exploit the possibilities
Showing 1 - 16 of 16 RSS Feed

Files Date: 2019-07-24

Ubuntu Security Notice USN-4070-1
Posted Jul 24, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4070-1 - Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 19.04 have been updated to MySQL 5.7.27. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Various other issues were also addressed.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2019-2737, CVE-2019-2741, CVE-2019-2778, CVE-2019-2819
SHA-256 | 959176eb4c94921a33ff6997d4aac27b5b2619ea9f454ce8e1b171e35f9e1b56
Apple Security Advisory 2019-7-23-3
Posted Jul 24, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-7-23-3 - iCloud for Windows 10.6 is now available and addresses code execution and cross site scripting vulnerabilities.

tags | advisory, vulnerability, code execution, xss
systems | windows, apple
advisories | CVE-2019-13118, CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8666, CVE-2019-8669, CVE-2019-8671, CVE-2019-8672, CVE-2019-8673, CVE-2019-8676, CVE-2019-8677, CVE-2019-8678, CVE-2019-8679, CVE-2019-8680, CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8685, CVE-2019-8686, CVE-2019-8687, CVE-2019-8688, CVE-2019-8689, CVE-2019-8690
SHA-256 | 3ba30714719b00baca6259481a4bdfdefef12ce341e50648fc18c3d291519696
Tufin Secure Change Remote Code Execution
Posted Jul 24, 2019
Authored by Stephane Grundschober

Tufin SecureChange uses Richfaces version 4.3.5 which suffers from a remote code execution vulnerability.

tags | advisory, remote, code execution
advisories | CVE-2015-0279
SHA-256 | 5f337d6d91cf5f5d0bc240b766525f3cc6b32105aaf6cf34e4c4de7124a9991c
Apple Security Advisory 2019-7-23-2
Posted Jul 24, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-7-23-2 - iTunes for Windows 12.9.6 is now available and addresses code execution and cross site scripting vulnerabilities.

tags | advisory, vulnerability, code execution, xss
systems | windows, apple
advisories | CVE-2019-13118, CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8666, CVE-2019-8669, CVE-2019-8671, CVE-2019-8672, CVE-2019-8673, CVE-2019-8676, CVE-2019-8677, CVE-2019-8678, CVE-2019-8679, CVE-2019-8680, CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8685, CVE-2019-8686, CVE-2019-8687, CVE-2019-8688, CVE-2019-8689, CVE-2019-8690
SHA-256 | 5b5d807d64b0dfb0586f4d295e67ecb8f10e14d1218c051ceb6b960ff5372731
Apple Security Advisory 2019-7-23-1
Posted Jul 24, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-7-23-1 - iCloud for Windows 7.13 is now available and addresses code execution and cross site scripting vulnerabilities.

tags | advisory, vulnerability, code execution, xss
systems | windows, apple
advisories | CVE-2019-13118, CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8666, CVE-2019-8669, CVE-2019-8671, CVE-2019-8672, CVE-2019-8673, CVE-2019-8676, CVE-2019-8677, CVE-2019-8678, CVE-2019-8679, CVE-2019-8680, CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8685, CVE-2019-8686, CVE-2019-8687, CVE-2019-8688, CVE-2019-8689, CVE-2019-8690
SHA-256 | 5039fc8df73b1169b6a519048f0e7a714c303fc19b3d39a7aa2f6b757d1abc9c
Ovidentia 8.4.3 Cross Site Scripting
Posted Jul 24, 2019
Authored by Fernando Pinheiro, Victor Flores

Ovidentia version 8.4.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-13977
SHA-256 | 734799c00c7a895ec1bfc570d83de3f1eccab1b2b66715089278ee5b39f75a57
Technical Analysis Of BlueKeep
Posted Jul 24, 2019
Authored by 0xeb-bp

This whitepaper is a technical analysis of BlueKeep with a path for exploitation.

tags | paper
advisories | CVE-2019-0708
SHA-256 | ffdeadc2f367f61101c6ab776714306ed8c3b691ec3ec119b2210036e68722b9
Ubuntu Security Notice USN-4071-1
Posted Jul 24, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4071-1 - It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this issue to access sensitive information. It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-13636, CVE-2019-13638
SHA-256 | bb6be6ae6ab1c6d02ca25c70421ee7d9fb0267f22a1d62dae05ce539135a8dc1
Ovidentia 8.4.3 SQL Injection
Posted Jul 24, 2019
Authored by Fernando Pinheiro, Victor Flores

Ovidentia version 8.4.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2019-13978
SHA-256 | f243046f9355d0d590313f785bf796a155aa36652cf7d1ac356ad956d9739e0c
Red Hat Security Advisory 2019-1839-01
Posted Jul 24, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1839-01 - The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Issues addressed include a deserialization vulnerability.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2019-2745, CVE-2019-2762, CVE-2019-2769, CVE-2019-2786, CVE-2019-2816, CVE-2019-2842
SHA-256 | 0a13367a5983baf5fd94b6e99fd1e90d4d62cd0e78706bd0f4e6b11c0feaa972
Red Hat Security Advisory 2019-1833-01
Posted Jul 24, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1833-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web application development. Action Pack implements the controller and the view components. This update fixes various bugs and adds enhancements.

tags | advisory, web, ruby
systems | linux, redhat
advisories | CVE-2019-12439
SHA-256 | 983ea931c7621104c1aa972f82be6812018d0337d9de311aa3b376963f662aad
FreeBSD Security Advisory - FreeBSD-SA-19:12.telnet
Posted Jul 24, 2019
Authored by Juniper Networks | Site security.freebsd.org

FreeBSD Security Advisory - Insufficient validation of environment variables in the telnet client supplied in FreeBSD can lead to stack-based buffer overflows. A stack-based overflow is present in the handling of environment variables when connecting via the telnet client to remote telnet servers. This issue only affects the telnet client. Inbound telnet sessions to telnetd(8) are not affected by this issue. These buffer overflows may be triggered when connecting to a malicious server, or by an active attacker in the network path between the client and server. Specially crafted TELNET command sequences may cause the execution of arbitrary code with the privileges of the user invoking telnet(1).

tags | advisory, remote, overflow, arbitrary
systems | freebsd, bsd
advisories | CVE-2019-0053
SHA-256 | a289c2b38135f9f6339c9294178d141344dcea0087e3ea2bfa204b3700f119d5
Ubuntu Security Notice USN-4069-1
Posted Jul 24, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4069-1 - It was discovered that an integer overflow existed in the Linux kernel when reference counting pages, leading to potential use-after-free issues. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Jann Horn discovered that a race condition existed in the Linux kernel when performing core dumps. A local attacker could use this to cause a denial of service or expose sensitive information. Various other issues were also addressed.

tags | advisory, denial of service, overflow, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2019-11487, CVE-2019-11599, CVE-2019-11833, CVE-2019-11884
SHA-256 | 59868a26f79be380a03153a4ef3d8b3c9a12618231d06c2df1d94cb0bd3be8f3
WordPress Hybrid Composer 1.4.6 Unauthenticated Access
Posted Jul 24, 2019
Authored by rootetsy, yasin

WordPress Hybrid Composer plugin version 1.4.6 suffers from an unauthenticated configuration access vulnerability.

tags | exploit, bypass
SHA-256 | 26db1d7c35ee5edb905075e3a14d1d9ddc5e8c47e9ee7f9411211033c28c5549
Linux/x86_64 Wget Linux Enumeration Script Shellcode
Posted Jul 24, 2019
Authored by Kagan Capar

155 bytes small Linux/x86_64 wget Linux enumeration script shellcode.

tags | shellcode
systems | linux
SHA-256 | 76049b8c912e7e199162cc07c3a9da9c5df541bbf9d35e76533d43a9e5ad772c
Mikrotik RouterOS Resource / Stack Exhaustion
Posted Jul 24, 2019
Authored by Qian Chen

Mikrotik RouterOS versions prior to 6.44.5 and 6.45.1 suffer from stack and resource exhaustion vulnerabilities.

tags | advisory, denial of service, vulnerability
advisories | CVE-2019-13954, CVE-2019-13955
SHA-256 | d3abfc481e4ff650ba817b959c8db1aeed9b4e0a9043efaf38c59c7dd9c780de
Page 1 of 1
Back1Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    6 Files
  • 24
    May 24th
    19 Files
  • 25
    May 25th
    5 Files
  • 26
    May 26th
    12 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close