exploit the possibilities
Showing 1 - 17 of 17 RSS Feed

Files Date: 2019-11-26

GNU Privacy Guard 2.2.18
Posted Nov 26, 2019
Site gnupg.org

GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.

Changes: Adjusted tests for now invalid SHA-1 key signatures. Improved --debug-pinentry diagnostics in agent.
tags | tool, encryption
MD5 | f449339d8110c54fc9279961a76cc636
Ubuntu Security Notice USN-4201-1
Posted Nov 26, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4201-1 - It was discovered that Ruby incorrectly handled certain files. An attacker could possibly use this issue to pass path matching what can lead to an unauthorized access. It was discovered that Ruby incorrectly handled certain regular expressions. An attacker could use this issue to cause a denial of service. It was discovered that Ruby incorrectly handled certain HTTP headers. An attacker could possibly use this issue to execute arbitrary code. Various other issues were also addressed.

tags | advisory, web, denial of service, arbitrary, ruby
systems | linux, ubuntu
advisories | CVE-2019-15845, CVE-2019-16201, CVE-2019-16254, CVE-2019-16255
MD5 | 5688b66556ca8a52b217f5c893fce8a2
Red Hat Security Advisory 2019-3978-01
Posted Nov 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3978-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a use-after-free vulnerability.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2019-14821, CVE-2019-15239
MD5 | 20a9c9dcd47c9d6df51538455b3ed08a
Red Hat Security Advisory 2019-3981-01
Posted Nov 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3981-01 - 389 Directory Server is an LDAP version 3 compliant server. The base packages include the Lightweight Directory Access Protocol server and command-line utilities for server administration. Issues addressed include a bypass vulnerability.

tags | advisory, protocol, bypass
systems | linux, redhat
advisories | CVE-2019-14824
MD5 | 595abce4b5404ee06c44db3845947042
Red Hat Security Advisory 2019-3968-01
Posted Nov 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3968-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-ma packages provide the user-space component for running virtual machines that use KVM on the IBM z Systems, IBM Power, and 64-bit ARM architectures. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow, kernel
systems | linux, redhat
advisories | CVE-2019-14378
MD5 | 5ffaf092539d8a04168846ff74982803
pari/gp 2.x Arbitrary File Overwrite
Posted Nov 26, 2019
Authored by Georgi Guninski

pari/gp versions 2.9.1 on Debian Stretch and 2.11 on Debian Buster allow arbitrary file write and hence arbitrary code execution.

tags | exploit, arbitrary, code execution
systems | linux, debian
MD5 | 0ecadd450355ff88db28e7b58b63b32a
Red Hat Security Advisory 2019-3976-01
Posted Nov 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3976-01 - The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces. A stack-based buffer over-read was addressed.

tags | advisory
systems | linux, redhat
advisories | CVE-2018-19519
MD5 | 83e7c8036c242e214ca6333156cd8a47
Red Hat Security Advisory 2019-3979-01
Posted Nov 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3979-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include null pointer and use-after-free vulnerabilities.

tags | advisory, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2019-14821, CVE-2019-15239
MD5 | ddf6fc978b2c40d7bc122ca86b148153
Red Hat Security Advisory 2019-3967-01
Posted Nov 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3967-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service and use-after-free vulnerabilities.

tags | advisory, denial of service, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2017-18208, CVE-2018-10902, CVE-2018-18559, CVE-2018-9568, CVE-2019-3900, CVE-2019-5489, CVE-2019-6974, CVE-2019-7221
MD5 | 6797014aea45908319bf51137e0537d7
Red Hat Security Advisory 2019-3964-01
Posted Nov 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-3964-01 - The python-jinja2 package contains Jinja2, a template engine written in pure Python. Jinja2 provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment. Issues addressed include an information leakage vulnerability.

tags | advisory, python
systems | linux, redhat
advisories | CVE-2016-10745
MD5 | e14df98b24db58426c0dd8eafc81b6b4
Debian Security Advisory 4576-1
Posted Nov 26, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4576-1 - An out-of-bounds write vulnerability was discovered in php-imagick, a PHP extension to create and modify images using the ImageMagick API, which could result in denial of service, or potentially the execution of arbitrary code.

tags | advisory, denial of service, arbitrary, php
systems | linux, debian
advisories | CVE-2019-11037
MD5 | 1c0c97a2183857fe2d941f5ce7401baf
FortiOS 6.0.6 / FortiClientWindows 6.0.6 / FortiClientMac 6.2.1 XOR Encryption
Posted Nov 26, 2019
Authored by Stefan Viehbock | Site sec-consult.com

Fortinet products, including FortiGate and Forticlient, regularly send information to Fortinet servers using XOR "encryption" with a static key. FortiClientWindows versions 6.0.6 and below, and FortiClientMac versions 6.2.1 and below. After this advisory was released, Fortinet has confirmed that only FortiOS version 6.2.0 includes the patch.

tags | exploit
advisories | CVE-2018-9195
MD5 | 9d942ec809afdd8e4584b2dfc2667c2f
Ubuntu Security Notice USN-4200-1
Posted Nov 26, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4200-1 - It was discovered that Redmine incorrectly handle certain inputs that could cause textile formatting errors. An attacker could possibly use this issue to cause a XSS attack. It was discovered that an SQL injection could allow users to access protected information via a crafted object query.

tags | advisory, sql injection
systems | linux, ubuntu
advisories | CVE-2019-17427, CVE-2019-18890
MD5 | ada5fb062f39b2ca18c42a61e8ca97d8
Debian Security Advisory 4575-1
Posted Nov 26, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4575-1 - Several vulnerabilities have been discovered in the chromium web browser.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2019-13723, CVE-2019-13724
MD5 | 5f48a85cea6403bd24799545742c25ae
iNetTools For iOS 8.20 Denial Of Service
Posted Nov 26, 2019
Authored by Ivan Marmolejo

iNetTools for iOS version 8.20 suffers from a denial of service vulnerability.

tags | exploit, denial of service
systems | ios
MD5 | 9bcf97c9fe40f66344be31ec0110c02f
InduSoft Web Studio 8.1 SP1 Denial Of Service
Posted Nov 26, 2019
Authored by chuyreds

InduSoft Web Studio version 8.1 SP1 suffers from a denial of service vulnerability.

tags | exploit, web, denial of service
MD5 | e9f1d17f28667e30360417690582e950
Anhui Huami Mi Fit 4.0.10 Unencrypted Update Check
Posted Nov 26, 2019
Authored by David Coomber

Anhui Huami Mi Fit Android application versions 4.0.10 and below does not encrypt the connection when it checks for an update.

tags | advisory
MD5 | a42279218aa424b93572cdeb05f5c02d
Page 1 of 1
Back1Next

File Archive:

March 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    19 Files
  • 2
    Mar 2nd
    15 Files
  • 3
    Mar 3rd
    30 Files
  • 4
    Mar 4th
    13 Files
  • 5
    Mar 5th
    9 Files
  • 6
    Mar 6th
    0 Files
  • 7
    Mar 7th
    0 Files
  • 8
    Mar 8th
    0 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    0 Files
  • 12
    Mar 12th
    0 Files
  • 13
    Mar 13th
    0 Files
  • 14
    Mar 14th
    0 Files
  • 15
    Mar 15th
    0 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    0 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close