what you don't know can hurt you
Showing 1 - 25 of 443 RSS Feed

Files Date: 2019-01-01 to 2019-01-31

Debian Security Advisory 4378-1
Posted Jan 30, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4378-1 - Fariskhi Vidyan discovered that the PEAR Archive_Tar package for handling tar files in PHP is prone to a PHP object injection vulnerability, potentially allowing a remote attacker to execute arbitrary code.

tags | advisory, remote, arbitrary, php
systems | linux, debian
advisories | CVE-2018-1000888
MD5 | eaa1c640aaefdbb4400c736c327d0918
Collabtive 3.1 Cross Site Scripting
Posted Jan 30, 2019
Authored by Zekvan Arslan | Site netsparker.com

Collabtive version 3.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-8935
MD5 | 885324802cf10162f12e93ed231e439e
Ubuntu Security Notice USN-3873-1
Posted Jan 30, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3873-1 - It was discovered that Open vSwitch incorrectly decoded certain packets. A remote attacker could possibly use this issue to cause Open vSwitch to crash, resulting in a denial of service. It was discovered that Open vSwitch incorrectly handled processing certain flows. A remote attacker could possibly use this issue to cause Open vSwitch to crash, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-17204, CVE-2018-17205, CVE-2018-17206
MD5 | c64884c083b0675f3c16512fc6f79f70
Slackware Security Advisory - mozilla-firefox Updates
Posted Jan 30, 2019
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New mozilla-firefox packages are available for 14.2 and -current to fix security issues.

tags | advisory
systems | linux, slackware
MD5 | 2027021e96a537c0ec3eb50615699f0e
Debian Security Advisory 4375-1
Posted Jan 30, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4375-1 - Christophe Fergeau discovered an out-of-bounds read vulnerability in spice, a SPICE protocol client and server library, which might result in denial of service (spice server crash), or possibly, execution of arbitrary code.

tags | advisory, denial of service, arbitrary, protocol
systems | linux, debian
advisories | CVE-2019-3813
MD5 | 8b8adcd24817c0030b39a7417c0c0149
Red Hat Security Advisory 2019-0162-01
Posted Jan 30, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0162-01 - The kernel-alt packages provide the Linux kernel version 4.x. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow, kernel
systems | linux, redhat
advisories | CVE-2018-10840
MD5 | 0c6ae65ae510d261f454609c0030d2fc
Advanced File Manager 3.4.1 Denial Of Service
Posted Jan 30, 2019
Authored by Rafael Pedrero

Advanced File Manager version 3.4.1 denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
MD5 | bdf06eb3f4224acb235334304ae28ef1
Debian Security Advisory 4376-1
Posted Jan 30, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4376-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or privilege escalation.

tags | advisory, web, arbitrary
systems | linux, debian
advisories | CVE-2018-18500, CVE-2018-18501, CVE-2018-18505
MD5 | 4f6aa00ae290ef84a9bacd66a05ee470
IP-Tools 2.50 Denial Of Service
Posted Jan 30, 2019
Authored by Rafael Pedrero

IP-Tools version 2.50 denial of service SEH overwrite proof of concept exploit.

tags | exploit, denial of service, proof of concept
MD5 | c16d7e82936663bab7dd19978c93e5f9
Debian Security Advisory 4377-1
Posted Jan 30, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4377-1 - The ESnet security team discovered a vulnerability in rssh, a restricted shell that allows users to perform only scp, sftp, cvs, svnserve (Subversion), rdist and/or rsync operations. Missing validation in the scp support could result in the bypass of this restriction, allowing the execution of arbitrary shell commands.

tags | advisory, arbitrary, shell
systems | linux, debian
advisories | CVE-2019-1000018
MD5 | 0f3abdb1f9aef1a11fc5a00e69af7d17
Necrosoft DIG 0.4 Denial Of Service
Posted Jan 30, 2019
Authored by Rafael Pedrero

Necrosoft DIG version 0.4 denial of service SEH overwrite proof of concept exploit.

tags | exploit, denial of service, proof of concept
MD5 | 31a32a06eac7e6728d0a318e795237ec
Red Hat Security Advisory 2019-0218-01
Posted Jan 30, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0218-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.5.0 ESR. Issues addressed include a use-after-free vulnerability.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2018-18500, CVE-2018-18501, CVE-2018-18505
MD5 | 472c1e9e4e6475993b99796d2537e4bb
Red Hat Security Advisory 2019-0219-01
Posted Jan 30, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0219-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.5.0 ESR. Issues addressed include a use-after-free vulnerability.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2018-18500, CVE-2018-18501, CVE-2018-18505
MD5 | 119e1b6a27103d046f02037acf1a4063
Microsoft Windows/x86 msiexec.exe Download And Execute Shellcode
Posted Jan 30, 2019
Authored by Kartik Durg

95 bytes small Microsoft Windows x86 msiexec.exe download and execute shellcode.

tags | x86, shellcode
systems | windows
MD5 | d6a5ef36584bc7f03da85c23688df1f2
10-Strike Network Inventory Explorer 8.54 Local Buffer Overflow
Posted Jan 30, 2019
Authored by bzyo

10-Strike Network Inventory Explorer version 8.54 local buffer overflow SEH exploit with DEP bypass.

tags | exploit, overflow, local
MD5 | 20b3a3086a4b524a3b049f7bd22374fd
Rukovoditel Project Management CRM 2.4.1 SQL Injection
Posted Jan 30, 2019
Authored by Mehmet Emiroglu

Rukovoditel Project Management CRM version 2.4.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 3599554658706d03f44e2ce8ba278af0
iOS / macOS Uninitialized Kernel Stack Disclosure
Posted Jan 29, 2019
Authored by Google Security Research, bazad

iOS and macOS suffer from an if_ports_used_update_wakeuuid() 16-byte uninitialized kernel stack disclosure vulnerability.

tags | exploit, kernel
systems | ios
advisories | CVE-2019-6209
MD5 | 945324ecdaec6370900aeaf4e6688a59
PDF Signer 3.0 Template Injection / CSRF / Code Execution
Posted Jan 29, 2019
Authored by dd_

PDF Signer version 3.0 suffers from a server-side template injection vulnerability that can help lead to remote command execution due to improper cookie handling and cross site request forgery issues.

tags | exploit, remote, csrf
MD5 | 82bd8f149a419b5d7f68fae033f5ab31
Red Hat Security Advisory 2019-0194-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0194-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Issues addressed include a crash related vulnerability.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2018-5742
MD5 | 23a935d3cc45e9eb550e93f162aede7a
Red Hat Security Advisory 2019-0188-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0188-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a use-after-free vulnerability.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2018-18559
MD5 | 767e62be7eb1f5b6f00f4e88bb8eed7e
Red Hat Security Advisory 2019-0163-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0163-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include bypass and use-after-free vulnerabilities.

tags | advisory, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2018-18397, CVE-2018-18559
MD5 | 9a235254df1243e6a599bdccebddd2df
Red Hat Security Advisory 2019-0201-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0201-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. Issues addressed include a memory leak vulnerability.

tags | advisory, memory leak
systems | linux, redhat
advisories | CVE-2019-3815
MD5 | fba37a6cf8525879787c252a60a487e2
Red Hat Security Advisory 2019-0204-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0204-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. Issues addressed include a stack overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2018-16864, CVE-2018-16865
MD5 | c6f23ae61ffb9398b3a0b9b135e7e04c
Red Hat Security Advisory 2019-0202-01
Posted Jan 29, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0202-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a bypass vulnerability.

tags | advisory, kernel, bypass
systems | linux, redhat
advisories | CVE-2018-18397
MD5 | 1ba0124bbfb16134d76b0bd15bd89e62
MiniUPnPd 2.1 Out-Of-Bounds Read
Posted Jan 29, 2019
Authored by b1ack0wl

MiniUPnPd versions 2.1 and below suffer from an out-of-bounds read vulnerability.

tags | exploit
MD5 | a290f003a2ed61f4fd09fb6d5a7a305d
Page 1 of 18
Back12345Next

File Archive:

November 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    28 Files
  • 2
    Nov 2nd
    1 Files
  • 3
    Nov 3rd
    1 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    19 Files
  • 6
    Nov 6th
    65 Files
  • 7
    Nov 7th
    22 Files
  • 8
    Nov 8th
    18 Files
  • 9
    Nov 9th
    1 Files
  • 10
    Nov 10th
    1 Files
  • 11
    Nov 11th
    11 Files
  • 12
    Nov 12th
    0 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close