This Metasploit module will create an autostart entry to execute a payload. The payload will be executed when the users logs in.
6fc2f23cb1219cf37ae9ee12349fb6f99a50a808883257d37a8d876b78a1d3b8This Metasploit module will edit /etc/rc.local in order to persist a payload. The payload will be executed on the next reboot.
b014bcfd6bf6e877fa9e7017efdaa6a981c60c2bf65318e3b8ff5abc1c52f182The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
84c8712d1a6986d48f504d5ae328ae4a2be6b3d1ae357a67277e4caec96b2c64Ubuntu Security Notice 3745-1 - It was discovered that wpa_supplicant and hostapd incorrectly handled certain messages. An attacker could possibly use this to access sensitive information.
544772be98eeb905e10b1f1abc38974e25fea0cd0e2bbe666f343bdb81305c59Debian Linux Security Advisory 4279-1 - Multiple researchers have discovered a vulnerability in the way the Intel processor designs have implemented speculative execution of instructions in combination with handling of page-faults. This flaw could allow an attacker controlling an unprivileged process to read memory from arbitrary (non-user controlled) addresses, including from the kernel and all other processes running on the system or cross guest/host boundaries to read host memory.
9410b67f93cdf89de85befb58831cd2cf4bfabe1dd3938c4a6c3e982231537eaRed Hat Security Advisory 2018-2526-01 - Mutt is a low resource, highly configurable, text-based MIME e-mail client. Mutt supports most e-mail storing formats, such as mbox and Maildir, as well as most protocols, including POP3 and IMAP. Issues addressed include code execution and traversal vulnerabilities.
3ce834fc056290cb25effa8d6836535dfb65d5dcd75e2974adf7cffe582f4e41Red Hat Security Advisory 2018-2523-01 - The OpenStack Identity service authenticates and authorizes OpenStack users by keeping track of users and their permitted activities. The Identity service supports multiple forms of authentication, including user name and password credentials, token-based systems, and AWS-style logins. Issues addressed include an information exposure vulnerability.
eae451f13fd7e3aab63b6dfbca3529cd6c4345e1f59f8a7bcd7bc5d1dfb1fbc2Java System Solutions SSO plugin for BMC MyIT version 4.0.13.1 suffers from a cross site scripting vulnerability.
dc1139a3e435f0009cc81e57d55e45a0ccf9ecb5879c567ef9b84bbdb53292c6Red Hat Security Advisory 2018-2331-01 - memcached is a high-performance, distributed memory object caching system, generic in nature, but intended for use in speeding up dynamic web applications by alleviating database load. Security fix: memcached: UDP server support allows spoofed traffic amplification DoS For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section. Issues addressed include a denial of service vulnerability.
d2d6167428370d5bebd267e8017566b4d29f9e6ca8b49d0114b74f234e978434Red Hat Security Advisory 2018-2524-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include information exposure.
1efbe76f16b6c92df6c75acc4f78c0d2a90776498faf7654180844129ebea3b2SEIG Modbus version 3.4 suffers from a denial of service vulnerability.
b79b9187f9e66dbeab91b5153a9cf37ca90c2fa960e047a564b8e64b0a99fbbaMyBB Moderator Log Notes plugin version 1.1 suffers from a cross site request forgery vulnerability.
29a952d54f7f61f30887285e36f6b09749204330687254d4644d0d3c7ebdd037Red Hat Security Advisory 2018-2332-01 - OpenStack Compute launches and schedules large networks of virtual machines, creating a redundant and scalable cloud computing platform. Compute provides the software, control panels, and APIs required to orchestrate a cloud, including running virtual machine instances and controlling access through users and projects. Issues addressed include a denial of service vulnerability.
7cd1938750576ad9b8f20f5122bedf994431991a2a9b29920d1ec4d115a1fd76Red Hat Security Advisory 2018-2511-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include a memory disclosure vulnerability.
4ca4c3db9cbd55205ea2c05acb3d63b066329838d8eabd3c12d93281db527f5fWordPress Chained Quiz plugin versions 1.0.8 and below suffer from a remote SQL injection vulnerability.
66664e10b79f8cf2caa86fa1a37b9215ddbead277bbf167dce23e5167f7b27fbSEIG Modbus version 3.4 suffers from a remote code execution vulnerability.
8cd4354bb90f87f375b3a51ceaf30cbfb76e0d67defcd47550056a1acab51f87SEIG SCADA System version 9 suffers from a remote code execution vulnerability.
fc590116e8288b1b390e4b58c2c9e02b5131ce45fb20c43eca7455734f1163f7Zortam MP3 Media Studio version 23.95 suffers from a denial of service vulnerability.
6136e55cb653b21da15ef52c2c2748faf79117b065fdedb00ed6e5f21e508648Restorator 1793 suffers from a denial of service vulnerability.
eeb835bc18eb6a66a336e82f57c911e28cefbac6f26b7d6edeac9e40ee957afdGeutebruck re_porter 16 versions prior to 7.8.974.20 suffer from a cross site scripting vulnerability.
b0b475fbd6fb5fed80cd52abfd849ca4fe27f48426c1cc1f04fdabaf593d9cc3Geutebruck re_porter 16 versions prior to 7.8.974.20 suffer from a credential disclosure vulnerability.
db85c58eeac2147d9b6784f299712e6ae9962ef7eea3a13d21616f47fef8c5c6
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed