Twenty Year Anniversary
Showing 1 - 10 of 10 RSS Feed

Files Date: 2018-08-10

Oracle Weblogic Server Deserialization Remote Code Execution
Posted Aug 10, 2018
Authored by Jacob Robles, brianwrf | Site metasploit.com

An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object to the interface to execute code on vulnerable hosts.

tags | exploit
advisories | CVE-2018-2628
MD5 | 34445a6b0bb22228fd001e360edf4719
Red Hat Security Advisory 2018-2373-01
Posted Aug 10, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2373-01 - The redhat-certification package provides partners with a unified web-based user interface to certify their products for use on Red Hat Infrastructure. It can currently be used in the latest releases of Red Hat Certified Cloud and Service Provider Certification, Red Hat OpenStack Certification and Red Hat Hardware Certification Programs. Issues addressed include writeable and downloadable file vulnerabilities.

tags | advisory, web, vulnerability
systems | linux, redhat
advisories | CVE-2018-10864, CVE-2018-10869, CVE-2018-10870
MD5 | 9011f0406b503eef4d0a261e2e5b7cb2
Ubuntu Security Notice USN-3735-1
Posted Aug 10, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3735-1 - It was discovered that the PatternSyntaxException class in OpenJDK did not properly validate arguments passed to it. An attacker could use this to potentially construct a class that caused a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2018-2952
MD5 | caaa953a4feb355b91cfa732ba8eb26a
Ubuntu Security Notice USN-3734-1
Posted Aug 10, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3734-1 - It was discovered that the PatternSyntaxException class in OpenJDK did not properly validate arguments passed to it. An attacker could use this to possibly construct a class that caused a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2018-2952
MD5 | 307d553456b77175e08a27757fcda912
Kernel Live Patch Security Notice LSN-0041-1
Posted Aug 10, 2018
Authored by Benjamin M. Romer

The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer, as demonstrated by a CDROMREADMODE2 ioctl call. Wen Xu discovered that the ext4 file system implementation in the Linux kernel did not properly initialize the crc32c checksum driver. A local attacker could use this to cause a denial of service (system crash). Various other issues were also addressed.

tags | advisory, denial of service, overflow, kernel, local
systems | linux
advisories | CVE-2018-1094, CVE-2018-11506, CVE-2018-13094, CVE-2018-13405, CVE-2018-5390
MD5 | fc944208680854f3168be2702b530c3b
Machine Learning - Learning Cybersecurity
Posted Aug 10, 2018
Authored by Akash Sarode

Whitepaper called Machine Learning - Learning Cybersecurity.

tags | paper
MD5 | d613a476834fa541683149987754490a
Zimbra 8.6.0_GA_1153 Cross Site Scripting
Posted Aug 10, 2018
Authored by Dino Barlattani

Zimbra version 8.6.0_GA_1153 build 20141215151110 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2016-3411
MD5 | 0fea963435c71a68f27ddc33d319dfb7
MyBB Thank You / Like 3.0.0 Cross Site Scripting
Posted Aug 10, 2018
Authored by 0xB9

MyBB Thank You and Like plugins version 3.0.0 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-14888
MD5 | c3a55008b7489410249bcbecd27f45f4
MyBB Like 3.0.0 Cross Site Scripting
Posted Aug 10, 2018
Authored by 0xB9

MyBB Like plugin version 3.0.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 635b0d7bf15f114cf8c698c963ec5236
iSmartViewPro 1.5 Password Buffer Overflow
Posted Aug 10, 2018
Authored by Javier Enrique Rodriguez Gutierrez

iSmartViewPro version 1.5 suffers from a password-related buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 0694249deb05aa764560eddc0931d912
Page 1 of 1
Back1Next

File Archive:

October 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    26 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    2 Files
  • 7
    Oct 7th
    3 Files
  • 8
    Oct 8th
    23 Files
  • 9
    Oct 9th
    16 Files
  • 10
    Oct 10th
    15 Files
  • 11
    Oct 11th
    19 Files
  • 12
    Oct 12th
    16 Files
  • 13
    Oct 13th
    2 Files
  • 14
    Oct 14th
    2 Files
  • 15
    Oct 15th
    15 Files
  • 16
    Oct 16th
    20 Files
  • 17
    Oct 17th
    19 Files
  • 18
    Oct 18th
    21 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close