Twenty Year Anniversary
Showing 1 - 20 of 20 RSS Feed

Files Date: 2018-03-21

Open-AuditIT Professional 2.1 Cross Site Request Forgery
Posted Mar 21, 2018
Authored by Nilesh Sapariya

Open-AuditIT Professional version 2.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-8979
MD5 | 8055e3fa00521f7aac13c7d3cff948f1
Ledger MCU Backdoor
Posted Mar 21, 2018
Authored by Saleem Rashid | Site saleemrashid.com

Proof-of-concept exploit for the Ledger Nano S that hides the non-genuine user interface confirmation. Intentionally unreliable to avoid weaponization. It should be trivial to adapt to the Ledger Blue.

tags | exploit
MD5 | 7095af98346e657b83ad1da5eebd39bf
Nmap Port Scanner 7.70
Posted Mar 21, 2018
Authored by Fyodor | Site insecure.org

Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.

Changes: Integrated 728 service/version detection fingerprints. Integrated 667 IPv4 OS fingerprint submissions. Integrated 33 IPv6 OS fingerprint submissions. Added 9 NSE scripts. Various other updates and fixes.
tags | tool, remote, udp, tcp, protocol, nmap
systems | unix
MD5 | 0003e4361ea844a40496678c8e58b1c2
Microsoft Windows Kernel win32kbase!CoreMessagingK Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in the win32kbase!CoreMessagingK interface.

tags | advisory, kernel
systems | windows
advisories | CVE-2018-0926
MD5 | b4af3ca3b1834c222727f776e825c122
Microsoft Windows Desktop Bridge Privilege Escalation
Posted Mar 21, 2018
Authored by James Forshaw, Google Security Research

Microsoft Windows suffers from a Desktop Bridge Virtual Registry NtLoadKey arbitrary file read / write privilege escalation vulnerability.

tags | exploit, arbitrary, registry
systems | windows
advisories | CVE-2018-0882
MD5 | df20338cea8e10f24722840588aeb572
Microsoft Windows Desktop Bridge Privilege Escalation
Posted Mar 21, 2018
Authored by James Forshaw, Google Security Research

Microsoft Windows suffers from a Desktop Bridge Virtual Registry arbitrary file read / write privilege escalation vulnerability.

tags | exploit, arbitrary, registry
systems | windows
advisories | CVE-2018-0880
MD5 | 36bac421e1beb393d9761eff962189a2
Google Software Updater Local Privilege Escalation
Posted Mar 21, 2018
Authored by Google Security Research, ianbeer

Google software updater suffers from a local privilege escalation vulnerability on MacOS due to unsafe use of Distributed Objects.

tags | exploit, local
advisories | CVE-2018-6084
MD5 | f4d7f01c4f93843dc53c45e1355f3101
Microsoft Windows Kernel nt!NtWaitForDebugEvent Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in nt!NtWaitForDebugEvent.

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0901
MD5 | bce0b88f358da37061adac4bf454354e
Microsoft Windows Kernel win32k!XDCOBJ::RestoreAttributes Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in win32k!XDCOBJ::RestoreAttributes.

tags | advisory, kernel
systems | windows
advisories | CVE-2018-0811
MD5 | d9cbf0e5276819287a794b3bd2639bca
Microsoft Windows Kernel win32k!UMPDOBJ::LockSurface Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in win32k!UMPDOBJ::LockSurface.

tags | advisory, kernel
systems | windows
advisories | CVE-2018-0813
MD5 | f4417022fdcd2d49b4249a164f5dd3fa
Microsoft Windows Kernel win32k!PROXYPORT::SendRequest Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in win32k!PROXYPORT::SendRequest.

tags | advisory, kernel
systems | windows
advisories | CVE-2018-0814
MD5 | c4d2ec2f03999cf0e9586f23b01f54a9
Microsoft Windows Kernel REG_RESOURCE_REQUIREMENTS_LIST Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_REQUIREMENTS_LIST registry values.

tags | advisory, kernel, registry
systems | windows
advisories | CVE-2018-0900
MD5 | 2105a0202148dd8d1c7d110f3ebe6dc8
Microsoft Windows Kernel REG_RESOURCE_LIST Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_LIST registry values (videoprt.sys descriptors).

tags | advisory, kernel, registry
systems | windows
advisories | CVE-2018-0899
MD5 | a3291f506262cdeab2f6590a2c2a2c56
Microsoft Windows Kernel REG_RESOURCE_LIST Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_LIST registry values (CmResourceTypeDevicePrivate entries).

tags | advisory, kernel, registry
systems | windows
advisories | CVE-2018-0898
MD5 | ed32c0fa3b9a152d5de55a21b3957fdd
Microsoft Windows Kernel nt!KiDispatchException Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!KiDispatchException.

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0897
MD5 | cbcf89fc2aa7997ca8c8aa329de96e64
Microsoft Windows Kernel msrpc!LRPC_CASSOCIATION::AlpcSendCancelMessage Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in msrpc!LRPC_CASSOCIATION::AlpcSendCancelMessage.

tags | advisory, kernel
systems | windows
advisories | CVE-2018-0896
MD5 | a3019927b362555cf6724e71c06a0e35
Microsoft Windows Kernel NtQueryInformationThread(ThreadBasicInformation) Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in NtQueryInformationThread(ThreadBasicInformation).

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0895
MD5 | aec9ca1968214b0e3bca89220158b22c
Microsoft Internet Explorer 11 RegExp.lastMatch Memory Disclosure
Posted Mar 21, 2018
Authored by Ivan Fratric, Google Security Research

Microsoft Internet Explorer 11 suffers from a RegExp.lastMatch memory disclosure vulnerability.

tags | exploit
advisories | CVE-2018-0891
MD5 | 0bbddb1e1bbe894461a1ab5b58369ce0
Microsoft Windows Kernel NtQueryVirtualMemory(MemoryMappedFilenameInformation) Memory Disclosure
Posted Mar 21, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Window kernel suffers from a 64-bit pool memory disclosure vulnerability in NtQueryVirtualMemory(MemoryMappedFilenameInformation).

tags | exploit, kernel
advisories | CVE-2018-0894
MD5 | d0aa36a63655006696b53b7a5b2d5cae
Microsoft Windows Desktop Bridge VFS Privilege Escalation
Posted Mar 21, 2018
Authored by James Forshaw, Google Security Research

The handling of the VFS for desktop bridge applications can allow an application to create virtual files in system folder which can result in elevation of privilege.

tags | exploit
advisories | CVE-2018-0877
MD5 | c02453b895ec3d0d5a6aa14ceccfcd6a
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

June 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    14 Files
  • 2
    Jun 2nd
    1 Files
  • 3
    Jun 3rd
    3 Files
  • 4
    Jun 4th
    18 Files
  • 5
    Jun 5th
    21 Files
  • 6
    Jun 6th
    9 Files
  • 7
    Jun 7th
    16 Files
  • 8
    Jun 8th
    18 Files
  • 9
    Jun 9th
    5 Files
  • 10
    Jun 10th
    2 Files
  • 11
    Jun 11th
    21 Files
  • 12
    Jun 12th
    34 Files
  • 13
    Jun 13th
    15 Files
  • 14
    Jun 14th
    16 Files
  • 15
    Jun 15th
    4 Files
  • 16
    Jun 16th
    1 Files
  • 17
    Jun 17th
    2 Files
  • 18
    Jun 18th
    13 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close