exploit the possibilities
Showing 1 - 25 of 38 RSS Feed

Files Date: 2019-01-29

iOS / macOS Uninitialized Kernel Stack Disclosure
Posted Jan 29, 2019
Authored by Google Security Research, bazad

iOS and macOS suffer from an if_ports_used_update_wakeuuid() 16-byte uninitialized kernel stack disclosure vulnerability.

tags | exploit, kernel
systems | ios
advisories | CVE-2019-6209
MD5 | 945324ecdaec6370900aeaf4e6688a59
PDF Signer 3.0 Template Injection / CSRF / Code Execution
Posted Jan 29, 2019
Authored by dd_

PDF Signer version 3.0 suffers from a server-side template injection vulnerability that can help lead to remote command execution due to improper cookie handling and cross site request forgery issues.

tags | exploit, remote, csrf
MD5 | 82bd8f149a419b5d7f68fae033f5ab31
Red Hat Security Advisory 2019-0194-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0194-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Issues addressed include a crash related vulnerability.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2018-5742
MD5 | 23a935d3cc45e9eb550e93f162aede7a
Red Hat Security Advisory 2019-0188-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0188-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a use-after-free vulnerability.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2018-18559
MD5 | 767e62be7eb1f5b6f00f4e88bb8eed7e
Red Hat Security Advisory 2019-0163-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0163-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include bypass and use-after-free vulnerabilities.

tags | advisory, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2018-18397, CVE-2018-18559
MD5 | 9a235254df1243e6a599bdccebddd2df
Red Hat Security Advisory 2019-0201-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0201-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. Issues addressed include a memory leak vulnerability.

tags | advisory, memory leak
systems | linux, redhat
advisories | CVE-2019-3815
MD5 | fba37a6cf8525879787c252a60a487e2
Red Hat Security Advisory 2019-0204-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0204-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. Issues addressed include a stack overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2018-16864, CVE-2018-16865
MD5 | c6f23ae61ffb9398b3a0b9b135e7e04c
Red Hat Security Advisory 2019-0202-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0202-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a bypass vulnerability.

tags | advisory, kernel, bypass
systems | linux, redhat
advisories | CVE-2018-18397
MD5 | 1ba0124bbfb16134d76b0bd15bd89e62
MiniUPnPd 2.1 Out-Of-Bounds Read
Posted Jan 29, 2019
Authored by b1ack0wl

MiniUPnPd versions 2.1 and below suffer from an out-of-bounds read vulnerability.

tags | exploit
MD5 | a290f003a2ed61f4fd09fb6d5a7a305d
Linux/ARM Bindshell Shellcode
Posted Jan 29, 2019
Authored by Gokul Babu

84 bytes small Linux/ARM TCP bindshell shellcode that binds to port 4321.

tags | tcp, shellcode
systems | linux
MD5 | c209fad0321466c7022431ba0127fc26
Linux/x86 Read /etc/passwd Shellcode
Posted Jan 29, 2019
Authored by Joao Batista

58 bytes small Linux/x86 read /etc/passwd shellcode.

tags | x86, shellcode
systems | linux
MD5 | e91f04d15807ee28c1de792ddfe4198b
Linux/x86 execve(/bin/sh) + RShift-1 Encoded Shellcode
Posted Jan 29, 2019
Authored by Joao Batista

29 bytes small Linux/x86 execve(/bin/sh) + RShift-1 encoded shellcode.

tags | x86, shellcode
systems | linux
MD5 | 949459576258af40c07ff495b50d3ca2
Nessus 8.2.1 Cross Site Scripting
Posted Jan 29, 2019
Authored by Ozer Goker

Nessus version 8.2.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | ded5bf64de92089754efabc2dbdb6dc7
Ubuntu Security Notice USN-3872-1
Posted Jan 29, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3872-1 - It was discovered that a race condition existed in the vsock address family implementation of the Linux kernel that could lead to a use-after-free condition. A local attacker in a guest virtual machine could use this to expose sensitive information. Cfir Cohen discovered that a use-after-free vulnerability existed in the KVM implementation of the Linux kernel, when handling interrupts in environments where nested virtualization is in use. A local attacker in a guest VM could possibly use this to gain administrative privileges in a host machine. Various other issues were also addressed.

tags | advisory, kernel, local
systems | linux, ubuntu
advisories | CVE-2018-14625, CVE-2018-16882, CVE-2018-19407, CVE-2018-19854
MD5 | 29c83776d4d06ad3285e2083d9bd1ec5
Ubuntu Security Notice USN-3871-1
Posted Jan 29, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3871-1 - Wen Xu discovered that a use-after-free vulnerability existed in the ext4 filesystem implementation in the Linux kernel. An attacker could use this to construct a malicious ext4 image that, when mounted, could cause a denial of service or possibly execute arbitrary code. Wen Xu discovered that a buffer overflow existed in the ext4 filesystem implementation in the Linux kernel. An attacker could use this to construct a malicious ext4 image that, when mounted, could cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, overflow, arbitrary, kernel
systems | linux, ubuntu
advisories | CVE-2018-10876, CVE-2018-10877, CVE-2018-10880, CVE-2018-10883, CVE-2018-14625, CVE-2018-16882, CVE-2018-17972, CVE-2018-18281, CVE-2018-19407, CVE-2018-9516
MD5 | b01424a9823358e3f9c7c3303574d6b6
HTML Video Player 1.2.5 Local Buffer Overflow
Posted Jan 29, 2019
Authored by Dino Covotsos

HTML Video Player version 1.2.5 suffers from a local buffer overflow vulnerability.

tags | exploit, overflow, local
MD5 | fb293b160674d4eeb22080384cd6bd4f
Linux/ARM Reverse Shell Shellcode
Posted Jan 29, 2019
Authored by Gokul Babu

64 bytes small Linux/ARM reverse TCP (192.168.1.124:4321) shell (/bin/sh) shellcode.

tags | shell, tcp, shellcode
systems | linux
MD5 | e576a654739aa60859efbc5ba2d8bc76
OPNsense 18.7 Cross Site Scripting
Posted Jan 29, 2019
Authored by Ozer Goker

OPNsense version 18.7 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 5e34cfaee1a589bc4e46fbaf3af37194
Ubuntu Security Notice USN-3870-1
Posted Jan 29, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3870-1 - Christophe Fergeau discovered that Spice incorrectly handled memory. A remote attacker could use this to cause Spice to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-3813
MD5 | 15ab4e725f9b2a15d5ffae3b7b902407
CMSsite 1.0 SQL Injection
Posted Jan 29, 2019
Authored by Majid Kalantari

CMSsite version 1.0 suffers from a search functionality-related remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 813d70175e93b9649a62518f507836a3
Easy Video To iPod Converter 1.6.20 Buffer Overflow
Posted Jan 29, 2019
Authored by Nawaf Alkeraithe

Easy Video to iPod Converter version 1.6.20 SEH buffer overflow exploit.

tags | exploit, overflow
MD5 | aa17408887e690a988af3285c1275ed3
Sricam gSOAP 2.8 Denial Of Service
Posted Jan 29, 2019
Authored by Andrew Watson

Sricam gSOAP version 2.8 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2019-6973
MD5 | 26fbd58936e9de5bc5894825b5c305ee
Linux/x86 execve() bc Shellcode
Posted Jan 29, 2019
Authored by Daniele Votta

53 bytes small Linux/x86 execve() shellcode that runs bc (terminal calculator).

tags | x86, shellcode
systems | linux
MD5 | f2ed451e169c54f8c783b8190e0407a3
pfSense 2.4.4-p1 Cross Site Scripting
Posted Jan 29, 2019
Authored by Ozer Goker

pfSense version 2.4.4-p1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 52e2a8776cd07b2f501073c93bbd8048
Cisco RV300 / RV320 Information Disclosure
Posted Jan 29, 2019
Authored by Harom Ramos

Cisco RV300 and RV320 suffer from an information disclosure vulnerability.

tags | exploit, info disclosure
systems | cisco
advisories | CVE-2019-1653
MD5 | 3e274f9cd5167fe2dc1dc9d26e45b852
Page 1 of 2
Back12Next

File Archive:

February 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    22 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    2 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    50 Files
  • 6
    Feb 6th
    24 Files
  • 7
    Feb 7th
    15 Files
  • 8
    Feb 8th
    6 Files
  • 9
    Feb 9th
    1 Files
  • 10
    Feb 10th
    1 Files
  • 11
    Feb 11th
    22 Files
  • 12
    Feb 12th
    25 Files
  • 13
    Feb 13th
    16 Files
  • 14
    Feb 14th
    32 Files
  • 15
    Feb 15th
    15 Files
  • 16
    Feb 16th
    10 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close