what you don't know can hurt you
Showing 1 - 15 of 15 RSS Feed

Files Date: 2019-09-24

vBulletin 5.x Pre-Auth Remote Code Execution
Posted Sep 24, 2019
Authored by vb_z3r0.d4y

vBulletin version 5.x pre-authentication remote code execution zero day exploit.

tags | exploit, remote, code execution
SHA-256 | 35e895c984e393390fc6a2c122105de7943500da5130701dc0d2952b5feb5148
Suricata IDPE 4.1.5
Posted Sep 24, 2019
Site openinfosecfoundation.org

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.

Changes: One protocol parser feature has been added alongside many bug fixes.
tags | tool, intrusion detection
systems | unix
SHA-256 | cee5f6535cd7fe63fddceab62eb3bc66a63fc464466c88ec7a41b7a1331ac74b
Ubuntu Security Notice USN-4138-1
Posted Sep 24, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4138-1 - It was discovered that LibreOffice incorrectly handled embedded scripts in document files. If a user were tricked into opening a specially crafted document, a remote attacker could possibly execute arbitrary code.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-9854
SHA-256 | 35de2613e4284f14f087555d52e861df76ee5b21c98f0c0d29c66caec5071819
ABRT sosreport Privilege Escalation
Posted Sep 24, 2019
Authored by rebel, Brendan Coles | Site metasploit.com

This Metasploit module attempts to gain root privileges on RHEL systems with a vulnerable version of Automatic Bug Reporting Tool (ABRT) configured as the crash handler. sosreport uses an insecure temporary directory, allowing local users to write to arbitrary files (CVE-2015-5287). This module has been tested successfully on abrt 2.1.11-12.el7 on RHEL 7.0 x86_64 and abrt 2.1.11-19.el7 on RHEL 7.1 x86_64.

tags | exploit, arbitrary, local, root
advisories | CVE-2015-5287
SHA-256 | fb67e2e69d375b5a9cd6b9e13c28c727a1dc0a6071f2e268e407fb071b35e7f5
Microsoft SharePoint 2013 SP1 Cross Site Scripting
Posted Sep 24, 2019
Authored by Davide Cioccia

Microsoft SharePoint 2013 SP1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-1262
SHA-256 | 61c2df19bbe2d9b9d90f58447baab7c47bff3130a7637eda0622119ec87336cb
Red Hat Security Advisory 2019-2893-01
Posted Sep 24, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2893-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Issues addressed include a denial of service vulnerability.

tags | advisory, web, denial of service
systems | linux, redhat
advisories | CVE-2019-9517
SHA-256 | ef2160b15f37357119ebea13550b7b5e62b3699c1d2f2e4bf371a1d3ac1ea485
iMessage NSSharedKeyDictionary Decoding Out Of Bounds Read
Posted Sep 24, 2019
Authored by Google Security Research, natashenka

An issues exists in iMessage where decoding NSSharedKeyDictionary can read objects out of bounds.

tags | exploit
advisories | CVE-2019-8641
SHA-256 | ec6fed9513fd047a8b8dda36d5bd4db2dcf6f3e0aa1d06d56adc0e4f1bd3e3ea
Red Hat Security Advisory 2019-2892-01
Posted Sep 24, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2892-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Issues addressed include buffer overflow and null pointer vulnerabilities.

tags | advisory, overflow, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2018-10839, CVE-2018-11806, CVE-2018-17962, CVE-2019-12155, CVE-2019-6778
SHA-256 | 0fcbebe953b6c4aada1fd3c4b1308f4ee58c35bc19df6c3803aefe01b2e4c60a
pfSense 2.3.4 / 2.4.4-p3 Remote Code Injection
Posted Sep 24, 2019
Authored by Nassim Asrir

pfSense versions 2.3.4 and 2.4.4-p3 remote code injection exploit.

tags | exploit, remote
advisories | CVE-2019-16701
SHA-256 | c854d27a1065ef73a2144977874f25615126a7e15634f3b279d720bc81670794
File Sharing Wizard 1.5.0 SEH Buffer Overflow
Posted Sep 24, 2019
Authored by x00pwn

File Sharing Wizard version 1.5.0 POST SEH buffer overflow exploit.

tags | exploit, overflow
advisories | CVE-2019-16724
SHA-256 | 241a76ac0e6d69be0753a743ecf0138c986af056b02442e8e5a4e9b4c2299b78
Red Hat Security Advisory 2019-2889-01
Posted Sep 24, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2889-01 - The redhat-virtualization-host packages provide the Red Hat Virtualization Host. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2019-14835
SHA-256 | d5827bba730659e241ea9707287917d979b5932f2c8902da3acbb900b1e4f7e1
Red Hat Security Advisory 2019-2817-01
Posted Sep 24, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2817-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. A credential disclosure issue was addressed.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-10214
SHA-256 | f641b11810213c10e76ae84343800b404402e200c37da78e628fef84de251544
Easy File Sharing Web Server 7.2 SEH Buffer Overflow
Posted Sep 24, 2019
Authored by x00pwn

Easy File Sharing Web Server version 7.2 local SEH buffer overflow exploit.

tags | exploit, web, overflow, local
SHA-256 | f043d69c1c45e43760a8e3904eaa9b86b8f8cdf2b9d9fda4a8218e4b3598b482
Red Hat Security Advisory 2019-2885-01
Posted Sep 24, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2885-01 - Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Issues addressed include an out of bounds write vulnerability.

tags | advisory, imap
systems | linux, redhat, unix
advisories | CVE-2019-11500
SHA-256 | 9fd2c275018a733cb0c3bfff40805dbf55029a0ac78e0633b48964b677b6156c
DeviceViewer 3.12.0.1 Denial Of Service
Posted Sep 24, 2019
Authored by x00pwn

DeviceViewer version 3.12.0.1 suffers from a user creation denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | 54256f206f2ee8cf4199b320968002059a55b59e879c029e05f049e15aae4887
Page 1 of 1
Back1Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    6 Files
  • 24
    May 24th
    19 Files
  • 25
    May 25th
    5 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close