exploit the possibilities
Showing 1 - 20 of 20 RSS Feed

Files Date: 2019-07-10

phpFK lite-version Cross Site Scripting
Posted Jul 10, 2019
Authored by Daniel Bishtawi | Site netsparker.com

phpFK lite-version suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2017-18364
MD5 | 112cf78b514eeaf1bbdffff8b053e15b
Red Hat Security Advisory 2019-1728-01
Posted Jul 10, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1728-01 - This Python package provides a dynamic vendordata plugin for the OpenStack nova metadata service to manage host instantiation in an IPA server. A missing folder issue was addressed.

tags | advisory, python
systems | linux, redhat
advisories | CVE-2019-10138
MD5 | 507624435b9153fceac239792a088250
Microsoft DirectWrite / AFDKO OpenType readCharset Buffer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readCharset.

tags | exploit, overflow
advisories | CVE-2019-1128
MD5 | 2390f6f6b9d3f16e5ec16d348e370a2a
Microsoft DirectWrite / AFDKO OpenType Out-Of-Bounds Read / Write
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based out-of-bounds read/write vulnerability in OpenType font handling due to unbounded iFD.

tags | exploit
advisories | CVE-2019-1121
MD5 | 75f817529c0169de5dc33f342a2db85c
PowerPanel Business Edition 3.4.0 Cross Site Request Forgery
Posted Jul 10, 2019
Authored by Joey Lane

PowerPanel Business Edition version 3.4.0 is vulnerable to cross site request forgery vulnerability. This can be exploited by tricking an authenticated user into visiting a web page controlled by a malicious person.

tags | exploit, web, csrf
advisories | CVE-2019-13071
MD5 | a9ab16dd95ed0e4e8b09539a84c83b30
Red Hat Security Advisory 2019-1722-01
Posted Jul 10, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1722-01 - OpenStack Bare Metal is a tool used to provision bare metal machines. It leverages common technologies such as PXE boot and IPMI to cover a wide range of hardware. It also supports pluggable drivers to allow added, vendor-specific, functionality. Issues addressed include a remote SQL injection vulnerability.

tags | advisory, remote, sql injection
systems | linux, redhat
advisories | CVE-2019-10141
MD5 | 19f6f48945ac32596aaaeaa96d41d2a5
Red Hat Security Advisory 2019-1723-01
Posted Jul 10, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1723-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2018-20815
MD5 | e87db5024512f6626d60105201b518ef
Microsoft DirectWrite / AFDKO Uninitialized Memory Use
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from an issue where it makes use of uninitialized memory while freeing resources in var_loadavar.

tags | exploit
MD5 | cc83ed79f81085bd663f0e5b89b27fa6
Microsoft DirectWrite / AFDKO do_set_weight_vector_cube Buffer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack-based buffer overflow vulnerability in do_set_weight_vector_cube for large nAxes.

tags | exploit, overflow
MD5 | ea013854421dcefe1e364e1e0479a561
Red Hat Security Advisory 2019-1714-01
Posted Jul 10, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1714-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. A race condition has been addressed.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2019-6471
MD5 | e7d57fd1ca5b545bfae6b0149af462b3
Microsoft DirectWrite / AFDKO OpenType Stack Corruption Due To Negative nAxes
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to negative nAxes.

tags | exploit
advisories | CVE-2019-1127
MD5 | 578c1d982270df68c386d40bdf609eb1
Microsoft DirectWrite / AFDKO OpenType Stack Corruption Due To Negative cubeStackDepth
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to negative cubeStackDepth.

tags | exploit
advisories | CVE-2019-1118
MD5 | c2b87476244efa92ba4a9be90250e805
Microsoft DirectWrite / AFDKO OpenType Stack Corruption Due To Out-Of-Bounds cubeStackDepth
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to out-of-bounds cubeStackDepth.

tags | exploit
advisories | CVE-2019-1117
MD5 | ece5873e0796605b68a4b0b2246aca1d
Bypassing Web Application Firewalls With HTTP Parameter Pollution
Posted Jul 10, 2019
Authored by Berk Sagiroglu

Whitepaper called Bypassing Web Application Firewalls with HTTP Parameter Pollution. Written in Turkish.

tags | paper, web
MD5 | 5e515a4b949177e71c30bead05663400
Microsoft DirectWrite / AFDKO readTTCDirectory Integer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability due to integer overflow in readTTCDirectory.

tags | exploit, overflow
MD5 | fd6441bc85a328f96dea6a3df9dd185e
Microsoft DirectWrite / AFDKO OpenType readStrings Buffer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readStrings.

tags | exploit, overflow
advisories | CVE-2019-1122
MD5 | d0abe298b7099fdd56fd834959ccc56b
Red Hat Security Advisory 2019-1726-01
Posted Jul 10, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1726-01 - D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility. Issues addressed include a bypass vulnerability.

tags | advisory, bypass
systems | linux, redhat
advisories | CVE-2019-12749
MD5 | 021d83faf4931fa7407ecb518505eb1e
Microsoft DirectWrite / AFDKO OpenType blendArray Stack Corruption
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to incorrect handling of blendArray.

tags | exploit
advisories | CVE-2019-1119
MD5 | 80a34393801d6bafb278329be316ef0b
Microsoft DirectWrite / AFDKO OpenType Stack Underflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from an interpreter stack underflow in OpenType font handling due to missing CHKUFLOW.

tags | exploit
MD5 | 7f6961168004be409e8c197691292c84
Microsoft DirectWrite / AFDKO OpenType readFDSelect Buffer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readFDSelect.

tags | exploit, overflow
advisories | CVE-2019-1120
MD5 | 8fb35d7cf2ae4c9390c26184ed325550
Page 1 of 1
Back1Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    12 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close