Twenty Year Anniversary
Showing 1 - 14 of 14 RSS Feed

Files Date: 2018-03-01

HPE System Management 7.6.0.11 Cross Site Scripting
Posted Mar 1, 2018
Authored by Jacobo Avariento, Abelardo Suira

HPE System Management versions 7.6.0.11 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-12544
MD5 | e422c7d980bf2adb577f62cec6238d07
Clam AntiVirus Toolkit 0.99.4
Posted Mar 1, 2018
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: Security patch release.
tags | tool, virus
systems | unix
MD5 | b9359b90086948b3c4eb97c84cf4b400
Slackware Security Advisory - ntp Updates
Posted Mar 1, 2018
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New ntp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.

tags | advisory
systems | linux, slackware
advisories | CVE-2016-1549, CVE-2018-7170, CVE-2018-7182, CVE-2018-7184, CVE-2018-7185
MD5 | 693c481e8bf11a4bfd87dbebee092f80
Slackware Security Advisory - dhcp Updates
Posted Mar 1, 2018
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New dhcp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues.

tags | advisory
systems | linux, slackware
advisories | CVE-2018-5732, CVE-2018-5733
MD5 | 1ac718cf67f39c9e7d505db208a9a244
HP Security Bulletin MFSBGN03801 1
Posted Mar 1, 2018
Authored by HP | Site hp.com

HP Security Bulletin MFSBGN03801 1 - A potential security vulnerability has been identified in Micro Focus Operations Orchestration. The vulnerability could be remotely exploited to allow Denial of Service (DoS). Revision 1 of this advisory.

tags | advisory, denial of service
advisories | CVE-2018-6490
MD5 | f4d5a7e83f3a98c174aa5340880e0836
Ubuntu Security Notice USN-3586-1
Posted Mar 1, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3586-1 - Konstantin Orekhov discovered that the DHCP server incorrectly handled a large number of concurrent TCP sessions. A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. It was discovered that the DHCP server incorrectly handled socket descriptors. A remote attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, tcp
systems | linux, ubuntu
advisories | CVE-2016-2774, CVE-2017-3144, CVE-2018-5732, CVE-2018-5733
MD5 | 08aea38d77f392f613434bd52973ae94
Red Hat Security Advisory 2018-0380-01
Posted Mar 1, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0380-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web application development. Action Pack implements the controller and the view components. Security Fix: A flaw was found in CloudForms in the self-service UI snapshot feature where the name field is not properly sanitized for HTML and JavaScript input. An attacker could use this flaw to execute a stored XSS attack on an application administrator using CloudForms. Please note that CSP prevents exploitation of this XSS however not all browsers support CSP.

tags | advisory, web, javascript, ruby
systems | linux, redhat
advisories | CVE-2017-15125
MD5 | c2fb88600f9209d507f9f5e45b216333
Red Hat Security Advisory 2018-0379-01
Posted Mar 1, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0379-01 - .NET Core is a managed software framework. It implements a subset of the .NET framework APIs and includes a CLR implementation. New versions of .NET Core that address several security vulnerabilities are now available. The updated versions are .NET Core 1.0.9, 1.1.6, and 2.0.5. Security Fix: .NET Core: Improper processing of XML documents can cause a denial of service

tags | advisory, denial of service, vulnerability
systems | linux, redhat
advisories | CVE-2018-0764
MD5 | 2854af1bf8b372d6021015c9ba17cf12
HP Security Bulletin MFSBGN03794 2
Posted Mar 1, 2018
Authored by HP | Site hp.com

HP Security Bulletin MFSBGN03794 2 - A potential security vulnerabilities has been identified in Micro Focus Operations Agent. The vulnerabilities could be remotely exploited to Remote Disclosure of Information. At this time Micro Focus Alarm Manager uses a vulnerable encryption infrastructure. Revision 2 of this advisory.

tags | advisory, remote, vulnerability
advisories | CVE-2016-6329
MD5 | afc9e132384c032fbf6de68ca14bef89
Segger embOS/IP FTP Server 3.22 Denial Of Service
Posted Mar 1, 2018
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Segger embOS/IP FTP Server version 3.22 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2018-7449
MD5 | 674d6ed13de3b9db5b5f2c11ee037041
Linux Kernel _sctp_make_chunk() Denial Of Service
Posted Mar 1, 2018
Authored by Jakub Jirasek | Site secunia.com

Secunia Research has discovered a vulnerability in Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service). An error in the "_sctp_make_chunk()" function (net/sctp/sm_make_chunk.c) when handling SCTP packets length can be exploited to cause a kernel crash. The vulnerability is confirmed in versions 4.15.0-r7 and 4.15.0. Other versions may also be affected.

tags | advisory, denial of service, kernel, local
systems | linux
advisories | CVE-2018-5803
MD5 | 032813c00d31d2638e48345378f9298a
Packet Storm New Exploits For February, 2018
Posted Mar 1, 2018
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 235 exploits added to Packet Storm in February, 2018.

tags | exploit
MD5 | 63b5cc8688007ab3952599fbae46d64b
Stegano 0.8.4
Posted Mar 1, 2018
Authored by Cedric Bonhomme | Site github.com

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit (LSB) technique. It is possible to use a more advanced LSB method based on integers sets. The sets (Sieve of Eratosthenes, Fermat, Carmichael numbers, etc.) are used to select the pixels used to hide the information.

Changes: Stegano is ready for use with pipenv and pipsi.
tags | tool, encryption, steganography, python
systems | unix
MD5 | 475a04fb3bdf385068a894e089fab494
Ubuntu Security Notice USN-3579-2
Posted Mar 1, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3579-2 - USN-3579-1 fixed a vulnerability in LibreOffice. After upgrading, it was no longer possible for LibreOffice to open documents from certain locations outside of the user's home directory. This update fixes the problem. Various other issues were also addressed.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2018-6871
MD5 | 8a42aae30bcbf0da415b74ba22ff5725
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

April 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    5 Files
  • 2
    Apr 2nd
    17 Files
  • 3
    Apr 3rd
    11 Files
  • 4
    Apr 4th
    21 Files
  • 5
    Apr 5th
    17 Files
  • 6
    Apr 6th
    12 Files
  • 7
    Apr 7th
    1 Files
  • 8
    Apr 8th
    6 Files
  • 9
    Apr 9th
    21 Files
  • 10
    Apr 10th
    18 Files
  • 11
    Apr 11th
    42 Files
  • 12
    Apr 12th
    7 Files
  • 13
    Apr 13th
    14 Files
  • 14
    Apr 14th
    1 Files
  • 15
    Apr 15th
    1 Files
  • 16
    Apr 16th
    15 Files
  • 17
    Apr 17th
    20 Files
  • 18
    Apr 18th
    24 Files
  • 19
    Apr 19th
    20 Files
  • 20
    Apr 20th
    7 Files
  • 21
    Apr 21st
    10 Files
  • 22
    Apr 22nd
    2 Files
  • 23
    Apr 23rd
    17 Files
  • 24
    Apr 24th
    24 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close