what you don't know can hurt you
Showing 1 - 15 of 15 RSS Feed

Files Date: 2019-12-09

Ubuntu Security Notice USN-4216-1
Posted Dec 9, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4216-1 - Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, or execute arbitrary code.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-11745, CVE-2019-17010, CVE-2019-17014
MD5 | aa57efb97c1e1c7d39ab902468dc590a
Debian Security Advisory 4580-1
Posted Dec 9, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4580-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.

tags | advisory, web, arbitrary
systems | linux, debian
advisories | CVE-2019-17005, CVE-2019-17008, CVE-2019-17010, CVE-2019-17011, CVE-2019-17012
MD5 | 5176500062acdb776a9d23f488f2b8a8
Debian Security Advisory 4579-1
Posted Dec 9, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4579-1 - Two vulnerabilities were discovered in NSS, a set of cryptographic libraries, which may result in denial of service and potentially the execution of arbitrary code.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2019-11745, CVE-2019-17007
MD5 | 2bef598cf156091dbae46fa68159b7c8
GNU Privacy Guard 2.2.19
Posted Dec 9, 2019
Site gnupg.org

GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.

Changes: Fixed double free when decrypting for hidden recipients. Now uses auto-key-locate for encryption even for mail addressed given with angle brackets. Add special case for certain expired intermediate certificates with gpgsm.
tags | tool, encryption
MD5 | cb3b373d08ba078c325299945a7f2818
Oracle Siebel Sales 8.1 Cross Site Scripting
Posted Dec 9, 2019
Authored by omurugur

Oracle Siebel Sales version 8.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | e51ac3fef4c785e1fff5e0fc2bd40700
Alcatel-Lucent Omnivista 8770 Remote Code Execution
Posted Dec 9, 2019
Authored by 0x1911

Alcatel-Lucent Omnivista 8770 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 0f7cc26132500939004bd71ceacd597f
Snipe-IT Open Source Asset Management 4.7.5 Cross Site Scripting
Posted Dec 9, 2019
Authored by Metin Yunus Kandemir

Snipe-IT Open Source Asset Management version 4.7.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | ab654a127618deb61eec45dcac220261
Red Hat Security Advisory 2019-4117-01
Posted Dec 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4117-01 - Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 19.0.0.12 serves as a replacement for Open Liberty 19.0.0.11 and includes bug fixes, enhancements, and security fixes. For specific information about this release, see links in the References section. Issues addressed include an information leakage vulnerability.

tags | advisory, java
systems | linux, redhat
MD5 | 1146dd5ba0c7f968bfc4f6a793e9f538
Ubuntu Security Notice USN-4215-1
Posted Dec 9, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4215-1 - It was discovered that NSS incorrectly handled certain certificates. An attacker could possibly use this issue to cause a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2019-17007
MD5 | 762b720239cb53e4606f143bb0b92e81
Red Hat Security Advisory 2019-4114-01
Posted Dec 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4114-01 - Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. An out-of-bounds write was addressed.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-11745
MD5 | d40c8e0fcd049091fbf544327b3d0891
Red Hat Security Advisory 2019-4115-01
Posted Dec 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4115-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6. Issues addressed include deserialization and null pointer vulnerabilities.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2019-17631, CVE-2019-2945, CVE-2019-2962, CVE-2019-2964, CVE-2019-2973, CVE-2019-2975, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2996, CVE-2019-2999
MD5 | 8e495c366004f842baedfa1b670dd356
Red Hat Security Advisory 2019-4113-01
Posted Dec 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4113-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6. Issues addressed include deserialization and null pointer vulnerabilities.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2019-17631, CVE-2019-2945, CVE-2019-2962, CVE-2019-2964, CVE-2019-2973, CVE-2019-2975, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2996, CVE-2019-2999
MD5 | dd49a5baf3e54ef7e1548b60045b856c
DroneSploit Black Hat Europe 2019 Release
Posted Dec 9, 2019
Authored by Yannick Pasquazzo, Alexandre D'Hondt | Site github.com

DroneSploit is a CLI framework that is based on sploitkit and is an attempt to gather hacking techniques and exploits especially focused on drone hacking. For the ease of use, the interface has a layout that looks like Metasploit.

tags | tool
systems | unix
MD5 | 40cd07e72a9a32f848220525ef7f6670
PRO-7070 Hazir Profesyonel Web Sitesi 1.0 SQL Injection
Posted Dec 9, 2019
Authored by Ahmet Umit Bayram

PRO-7070 Hazir Profesyonel Web Sitesi version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, web, sql injection
MD5 | 791eab6baad5a9a9903848ffb987623d
SpotAuditor 5.3.2 Local Buffer Overflow
Posted Dec 9, 2019
Authored by Kirill Nikolaev

SpotAuditor version 5.3.2 Base64 local buffer overflow SEH exploit.

tags | exploit, overflow, local
MD5 | 67c769fde0bc2d49be93a7f6690b9476
Page 1 of 1
Back1Next

File Archive:

May 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    14 Files
  • 2
    May 2nd
    3 Files
  • 3
    May 3rd
    1 Files
  • 4
    May 4th
    18 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    21 Files
  • 7
    May 7th
    15 Files
  • 8
    May 8th
    19 Files
  • 9
    May 9th
    1 Files
  • 10
    May 10th
    2 Files
  • 11
    May 11th
    18 Files
  • 12
    May 12th
    39 Files
  • 13
    May 13th
    15 Files
  • 14
    May 14th
    17 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    2 Files
  • 17
    May 17th
    2 Files
  • 18
    May 18th
    15 Files
  • 19
    May 19th
    21 Files
  • 20
    May 20th
    15 Files
  • 21
    May 21st
    15 Files
  • 22
    May 22nd
    6 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close