Debian Linux Security Advisory 4154-1 - A heap corruption vulnerability was discovered in net-snmp, a suite of Simple Network Management Protocol applications, triggered when parsing the PDU prior to the authentication process. A remote, unauthenticated attacker can take advantage of this flaw to crash the snmpd process (causing a denial of service) or, potentially, execute arbitrary code with the privileges of the user running snmpd.
da63ee7b3cb55c040eac4a016689e8e2Whitepaper called DOSfuscation: Exploring the Depths of CMD.exe Obfuscation and Detection Techniques.
05765d8898bdc6d4c8c67776e3d9465bGentoo Linux Security Advisory 201803-14 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could lead to the execution of arbitrary code. Versions less than 52.6.0 are affected.
5ddbc925dbf0c2c815795cce8d5692dcUbuntu Security Notice 3608-1 - Richard Maciel Costa discovered that Zsh incorrectly handled certain inputs. An attacker could possibly use this to cause a denial of service. It was discovered that Zsh incorrectly handled certain files. An attacker could possibly use this to execute arbitrary code.
b98b78ad65c29adcbcbe655c46243822Ubuntu Security Notice 3609-1 - A use-after-free was discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service or execute arbitrary code.
46c01e1ece4bff17fe12f4d28a985f99Ubuntu Security Notice 3610-1 - It was discovered that ICU incorrectly handled certain calendars. If an application using ICU processed crafted data, a remote attacker could possibly cause it to crash, leading to a denial of service.
36668e9a0dbdc96fdaa12fe4a73e3cc0Microsoft Windows Remote Assistance suffers from an XML external entity injection vulnerability.
cb3025652af207020bf6755d7274530eMicrosoft Exchange suffers from an open redirect vulnerability.
50d79a092d794c779a0fa7f12fdb4853RSA Authentication Agent for Web for both IIS and Apache Web Server version 8.0. 1 and earlier contain multiple vulnerabilities that could potentially be exploit ed by malicious users to compromise affected systems. These issues include cross site scripting, buffer overflow, and information disclosure.
cb74fb03e40e4c091cc179f2f257acbdDebian Linux Security Advisory 4153-1 - It was discovered that a use-after-free in the compositor of Firefox can result in the execution of arbitrary code.
be410d856ff58899e89127536e8efaf2ManageEngine Service Desk Plus versions prior to 9403 suffer from a cross site scripting vulnerability.
064eb3d5851a1d2c6236211e0bbb1512Debian Linux Security Advisory 4152-1 - Two vulnerabilities were discovered in MuPDF, a PDF, XPS, and e-book viewer, which may result in denial of service or remote code execution. An attacker can craft a PDF document which, when opened in the victim host, might consume vast amounts of memory, crash the program, or, in some cases, execute code in the context in which the application is running.
612aecfb7e7d14f07f6a2298f6f1fc5bMicrosoft Skype Mobile versions 8.12 and 8.13 suffer from a denial of service vulnerability.
804427aae070d66d792d02e1b26d28eeSandoba CP:Shop CMS version 2016.1 suffers from multiple cross site scripting vulnerabilities.
7da291ebd7b85fde9e3c71ed6d906f6fTestLink Open Source Test Management versions prior to 1.9.16 remote proof of concept code execution exploit.
f90fdf250474d1a15abda8d3c859b51eOpen-AuditIT Professional version 2.1 suffers from a persistent cross site scripting vulnerability.
48520446176bcd189dbf0f51e5f0e3e9
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed