what you don't know can hurt you
Showing 1 - 14 of 14 RSS Feed

Files Date: 2019-09-19

GOautodial 4.0 Cross Site Scripting
Posted Sep 19, 2019
Authored by Cakes

GOautodial version 4.0 suffers from a persistent cross site scripting vulnerability in the CreateEvent flow.

tags | exploit, xss
MD5 | 06e513908ec4cf29eb4b367076db6e10
DIGIT CENTRIS 4 ERP SQL Injection
Posted Sep 19, 2019
Authored by n1x_

DIGIT CENTRIS 4 ERP suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 66111e2cb97a8f518d8d693b7be8b05d
TOR Virtual Network Tunneling Tool 0.4.1.6
Posted Sep 19, 2019
Authored by Roger Dingledine | Site tor.eff.org

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

Changes: This release backports several bugfixes to improve stability and correctness. Anyone experiencing build problems or crashes with 0.4.1.5, or experiencing reliability issues with single onion services, should upgrade.
tags | tool, remote, local, peer2peer
systems | unix
MD5 | d5e290d2a09d4225693cebc37a83097f
Red Hat Security Advisory 2019-2799-01
Posted Sep 19, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2799-01 - Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a focus on high concurrency, performance and low memory usage. Issues addressed include a denial of service vulnerability.

tags | advisory, web, denial of service, imap, protocol
systems | linux, redhat
advisories | CVE-2019-9511, CVE-2019-9513, CVE-2019-9516
MD5 | fc9157e11fa80c71b2a0a2dd56a4aa07
Debian Security Advisory 4525-1
Posted Sep 19, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4525-1 - Simon McVittie reported a flaw in ibus, the Intelligent Input Bus. Due to a misconfiguration during the setup of the DBus, any unprivileged user could monitor and send method calls to the ibus bus of another user, if able to discover the UNIX socket used by another user connected on a graphical environment. The attacker can take advantage of this flaw to intercept keystrokes of the victim user or modify input related configurations through DBus method calls.

tags | advisory
systems | linux, unix, debian
advisories | CVE-2019-14822
MD5 | 75f3eed82be40d45fa1114cfb1271b32
Red Hat Security Advisory 2019-2807-01
Posted Sep 19, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2807-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 60.9.0. Issues addressed include cross site scripting and use-after-free vulnerabilities.

tags | advisory, vulnerability, xss
systems | linux, redhat
advisories | CVE-2019-11739, CVE-2019-11740, CVE-2019-11742, CVE-2019-11743, CVE-2019-11744, CVE-2019-11746, CVE-2019-11752
MD5 | 8685e3cf193f55b69845ac5b1789d002
Red Hat Security Advisory 2019-2805-01
Posted Sep 19, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2805-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. An insufficient input validation issue was addressed.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-6454
MD5 | 4c466aa7a7fd04c5df34264b80e167fb
Red Hat Security Advisory 2019-2806-01
Posted Sep 19, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2806-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include a code execution vulnerability.

tags | advisory, code execution, ruby
systems | linux, redhat
advisories | CVE-2017-17405
MD5 | c9c9e9eb3e6ab5f818e4c7db4f87f0af
Red Hat Security Advisory 2019-2808-01
Posted Sep 19, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2808-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A page cache side channel attack issue was addressed.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2019-5489
MD5 | b8c505141559d74760dae1b1825c1f56
Red Hat Security Advisory 2019-2798-01
Posted Sep 19, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2798-01 - The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file. Issues addressed include a code execution vulnerability.

tags | advisory, code execution
systems | linux, redhat
advisories | CVE-2018-20969, CVE-2019-13638
MD5 | 34806581e4ba31136c0e0f3dc9e691ab
Red Hat Security Advisory 2019-2773-01
Posted Sep 19, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2773-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 60.9.0. Issues addressed include cross site scripting and use-after-free vulnerabilities.

tags | advisory, vulnerability, xss
systems | linux, redhat
advisories | CVE-2019-11739, CVE-2019-11740, CVE-2019-11742, CVE-2019-11743, CVE-2019-11744, CVE-2019-11746, CVE-2019-11752
MD5 | a567ece875f66d23757183ec21e1d8fa
Red Hat Security Advisory 2019-2796-01
Posted Sep 19, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2796-01 - Skydive is an open source real-time network topology and protocols analyzer. Unbounded memory growth issues were addressed.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2019-9512, CVE-2019-9514, CVE-2019-9515
MD5 | d058e1a46d3811397d9f6274669a6e93
Western Digital My Book World II NAS 1.02.12 Hardcoded Credential
Posted Sep 19, 2019
Authored by Noman Riffat

Western Digital My Book World II NAS versions 1.02.12 and below have a hard-coded ssh credential that allows for remote command execution.

tags | exploit, remote
advisories | CVE-2019-16399
MD5 | 3808a885298919e8f753b294c96ace56
macOS 18.7.0 Kernel Local Privilege Escalation
Posted Sep 19, 2019
Authored by A2nkF

macOS version 18.7.0 kernel local privilege escalation exploit that may only work on Macs before 2016.

tags | exploit, kernel, local
MD5 | 8157e1ede5cfd34c7e3aa2019494c8bb
Page 1 of 1
Back1Next

File Archive:

October 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    24 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    7 Files
  • 4
    Oct 4th
    4 Files
  • 5
    Oct 5th
    10 Files
  • 6
    Oct 6th
    1 Files
  • 7
    Oct 7th
    21 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    5 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    17 Files
  • 12
    Oct 12th
    4 Files
  • 13
    Oct 13th
    4 Files
  • 14
    Oct 14th
    15 Files
  • 15
    Oct 15th
    19 Files
  • 16
    Oct 16th
    25 Files
  • 17
    Oct 17th
    17 Files
  • 18
    Oct 18th
    3 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close