Twenty Year Anniversary
Showing 1 - 20 of 20 RSS Feed

Files Date: 2018-04-17

Drupalgeddon2 Drupal Remote Code Execution
Posted Apr 17, 2018
Authored by Vitalii Rudnykh, Hans Topo, Jose Ignacio Rojo | Site metasploit.com

Drupal versions before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

tags | exploit, remote, arbitrary
advisories | CVE-2018-7600
MD5 | 66382ddb8e7fd5b87644e31931eae7f4
Microsoft Edge OpenProcess() ACG Bypass
Posted Apr 17, 2018
Authored by Ivan Fratric, Google Security Research

Microsoft Edge suffers from an ACG bypass vulnerability with OpenProcess().

tags | exploit, bypass
MD5 | 0872aa70743c4a85442779d23b9462d1
Microsoft Windows Kernel nt!NtQueryVirtualMemory Stack Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in nt!NtQueryVirtualMemory (MemoryImageInformation).

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0968
MD5 | d945b68fdd1c9e8436634fd2987bc3c8
Microsoft Windows Kernel nt!NtQueryVirtualMemory Stack Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in nt!NtQueryVirtualMemory (Memory(Privileged)BasicInformation).

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0974
MD5 | 86867b4c99f8622edfa1f1524af90f0f
Microsoft Windows Kernel nt!NtQueryInformationProcess Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit pool / stack memory disclosure vulnerability in nt!NtQueryInformationProcess (ProcessImageFileName).

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0973
MD5 | df5a55deeaf075ec47d80a3863ce2a4b
Microsoft Windows Kernel nt!NtQueryInformationTransactionManager Pool Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a pool memory disclosure vulnerability in nt!NtQueryInformationTransactionManager (TransactionManagerRecoveryInformation).

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0972
MD5 | 0c23649c7eecdc1126d54237634aa782
Microsoft Windows Kernel nt!NtQuerySystemInformation Stack Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in nt!NtQuerySystemInformation (SystemPageFileInformation(Ex)).

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0971
MD5 | 076794ccd2fb215a95924c9dc5b1883f
Microsoft Windows Kernel nt!NtQueryVolumeInformationFile Stack Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryVolumeInformationFile.

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0970
MD5 | bffef04b79c69684d6401043c15978e2
Microsoft Windows Kernel nt!NtQueryAttributesFile Stack Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryAttributesFile.

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0969
MD5 | c2731a6f484ca280626d987eeb7a3807
Microsoft Windows Kernel nt!NtQueryFullAttributesFile Stack Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryFullAttributesFile.

tags | exploit, kernel
systems | windows
advisories | CVE-2018-0975
MD5 | 6d84610a89094cd36dc7885b78e328f8
Microsoft Windows CiSetFileCache TOCTOU Incomplete Fix
Posted Apr 17, 2018
Authored by James Forshaw, Google Security Research

The fix for CVE-2017-11830 is insufficient to prevent a normal user application adding a cached signing level to an unsigned file by exploiting a TOCTOU in CI leading to circumventing Device Guard policies.

tags | exploit
advisories | CVE-2017-11830, CVE-2018-0966
MD5 | dd01efee7f81b595a28eb0762c87ef42
Microsoft Compiler mspdbcore.dll Heap Memory Disclosure
Posted Apr 17, 2018
Authored by Google Security Research, mjurczyk

The Microsoft compiler mspdbcore.dll suffers from a heap memory disclosure into output .pdb files. This affects Microsoft Symbol Server.

tags | advisory
advisories | CVE-2018-1037
MD5 | 6b5273f7ccafef878397085ccbc182dd
Debian Security Advisory 4174-1
Posted Apr 17, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4174-1 - The Citrix Security Response Team discovered that corosync, a cluster engine implementation, allowed an unauthenticated user to cause a denial-of-service by application crash.

tags | advisory
systems | linux, debian
advisories | CVE-2018-1084
MD5 | 5f23ac7a5ba39628411e6ab62fdeb422
Facebook Graph Phone Number Metadata Crosswalk Mapping Proof Of Concept
Posted Apr 17, 2018
Authored by Todor Donev

This script is a proof of concept that lets you map out data from the Facebook Graph using a phone number.

tags | exploit, proof of concept
MD5 | 28accc5166d1544ceb05391fe341eb61
Facebook Graph Metadata Crosswalk Mapping Proof Of Concept
Posted Apr 17, 2018
Authored by Todor Donev

This script is a proof of concept that lets you map out data from the Facebook Graph.

tags | exploit, proof of concept
MD5 | ebd6f3ff9190c14f3543fce6a999a667
DotNetNuke 7.2.8 CATALooKStore Cross Site Scripting
Posted Apr 17, 2018
Authored by Mostafa Gharzi

DotNetNuke versions 7.2.8 and below suffers from a cross site scripting vulnerability in CATALooKStore.

tags | exploit, xss
advisories | CVE-2018-10138
MD5 | 9db92670a9189bf3cbb96921567733bb
D-Link DIR-615 Cross Site Scripting
Posted Apr 17, 2018
Authored by Sayan Chatterjee

The D-Link DIR-615 wireless router suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-10110
MD5 | a785f9d9cbc8c0285feb15117ea61f16
FromDocToPdf Browser History Disclosure
Posted Apr 17, 2018
Authored by Tavis Ormandy, Google Security Research

FromDocToPdf exposes browsing history to all websites.

tags | advisory
MD5 | a8432820a6f1a3e3079881f89fa100f9
Brave Browser window.close(self) Denial Of Service
Posted Apr 17, 2018
Authored by Sahil Tikoo

Brave Browser versions prior to 0.13.0 suffer from a window.close(self) denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2016-10718
MD5 | 3eed1eeba32384364773ad5a2db4c9fe
Brave Browser Long Argument Denial Of Service
Posted Apr 17, 2018
Authored by Sahil Tikoo

Brave Browser versions prior to 0.13.0 suffer from a long alert() argument denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2017-18256
MD5 | 0a5426b0e65c756bf27bbb59b1b15627
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

August 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    19 Files
  • 2
    Aug 2nd
    17 Files
  • 3
    Aug 3rd
    16 Files
  • 4
    Aug 4th
    1 Files
  • 5
    Aug 5th
    1 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    15 Files
  • 8
    Aug 8th
    9 Files
  • 9
    Aug 9th
    7 Files
  • 10
    Aug 10th
    10 Files
  • 11
    Aug 11th
    1 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    14 Files
  • 14
    Aug 14th
    18 Files
  • 15
    Aug 15th
    38 Files
  • 16
    Aug 16th
    16 Files
  • 17
    Aug 17th
    22 Files
  • 18
    Aug 18th
    3 Files
  • 19
    Aug 19th
    3 Files
  • 20
    Aug 20th
    21 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close