less than 4.12-r1 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-10790, CVE-2017-6891
SHA-256 | 92685fe57fb041330c8430e99dbda671722ae6b1569e6f5a603ccc70b49f2c7d
Gentoo Linux Security Advisory 201710-10
Posted Oct 13, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201710-10 - Multiple vulnerabilities have been found in elfutils, the worst of which may allow remote attackers to cause a Denial of Service condition. Versions less than 0.169-r1 are affected.

tags | advisory, remote, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2016-10254, CVE-2016-10255, CVE-2017-7607, CVE-2017-7608, CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613
SHA-256 | 70260518685556fb869ffc6423adb02280c238fa013e7c02fbd51c084cc9df76
DuckieTV CMS 1.1.5 Local File Inclusion
Posted Oct 13, 2017
Authored by M.R.S.L.Y

DuckieTV CMS version 1.1.5 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
advisories | CVE-2016-4314
SHA-256 | b8bb368f6c62fc060f1f6bbfef281f4bddad8964dffbdb9d6ebe0ae4c4f287b3
E-Sic Software livre CMS 1.0 Cross Site Scripting / SQL Injection
Posted Oct 13, 2017
Authored by Elber Tavares, Guilherme Assmann

E-Sic Software livre CMS version 1.0 suffers from authentication bypass, cross site scripting, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | fd9acdc881cdf1892c664ffcfe05896106baae015910fa71fedc474e208d0908
phpMyFAQ 2.9.8 Cross Site Scripting
Posted Oct 13, 2017
Authored by Ishaq Mohammed

phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability where an attacker can embed malicious script code in the title of the faq.

tags | exploit, xss
advisories | CVE-2017-14619
SHA-256 | 2886abf85bb7d159d238a029d4735a38ee38240d0de808755f12e5f6b44da496
Macro Pack 1.1
Posted Oct 13, 2017
Authored by Emeric Nasi | Site github.com

macro_pack is a tool used to automate obfuscation and generation of MS Office documents for penetration testing, demo, and social engineering assessments. The goal of macro_pack is to simplify bypassing anti-malware solutions and automate the process from vba generation to final Office document generation.

tags | tool
SHA-256 | c5edcba25cf4be512a120d75fc22584e2d4ff925ce78cd23d96e4c714d629695
SyncBreeze 10.1.16 SEH GET Overflow
Posted Oct 13, 2017
Authored by wetw0rk | Site metasploit.com

There exists an unauthenticated SEH based vulnerability in the HTTP server of Sync Breeze Enterprise version 10.1.16, when sending a GET request with an excessive length it is possible for a malicious user to overwrite the SEH record and execute a payload that would run under the Windows NT AUTHORITY\SYSTEM account. The SEH record is overwritten with a "POP,POP,RET" pointer from the application library libspp.dll. This exploit has been successfully tested on Windows XP, 7 and 10 (x86->x64). It should work against all versions of Windows and service packs.

tags | exploit, web, x86
systems | windows
SHA-256 | cd660cfe17078fd46a1bde16db1b2e75840ec80024327923f3e6be7f8c826dfd
Typo3 Restler 1.7.0 Local File Disclosure
Posted Oct 13, 2017
Authored by CrashBandicot

Typo3 Restler extension version 1.7.0 suffers from a local file disclosure vulnerability.

tags | exploit, local, info disclosure
SHA-256 | 3c8e62bce4fc30f456f7759aae37fe45e2da7b299b434553064137518ad99c14
DreamBox BouquetEditor 2.0.0 Cross Site Scripting
Posted Oct 13, 2017
Authored by Thiago Sena

The BouquetEditor plugin for Dreambox 2.0.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-15287
SHA-256 | 925ea65626e3e1477d516b5b0859d7e5dcbef48a3eaf357b0e370696aaf359c4
Linux/x86 execve(/bin/sh) Polymorphic Shellcode
Posted Oct 13, 2017
Authored by Manuel Mancera

30 bytes small Linux/x86 polymorphic execve(/bin/sh) shellcode.

tags | x86, shellcode
systems | linux
SHA-256 | 85b807d99a5c503478b74c10679b0d8fbbd59265759b08ece892f5b072154ee1
Page 1 of 1
Back1Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    6 Files
  • 24
    May 24th
    19 Files
  • 25
    May 25th
    5 Files
  • 26
    May 26th
    12 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close