Twenty Year Anniversary
Showing 1 - 15 of 15 RSS Feed

Files Date: 2018-02-07

Ubuntu Security Notice USN-3560-1
Posted Feb 7, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3560-1 - It was discovered that microprocessors utilizing speculative execution and branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Spectre. An attacker in the guest could use this to expose sensitive guest information, including kernel memory. This update allows QEMU to expose new CPU features added by microcode updates to guests on amd64, i386, and s390x. On amd64 and i386, new CPU models that match the updated microcode features were added with an -IBRS suffix. Certain environments will require guests to be switched manually to the new CPU models after microcode updates have been applied to the host. Various other issues were also addressed.

tags | advisory, kernel
systems | linux, ubuntu
advisories | CVE-2017-5715
MD5 | a056895c22dbc010426c5ff911cbe55c
Red Hat Security Advisory 2018-0285-01
Posted Feb 7, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0285-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update upgrades Flash Player to version 28.0.0.161. Security Fix: This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content.

tags | advisory, web, arbitrary, vulnerability
systems | linux, redhat
advisories | CVE-2018-4877, CVE-2018-4878
MD5 | dffe3635a3b7de886aaaa8dc49b34e17
Cisco ASA Crash Proof Of Concept
Posted Feb 7, 2018
Authored by Sean Dillon

Cisco ASA crash proof of concept exploit.

tags | exploit, denial of service, proof of concept
systems | cisco
advisories | CVE-2018-0101
MD5 | 49a72c843e58b62bc3926abab78f08ed
InfoZip UnZip 6.00 / 6.1c22 Buffer Overflow
Posted Feb 7, 2018
Authored by Rene Freingruber | Site sec-consult.com

InfoZip UnZip versions 6.00 and below and 6.1c22 and below suffer from multiple buffer overflow vulnerabilities.

tags | exploit, overflow, vulnerability
advisories | CVE-2018-1000031, CVE-2018-1000032, CVE-2018-1000033, CVE-2018-1000034, CVE-2018-1000035
MD5 | bdf125c9b1ccf7ea7ce8e8e8062e3d85
Online Test Script 2.0.7 SQL Injection
Posted Feb 7, 2018
Authored by Borna Nematzadeh

Online Test Script version 2.0.7 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 06ba3c5e5e249db267655e898dca94b8
Hot Script Clone Script Classified 3.1 Cross Site Scripting
Posted Feb 7, 2018
Authored by Prasenjit Kanti Paul

Hot Scripts Clone Script Classified version 3.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | a041aeacf9423ca61e1f086662e0a272
MalwareFox AntiMalware 2.74.0.150 Privilege Escalation
Posted Feb 7, 2018
Authored by Souhail Hammou

MalwareFox AntiMalware version 2.74.0.150 suffers from a local privilege escalation vulnerability.

tags | exploit, local
advisories | CVE-2018-6606
MD5 | 498a3b3acaf5c7ca458b06dc7061d0dc
Ubuntu Security Notice USN-3559-1
Posted Feb 7, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3559-1 - It was discovered that Django incorrectly handled certain requests. An attacker could possibly use this to access sensitive information.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2017-12794, CVE-2018-6188
MD5 | cb82ff129fab8d9680f8acfa90d02ff4
Multilanguage Real Estate MLM Script 3.0 Cross Site Scripting
Posted Feb 7, 2018
Authored by Prasenjit Kanti Paul

Multilanguage Real Estate MLM Script versions 3.0 and below suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 58cfbb53e0c63a3e0ec9b90184ede422
Entrepreneur Dating Script 2.0.2 SQL Injection
Posted Feb 7, 2018
Authored by Borna Nematzadeh

Entrepreneur Dating Script version 2.0.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 37b651d336e329ba123f9e285d8625d7
Debian Security Advisory 4105-1
Posted Feb 7, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4105-1 - It was discovered that mpv, a media player, was vulnerable to remote code execution attacks. An attacker could craft a malicious web page that, when used as an argument in mpv, could execute arbitrary code in the host of the mpv user.

tags | advisory, remote, web, arbitrary, code execution
systems | linux, debian
advisories | CVE-2018-6360
MD5 | bfcbda579d18140ffb85913b522a3969
Naukri Clone Script 3.0.3 Cross Site Scripting
Posted Feb 7, 2018
Authored by Prasenjit Kanti Paul

Naukri Clone Script version 3.0.3 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | f1faa57359eb7ec694e20a88a1929b80
PHP Scripts Mall Doctor Search Script 1.0.2 Cross Site Scripting
Posted Feb 7, 2018
Authored by Prasenjit Kanti Paul

PHP Scripts Mall Doctor Search Script version 1.0.2 suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
advisories | CVE-2018-6655
MD5 | be08ecb0a94b7c67c36583ccda5fc834
Adobe Coldfusion 11.0.03.292866 Remote Code Execution
Posted Feb 7, 2018
Authored by Faisal Tameesh

Adobe Coldfusion version 11.0.03.292866 BlazeDS java object deserialization remote code execution exploit.

tags | exploit, java, remote, code execution
advisories | CVE-2017-3066
MD5 | 46942c29e2b6e97ace05a01a10b9e844
Geovision Inc. IP Camera / Video Server Remote Command Execution
Posted Feb 7, 2018
Authored by bashis

Geovision Inc. IP Camera and Video Server remote command execution proof of concept exploit.

tags | exploit, remote, proof of concept
MD5 | 420b8077a65259982e45e68c08322a8e
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

June 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    14 Files
  • 2
    Jun 2nd
    1 Files
  • 3
    Jun 3rd
    3 Files
  • 4
    Jun 4th
    18 Files
  • 5
    Jun 5th
    21 Files
  • 6
    Jun 6th
    8 Files
  • 7
    Jun 7th
    16 Files
  • 8
    Jun 8th
    18 Files
  • 9
    Jun 9th
    5 Files
  • 10
    Jun 10th
    2 Files
  • 11
    Jun 11th
    21 Files
  • 12
    Jun 12th
    32 Files
  • 13
    Jun 13th
    15 Files
  • 14
    Jun 14th
    16 Files
  • 15
    Jun 15th
    4 Files
  • 16
    Jun 16th
    1 Files
  • 17
    Jun 17th
    2 Files
  • 18
    Jun 18th
    15 Files
  • 19
    Jun 19th
    15 Files
  • 20
    Jun 20th
    15 Files
  • 21
    Jun 21st
    15 Files
  • 22
    Jun 22nd
    7 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close