Exploit the possiblities
Showing 1 - 25 of 28 RSS Feed

Files Date: 2017-11-02

Red Hat Security Advisory 2017-3115-01
Posted Nov 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-3115-01 - Red Hat JBoss Fuse, based on Apache ServiceMix, provides a small-footprint, flexible, open source enterprise service bus and integration platform. Red Hat JBoss A-MQ, based on Apache ActiveMQ, is a standards compliant messaging system that is tailored for use in mission critical applications. This patch is an update to Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3. It includes bug fixes and enhancements, which are documented in the readme.txt file included with the patch files. Multiple security issues have been addressed.

tags | advisory
systems | linux, redhat
advisories | CVE-2015-3254, CVE-2016-5725, CVE-2016-9878
MD5 | ce7fad581c6d578e470a875876346673
Red Hat Security Advisory 2017-3113-01
Posted Nov 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-3113-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. This release provides an update to httpd, OpenSSL and Tomcat 6/7 for Red Hat JBoss Web Server 2.1.2. The updates are documented in the Release Notes document linked to in the References.

tags | advisory, java, web, protocol
systems | linux, redhat
advisories | CVE-2016-2183, CVE-2017-12615, CVE-2017-12617, CVE-2017-9788, CVE-2017-9798
MD5 | 46b21654d29e59ef7bb3a4df28200a02
Ubuntu Security Notice USN-3426-2
Posted Nov 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3426-2 - USN-3426-1 fixed several vulnerabilities in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM.

tags | advisory, vulnerability
systems | linux, ubuntu
advisories | CVE-2017-12150, CVE-2017-12163
MD5 | 5c7bcdab3f68750d189559f33594d69d
Sera 1.2 Local Root / Password Disclosure
Posted Nov 2, 2017
Authored by Mark Wadham

Sera version 1.2 suffers from a password disclosure that can allow for root privilege escalation.

tags | exploit, root
advisories | CVE-2017-15918
MD5 | 4625b7cb42f5e2f2c434c541fa4f6c89
Ubuntu Security Notice USN-3472-1
Posted Nov 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3472-1 - Marcin Noga discovered that LibreOffice incorrectly handled PPT documents. If a user were tricked into opening a specially crafted PPT document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. Marcin Noga discovered that LibreOffice incorrectly handled Word documents. If a user were tricked into opening a specially crafted Word document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-12607, CVE-2017-12608
MD5 | 5a0440609e12bff636306cd00272bb83
Red Hat Security Advisory 2017-3114-01
Posted Nov 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-3114-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. This release provides an update to httpd, OpenSSL and Tomcat 6/7 for Red Hat JBoss Web Server 2. The updates are documented in the Release Notes document linked to in the References.

tags | advisory, java, web, protocol
systems | linux, redhat
advisories | CVE-2016-2183, CVE-2017-12615, CVE-2017-12617, CVE-2017-9788, CVE-2017-9798
MD5 | e79e19cccf6975c04bc6a5a7ee05526e
Red Hat Security Advisory 2017-3111-01
Posted Nov 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-3111-01 - Liblouis is an open source braille translator and back-translator named in honor of Louis Braille. It features support for computer and literary braille, supports contracted and uncontracted translation for many languages and has support for hyphenation. New languages can easily be added through tables that support a rule or dictionary based approach. Liblouis also supports math braille. Security Fix: Multiple flaws were found in the processing of translation tables in liblouis. An attacker could crash or potentially execute arbitrary code using malicious translation tables.

tags | advisory, arbitrary
systems | linux, redhat
advisories | CVE-2014-8184, CVE-2017-13738, CVE-2017-13740, CVE-2017-13741, CVE-2017-13742, CVE-2017-13743, CVE-2017-13744
MD5 | a5d2067562195d0741f250761d15be1c
Red Hat Security Advisory 2017-3110-01
Posted Nov 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-3110-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix: It was discovered that the RHSA-2017:2858 erratum for Red Hat Gluster Storage 3.3 for Red Hat Enterprise Linux 6 did not include the documented security fixes for issues CVE-2017-12150, CVE-2017-12151, and CVE-2017-12163. This update correctly applies fixes for those issues.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2017-15085, CVE-2017-15086, CVE-2017-15087
MD5 | 1926f3b50b5abd3356e9c49f23208dfd
Apple Security Advisory 2017-10-31-8
Posted Nov 2, 2017
Authored by Apple | Site apple.com

Apple Security Advisory 2017-10-31-8 - Additional information for the APPLE-SA-2017-09-25-1 macOS High Sierra 10.13 advisory has been provided that relates to Apache and various other software.

tags | advisory
systems | apple
advisories | CVE-2016-2161, CVE-2016-4736, CVE-2016-5387, CVE-2016-8740, CVE-2016-8743, CVE-2016-9042, CVE-2016-9063, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-0381, CVE-2017-1000373, CVE-2017-10989, CVE-2017-13782, CVE-2017-13807, CVE-2017-13808, CVE-2017-13809, CVE-2017-13810, CVE-2017-13811, CVE-2017-13812, CVE-2017-13813, CVE-2017-13814, CVE-2017-13815, CVE-2017-13816, CVE-2017-13817
MD5 | f551c8cf2ba4fdb8abb612d2d110fed3
Apple Security Advisory 2017-10-31-5
Posted Nov 2, 2017
Authored by Apple | Site apple.com

Apple Security Advisory 2017-10-31-5 - Safari 11.1 is now available and addresses address bar spoofing, memory corruption, and various other vulnerabilities.

tags | advisory, spoof, vulnerability
systems | apple
advisories | CVE-2017-13783, CVE-2017-13784, CVE-2017-13785, CVE-2017-13788, CVE-2017-13789, CVE-2017-13790, CVE-2017-13791, CVE-2017-13792, CVE-2017-13793, CVE-2017-13794, CVE-2017-13795, CVE-2017-13796, CVE-2017-13798, CVE-2017-13802, CVE-2017-13803
MD5 | b509bc67f4ea49b09815752633a19c67
Apple Security Advisory 2017-10-31-1
Posted Nov 2, 2017
Authored by Apple | Site apple.com

Apple Security Advisory 2017-10-31-1 - iOS 11.1 is now available and addresses denial of service, code execution, and various other vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution
systems | cisco, apple, ios
advisories | CVE-2017-13080, CVE-2017-13783, CVE-2017-13784, CVE-2017-13785, CVE-2017-13788, CVE-2017-13791, CVE-2017-13792, CVE-2017-13793, CVE-2017-13794, CVE-2017-13795, CVE-2017-13796, CVE-2017-13798, CVE-2017-13799, CVE-2017-13802, CVE-2017-13803, CVE-2017-13804, CVE-2017-13805, CVE-2017-13844, CVE-2017-13849, CVE-2017-7113
MD5 | 348630fa91f3c148b06b35cc2358491a
Vir.IT eXplorer Anti-Virus Privilege Escalation
Posted Nov 2, 2017
Authored by Parvez Anwar

Vir.IT eXplorer Anti-Virus suffers from a privilege escalation vulnerability.

tags | exploit, virus
advisories | CVE-2017-16237
MD5 | ff30fb040fe89ba20d52d211ff216ade
Oracle Java SE Wv8u131 Information Disclosure
Posted Nov 2, 2017
Authored by mr_me

Oracle Java SE installs a protocol handler in the registry as "HKEY_CLASSES_ROOT\jnlp\Shell\Open\Command\Default" 'C:\Program Files\Java\jre1.8.0_131\bin\jp2launcher.exe" -securejws "%1"'. This can allow allow an attacker to launch remote jnlp files with little user interaction. A malicious jnlp file containing a crafted XML XXE attack can be leveraged to disclose files, cause a denial of service or trigger SSRF. Versions v8u131 and below are affected.

tags | exploit, java, remote, denial of service, shell, registry, protocol, info disclosure
advisories | CVE-2017-10309
MD5 | 1e5c74e4370cfb11bd675efce53eb688
Protected Links SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

Protected Links suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15977
MD5 | 8eb5959090abf91355cb01edc11dc01f
AROX School ERP PHP Script SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

AROX School ERP PHP Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
advisories | CVE-2017-15978
MD5 | 358add815952626c233d8974647c8a64
Newspaper Magazine And Blog CMS 1.0 SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

Newspaper Magazine and Blog CMS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15981
MD5 | 23e53e52f34e42d216f0239154f1d69d
Shareet Photo Sharing Social Network SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

Shareet Photo Sharing Social Network suffers from a remote SQL Injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15979
MD5 | cfd15b7ecac832bdbbd2b57335aa5f00
US Zip Codes Database SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

US Zip Codes Database suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15980
MD5 | d6b92e1e691a1e366d957fd52f5ee392
Ingenious School Management System 2.3.0 SQL Injection
Posted Nov 2, 2017
Authored by Giulio Comi

Ingenious School Management System version 2.3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0edcc3dcc71ecc83921e8b0f682a0862
OctoberCMS 1.0.426 (Build 426) Cross Site Request Forgery
Posted Nov 2, 2017
Authored by Zain Sabahat

OctoberCMS version 1.0.426 (Build 426) suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2017-16244
MD5 | 29c853f56b59ad6e4cb2b4757ef9e2c6
ZyXEL PK5001Z Modem Backdoor Account
Posted Nov 2, 2017
Authored by Matthew Sheimo

The ZyXEL PK5001Z modem has a hardcoded backdoor admin account that allows escalation to root.

tags | exploit, root
advisories | CVE-2016-10401
MD5 | bca3b4449d9fcb8fb0e87e0643eda104
News Magazine And Blog CMS 1.0 SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

News Magazine and Blog CMS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15982
MD5 | 9f4bab3ca77531703dcefa759b8c273f
MyMagazine Magazine And Blog CMS 1.0 SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

MyMagazine Magazine and Blog CMS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15983
MD5 | 4658cb8e1d19de46206690f6a0555626
CMS Lite 1.4 SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

Creative Management System CMS Lite version 1.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15984
MD5 | 6d6bb7ef41f981b567e136fb724ee283
Basic B2B Script SQL Injection
Posted Nov 2, 2017
Authored by Ihsan Sencan

Basic B2B Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-15985
MD5 | 0c9ad486cce622e731c68a61266405fe
Page 1 of 2
Back12Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    19 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close