Twenty Year Anniversary
Showing 1 - 23 of 23 RSS Feed

Files Date: 2018-03-06

Red Hat Security Advisory 2018-0418-01
Posted Mar 6, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0418-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. Security Fix: libreoffice: Remote arbitrary file disclosure vulnerability via WEBSERVICE formula.

tags | advisory, remote, arbitrary
systems | linux, redhat
advisories | CVE-2018-6871
MD5 | ea30b40693de01b892fd550051d72ceb
Red Hat Security Advisory 2018-0412-01
Posted Mar 6, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0412-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix: Kernel: KVM: MMU potential stack buffer overrun during page walks Kernel: KVM: debug exception via syscall emulation.

tags | advisory, overflow, kernel
systems | linux, redhat
advisories | CVE-2017-12188, CVE-2017-7518
MD5 | 5cff55ee965eef1b0c9f86b703dd9ec9
Gentoo Linux Security Advisory 201803-01
Posted Mar 6, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201803-1 - Multiple vulnerabilities have been found in Exim, the worst of which allows remote attackers to execute arbitrary code. Versions less than 4.90.1 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-16943, CVE-2017-16944, CVE-2018-6789
MD5 | b820d6c0688dc3641432309326abc2d5
Ubuntu Security Notice USN-3591-1
Posted Mar 6, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3591-1 - James Davis discovered that Django incorrectly handled certain template filters. A remote attacker could possibly use this issue to cause Django to consume resources, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-7536, CVE-2018-7537
MD5 | 3b9c5f6dfb0058d9e800a5339c271172
Magento Product Attributes Cross Site Scripting
Posted Mar 6, 2018
Authored by DefenseCode, Bosko Stankovic

Magento suffers from product attribute information related cross site scripting vulnerabilities. Versions affected include Magento 2.0 prior to 2.0.18, Magento 2.1 prior to 2.1.12, and Magento 2.2 prior to 2.2.3.

tags | exploit, vulnerability, xss
MD5 | d73101b6b0b0b0f02a6ec88ff295af50
Magento Downloadable Products Cross Site Scripting
Posted Mar 6, 2018
Authored by DefenseCode, Bosko Stankovic

Magento suffers from downloadable product information related cross site scripting vulnerabilities. Versions affected include Magento 2.0 prior to 2.0.18, Magento 2.1 prior to 2.1.12, and Magento 2.2 prior to 2.2.3.

tags | exploit, vulnerability, xss
MD5 | f77d1da16377bd36480710245f667fb2
Magento Backups Cross Site Request Forgery
Posted Mar 6, 2018
Authored by DefenseCode, Bosko Stankovic

Magento Backups suffer from a cross site request forgery vulnerability. Versions affected include Magento Open Source prior to 1.9.3.8, Magento Commerce prior to 1.14.3.8, Magento 2.0 prior to 2.0.18, Magento 2.1 prior to 2.1.12, and Magento 2.2 prior to 2.2.3.

tags | exploit, csrf
MD5 | 0adaddcd0d7b534ec114223d7660feb1
Ubuntu Security Notice USN-3590-1
Posted Mar 6, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3590-1 - It was discovered that Irssi incorrectly handled certain empty nick names. An attacker could possibly use this issue to cause a denial of service. It was discovered that Irssi incorrectly handled certain nick names. An attacker could possibly use this to access sensitive information. It was discovered that Irssi incorrectly handled an increase in the number of windows. An attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service
systems | linux, windows, ubuntu
advisories | CVE-2018-7050, CVE-2018-7051, CVE-2018-7052, CVE-2018-7053, CVE-2018-7054, CVE-2018-7073
MD5 | e0c5ff89c4f84881bb1572d2af1b6fb0
Red Hat Security Advisory 2018-0414-01
Posted Mar 6, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0414-01 - 389 Directory Server is an LDAP version 3 compliant server. The base packages include the Lightweight Directory Access Protocol server and command-line utilities for server administration. Security Fix: 389-ds-base: remote Denial of Service via search filters in SetUnicodeStringFromUTF_8 in collate.c 389-ds-base: Authentication bypass due to lack of size check in slapi_ct_memcmp function in ch_malloc.c.

tags | advisory, remote, denial of service, protocol
systems | linux, redhat
advisories | CVE-2017-15135, CVE-2018-1054
MD5 | 6911139227365a53604641748be0ba4f
Red Hat Security Advisory 2018-0395-01
Posted Mar 6, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0395-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. These updated kernel packages include several security issues and numerous bug fixes.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2017-12188, CVE-2017-7518
MD5 | 41e50ef3330387866192c9597bea17a4
Magento User Info Cross Site Scripting
Posted Mar 6, 2018
Authored by DefenseCode, Bosko Stankovic

Magento suffers from user information related cross site scripting vulnerabilities. Versions affected include Magento 2.0 prior to 2.0.18, Magento 2.1 prior to 2.1.12, and Magento 2.2 prior to 2.2.3.

tags | exploit, vulnerability, xss
MD5 | 91c1b88ab3d81c67800e22cebc73902e
Ubuntu Security Notice USN-3589-1
Posted Mar 6, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3589-1 - It was discovered that PostgreSQL incorrectly handled certain settings. An attacker could possibly use this issue to execute arbitrary code.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-1058
MD5 | 0cef11fdda45f03f87b567c75798d536
Ubuntu Security Notice USN-3585-1
Posted Mar 6, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3585-1 - It was discovered that Twisted incorrectly handled certain HTTP requests. An attacker could possibly use this issue to execute arbitrary code.

tags | advisory, web, arbitrary
systems | linux, ubuntu
advisories | CVE-2016-1000111
MD5 | c02c2eb4af6d3b3cf46f73399bb48fb1
RSA Identity Governance And Lifecycle Privilege Escalation
Posted Mar 6, 2018
Site emc.com

RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance, and RSA IMG contain fixes for a privilege escalation vulnerability that could potentially be exploited by malicious users to compromise an affected system. Affected includes RSA Identity Governance and Lifecycle versions 7.0.1, 7.0.2, all patch levels (hardware appliance and software bundle deployments only), RSA Via Lifecycle and Governance version 7.0, all patch levels (hardware appliance and software bundle deployments only), and RSA Identity Management and Governance (RSA IMG) versions 6.9.0, 6.9.1, all patch levels (hardware appliance and software bundle deployments only).

tags | advisory
advisories | CVE-2018-1182
MD5 | 78391bdefc567e891a413199dade3a30
RSA Archer GRC Platform User Enumeration / Open Redirect
Posted Mar 6, 2018
Authored by Erlend Leiknes | Site emc.com

RSA Archer GRC Platform versions prior to 6.2.0.8 suffer from user enumeration and open redirection vulnerabilities.

tags | advisory, vulnerability
advisories | CVE-2018-1219, CVE-2018-1220
MD5 | eee43858b145dc0081074a9039017d31
Debian Security Advisory 4132-1
Posted Mar 6, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4132-1 - It was discovered that incorrect validation of frame widths in the libvpx multimedia library may result in denial of service and potentially the execution of arbitrary code.

tags | advisory, denial of service, arbitrary
systems | linux, debian
advisories | CVE-2017-13194
MD5 | 9a914de209fdf762d01a1a2766d068ca
Red Hat Security Advisory 2018-0406-01
Posted Mar 6, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0406-01 - PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix: php: Buffer over-read from uninitialized data in gdImageCreateFromGifCtx function.

tags | advisory, web, php
systems | linux, redhat
advisories | CVE-2017-7890
MD5 | 5a4ffbd2634a1a77f6456bcc55e8be27
Red Hat Security Advisory 2018-0399-01
Posted Mar 6, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0399-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: kernel: Use-after-free vulnerability in DCCP socket.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2017-8824
MD5 | f9502457cf5b6391e31bdf202cca84dd
Dup Scout Enterprise 10.5.12 Share Username Buffer Overflow
Posted Mar 6, 2018
Authored by bzyo

Dup Scout Enterprise version 10.5.12 suffers from a share username local buffer overflow vulnerability.

tags | exploit, overflow, local
MD5 | c1f9273e8568edb503dbf1133637a46c
Memcached memcrashed Denial Of Service
Posted Mar 6, 2018
Authored by Alex Conrey

This is a proof of concept exploit for the memcached denial of service vulnerability.

tags | exploit, denial of service, proof of concept
MD5 | 2b76cf893e1e529dcdcc9dfd0e852de4
Xion 1.0.125 Buffer Overflow
Posted Mar 6, 2018
Authored by James Anderson

Xion version 1.0.125 .m3u file local SEH-based unicode buffer overflow exploit.

tags | exploit, overflow, local
MD5 | 14739b703be3b3ebe7e0e6a065133dc2
Bravo Tejari Web Portal Cross Site Scripting
Posted Mar 6, 2018
Authored by Arvind V.

Bravo Tejari Web Portal suffers from a cross site request forgery vulnerability.

tags | exploit, web, csrf
advisories | CVE-2018-7216
MD5 | 7ecca80a8288e258acba28bb0e281483
Rapid Scada 5.5.0 Insecure Permissions
Posted Mar 6, 2018
Authored by Felipe Xavier Oliveira

Rapid Scada version 5.5.0 suffers from an insecure permission vulnerability.

tags | exploit
advisories | CVE-2018-5313
MD5 | c81b2a59f24e59822c91601bace1421d
Page 1 of 1
Back1Next

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    45 Files
  • 16
    Nov 16th
    11 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close