what you don't know can hurt you
Showing 1 - 15 of 15 RSS Feed

Files Date: 2019-05-06

Ubuntu Security Notice USN-3968-1
Posted May 6, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3968-1 - Florian Weimer discovered that Sudo incorrectly handled the noexec restriction when used with certain applications. A local attacker could possibly use this issue to bypass configured restrictions and execute arbitrary commands. It was discovered that Sudo did not properly parse the contents of /proc/[pid]/stat when attempting to determine its controlling tty. A local attacker in some configurations could possibly use this to overwrite any file on the filesystem, bypassing intended permissions. Various other issues were also addressed.

tags | advisory, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2016-7076, CVE-2017-1000368
MD5 | 917a4737fb71ee1e22c48c7952c10fdb
ReadyAPI 2.5.0 / 2.6.0 Remote Code Execution
Posted May 6, 2019
Authored by Gilson Camelo

ReadyAPI versions 2.5.0 and 2.6.0 suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2018-20580
MD5 | b850e885e13f005b51aa3f8d8f484a5b
Ubuntu Security Notice USN-3967-1
Posted May 6, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3967-1 - It was discovered that FFmpeg contained multiple security issues when handling certain multimedia files. If a user were tricked into opening a crafted multimedia file, an attacker could cause a denial of service via application crash.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2018-15822, CVE-2019-9721
MD5 | 9f97f72cdde909855b7250c65a836490
Ubuntu Security Notice USN-3965-1
Posted May 6, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3965-1 - Dhiraj Mishra discovered that aria2 incorrectly stored authentication information. A local attacker could possibly use this issue to obtain credentials.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2019-3500
MD5 | 24a1b6ceca1d0ad6eefdc998d553ca4a
Ubuntu Security Notice USN-3966-1
Posted May 6, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3966-1 - It was discovered that the GNOME Shell incorrectly handled certain keyboard inputs. An attacker could possibly use this issue to invoke keyboard shortcuts, and potentially other actions while the workstation was locked.

tags | advisory, shell
systems | linux, ubuntu
advisories | CVE-2019-3820
MD5 | 958b0c4390bdf1aeffb49cf0b6df53de
Prinect Archive System 2015 Release 2.6 Cross Site Scripting
Posted May 6, 2019
Authored by Alt3kx

Prinect Archive System 2015 release 2.6 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-10685
MD5 | c500c6c3f1bb4607bbccb4f6eeaec79f
PHPads 2.0 SQL Injection
Posted May 6, 2019
Authored by Felipe Andrian Peixoto

PHPads version 2.0 based on Pixelledads version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ed156782c8d22bbaf7d1b4b95b26e341
LG Supersign EZ CMS Remote Code Execution
Posted May 6, 2019
Authored by Alejandro Fanjul | Site metasploit.com

LG SuperSign EZ CMS, that many LG SuperSign TVs have built-in, is prone to a remote code execution vulnerability due to an improper parameter handling.

tags | exploit, remote, code execution
advisories | CVE-2018-17173
MD5 | a7b416a14e900878d13ac33a2c361522
NSClient++ 0.5.2.35 Privilege Escalation
Posted May 6, 2019
Authored by bzyo

NSClient++ version 0.5.2.35 suffers from a privilege escalation vulnerability.

tags | exploit
MD5 | 33faec88dda628a8dc0f3c05735b139e
Linux/x86 Multiple Keys XOR Encoder / Decoder execve(/bin/sh) Shellcode
Posted May 6, 2019
Authored by Xavi Beltran

59 bytes small Linux/x86 multiple keys XOR encoder / decoder execve(/bin/sh) shellcode.

tags | x86, shellcode
systems | linux
MD5 | 4e2fde1764b1bb10036fd4391299849e
microASP (Portal+) CMS SQL Injection
Posted May 6, 2019
Authored by Felipe Andrian Peixoto

microASP (Portal+) CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 46e26802b4ca022c2a8057232a023cb0
Linux/x86 Shred File Shellcode
Posted May 6, 2019
Authored by strider

72 bytes small Linux/x86 shred file shellcode.

tags | x86, shellcode
systems | linux
MD5 | 8883ab158ae8c1da2f4b1a63920635dd
Lets Map Your Network
Posted May 6, 2019
Authored by Pramod Rana | Site github.com

Lets Map Your Network is a framework that enables you to visualize your physical network in form graph and look for anomalous changes.

tags | tool
systems | unix
MD5 | d996147ea8078b1d0f8d89ed9835e77b
iOS 12.1.3 cfprefsd Memory Corruption
Posted May 6, 2019
Authored by ZecOps

iOS version 12.1.3 cfprefsd memory corruption exploit.

tags | exploit
systems | ios
advisories | CVE-2019-7286
MD5 | 5f2945567a2b5f4158fe44116484e39d
Xitami Web Server 2.5 Remote Buffer Overflow
Posted May 6, 2019
Authored by ElSoufiane

Xitami Web Server version 2.5 remote SEH buffer overflow exploit with egghunter.

tags | exploit, remote, web, overflow
MD5 | e1975da3b4809c5dae19678e83563862
Page 1 of 1
Back1Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    1 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    27 Files
  • 11
    Aug 11th
    11 Files
  • 12
    Aug 12th
    11 Files
  • 13
    Aug 13th
    17 Files
  • 14
    Aug 14th
    7 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close