what you don't know can hurt you
Showing 1 - 16 of 16 RSS Feed

Files Date: 2018-07-24

libpcap 1.9.0
Posted Jul 24, 2018
Site tcpdump.org

Libpcap is a portable packet capture library which is used in many packet sniffers, including tcpdump.

Changes: Added testing system to libpcap, independent of tcpdump. Changes to how pcap_t is activated. Adding support for Large stream buffers on Endace DAG cards. Changes to BSD 3-clause license to 2-clause licence. Additions to TCP header parsing, per RFC3168. Dozens of other changes and improvements.
tags | library
systems | unix
MD5 | dffd65cb14406ab9841f421732eb0f33
Microsoft Windows Kernel Malformed GPOS Table Buffer Overflow
Posted Jul 24, 2018
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from an OTF font processing pool-based buffer overflow via a malformed GPOS table in ATMFD.DLL.

tags | exploit, overflow, kernel
systems | windows
advisories | CVE-2015-2426
MD5 | 6b9f72a57dc4ca122f172caf45951a31
GeoVision GV-SNVR0811 Directory Traversal
Posted Jul 24, 2018
Authored by Berk Dusunur

GeoVision GV-SNVR0811 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 04dc2a853d110088a9e5b47a3f220a12
NUUO NVRmini upgrade_handle.php Remote Command Execution
Posted Jul 24, 2018
Authored by Berk Dusunur

NUUO NVRmini suffers from a remote command execution vulnerability in upgrade_handle.php.

tags | exploit, remote, php
MD5 | 929ca4e4e4ddf2ac4f48d2373e20ba9b
iSecCon 2018 Call For Papers
Posted Jul 24, 2018
Authored by Intel Conference Support | Site easychair.org

Intel Security Conference (iSecCon) 2018 has announced its call for papers. It will take place in Hillsboro, Oregon, USA from December 4th through the 5th, 2018.

tags | paper, conference
MD5 | 5ce9d4c5c0fbe27b98c20f14709b11e6
Sourcetree Remote Code Execution
Posted Jul 24, 2018
Authored by Etienne Stalmans, Terry Zhang | Site atlassian.com

Sourcetree suffers from multiple remote code execution vulnerabilities related to git submodules and argument injection. macOS versions 1.0b2 up to 2.7.6 and Windows versions 0.5.1.0 up to 2.6.10 are affected.

tags | advisory, remote, vulnerability, code execution
systems | windows
advisories | CVE-2018-11235, CVE-2018-13385, CVE-2018-13386
MD5 | ffd1af7b7aad2d8c118a349c62b11a04
Red Hat Security Advisory 2018-2246-01
Posted Jul 24, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2246-01 - The rhev-hypervisor7 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red Hat Enterprise Linux operating environment and the Red Hat Enterprise Virtualization Agent. Issues addressed include a bypass vulnerability.

tags | advisory, kernel, bypass
systems | linux, redhat
advisories | CVE-2018-3639
MD5 | 2536dac87ce97b13f26c96941b2697f4
Red Hat Security Advisory 2018-2245-01
Posted Jul 24, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2245-01 - Sprockets is a Ruby library for compiling and serving web assets. It features declarative dependency management for JavaScript and CSS assets, as well as a powerful preprocessor pipeline that allows to write assets in languages like CoffeeScript, Sass and SCSS. Issues addressed include a traversal vulnerability.

tags | advisory, web, javascript, ruby
systems | linux, redhat
advisories | CVE-2018-3760
MD5 | 4cddbf970a525c46f424b9018ec2be7a
Red Hat Security Advisory 2018-2244-01
Posted Jul 24, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2244-01 - Sprockets is a Ruby library for compiling and serving web assets. It features declarative dependency management for JavaScript and CSS assets, as well as a powerful preprocessor pipeline that allows to write assets in languages like CoffeeScript, Sass and SCSS. Issues addressed include a traversal vulnerability.

tags | advisory, web, javascript, ruby
systems | linux, redhat
advisories | CVE-2018-3760
MD5 | c8e6a8b16ca9c1af84c6ecdfe2748f94
Red Hat Security Advisory 2018-2243-01
Posted Jul 24, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2243-01 - Red Hat JBoss Data Virtualization is a lean data integration solution that provides easy, real-time, and unified data access across disparate sources to multiple applications and users. JBoss Data Virtualization makes data spread across physically distinct systems - such as multiple databases, XML files, and even Hadoop systems - appear as a set of tables in a local database. Issues addressed include clickjacking protection.

tags | advisory, local
systems | linux, redhat
advisories | CVE-2017-2658
MD5 | 60d79a34e56dd376fdf4771cab9ba739
Red Hat Security Advisory 2018-2240-01
Posted Jul 24, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2240-01 - OpenSLP is an open source implementation of the Service Location Protocol which is an Internet Engineering Task Force standards track protocol and provides a framework to allow networking applications to discover the existence, location, and configuration of networked services in enterprise networks. Issues addressed include code execution and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution, protocol
systems | linux, redhat
advisories | CVE-2017-17833
MD5 | da1d7e654f06f12cbd4a3b16da96938c
SMPlayer 18.6.0 Memory Corruption
Posted Jul 24, 2018
Authored by ZwX | Site vulnerability-lab.com

SMPlayer version 18.6.0 suffers from a memory corruption vulnerability that allows for denial of service.

tags | exploit, denial of service
MD5 | fdffcbcd67cf61abd24e0f69edfa3d83
McAfee.com Redirect Cross Site Scripting
Posted Jul 24, 2018
Authored by Ismail Tasdelen

A URL redirect at mcafee.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e4b8a5ac10b29a655b2c5684f9f88a8e
Shopclues.com Cross Site Request Forgery
Posted Jul 24, 2018
Authored by Ismail Tasdelen

Shopclues.com suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 473cf8b32e698df57b0d09c7b1381179
Linux/x86 TCP/4444 Bindshell Shellcode
Posted Jul 24, 2018
Authored by Kartik Durg

100 bytes small Linux/x86 /bin/sh bindshell IPv6 TCP/4444 shellcode.

tags | x86, tcp, shellcode
systems | linux
MD5 | 0dc31090de755d284bd719ffb52f6db9
Davolink DVW 3200 Router Password Disclosure
Posted Jul 24, 2018
Authored by Ankit Anubhav

The Davolink DVW 32000 router suffers from a password disclosure vulnerability.

tags | exploit, info disclosure
MD5 | ef776ce52b5def58d8c4d7ae895f14bb
Page 1 of 1
Back1Next

File Archive:

January 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    15 Files
  • 2
    Jan 2nd
    15 Files
  • 3
    Jan 3rd
    11 Files
  • 4
    Jan 4th
    1 Files
  • 5
    Jan 5th
    2 Files
  • 6
    Jan 6th
    5 Files
  • 7
    Jan 7th
    24 Files
  • 8
    Jan 8th
    15 Files
  • 9
    Jan 9th
    16 Files
  • 10
    Jan 10th
    23 Files
  • 11
    Jan 11th
    17 Files
  • 12
    Jan 12th
    3 Files
  • 13
    Jan 13th
    2 Files
  • 14
    Jan 14th
    18 Files
  • 15
    Jan 15th
    33 Files
  • 16
    Jan 16th
    23 Files
  • 17
    Jan 17th
    29 Files
  • 18
    Jan 18th
    15 Files
  • 19
    Jan 19th
    0 Files
  • 20
    Jan 20th
    0 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close