what you don't know can hurt you
Showing 1 - 15 of 15 RSS Feed

Files Date: 2019-12-09

Ubuntu Security Notice USN-4216-1
Posted Dec 9, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4216-1 - Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, or execute arbitrary code.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-11745, CVE-2019-17010, CVE-2019-17014
MD5 | aa57efb97c1e1c7d39ab902468dc590a
Debian Security Advisory 4580-1
Posted Dec 9, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4580-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.

tags | advisory, web, arbitrary
systems | linux, debian
advisories | CVE-2019-17005, CVE-2019-17008, CVE-2019-17010, CVE-2019-17011, CVE-2019-17012
MD5 | 5176500062acdb776a9d23f488f2b8a8
Debian Security Advisory 4579-1
Posted Dec 9, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4579-1 - Two vulnerabilities were discovered in NSS, a set of cryptographic libraries, which may result in denial of service and potentially the execution of arbitrary code.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2019-11745, CVE-2019-17007
MD5 | 2bef598cf156091dbae46fa68159b7c8
GNU Privacy Guard 2.2.19
Posted Dec 9, 2019
Site gnupg.org

GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.

Changes: Fixed double free when decrypting for hidden recipients. Now uses auto-key-locate for encryption even for mail addressed given with angle brackets. Add special case for certain expired intermediate certificates with gpgsm.
tags | tool, encryption
MD5 | cb3b373d08ba078c325299945a7f2818
Oracle Siebel Sales 8.1 Cross Site Scripting
Posted Dec 9, 2019
Authored by omurugur

Oracle Siebel Sales version 8.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | e51ac3fef4c785e1fff5e0fc2bd40700
Alcatel-Lucent Omnivista 8770 Remote Code Execution
Posted Dec 9, 2019
Authored by 0x1911

Alcatel-Lucent Omnivista 8770 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 0f7cc26132500939004bd71ceacd597f
Snipe-IT Open Source Asset Management 4.7.5 Cross Site Scripting
Posted Dec 9, 2019
Authored by Metin Yunus Kandemir

Snipe-IT Open Source Asset Management version 4.7.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | ab654a127618deb61eec45dcac220261
Red Hat Security Advisory 2019-4117-01
Posted Dec 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4117-01 - Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 19.0.0.12 serves as a replacement for Open Liberty 19.0.0.11 and includes bug fixes, enhancements, and security fixes. For specific information about this release, see links in the References section. Issues addressed include an information leakage vulnerability.

tags | advisory, java
systems | linux, redhat
MD5 | 1146dd5ba0c7f968bfc4f6a793e9f538
Ubuntu Security Notice USN-4215-1
Posted Dec 9, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4215-1 - It was discovered that NSS incorrectly handled certain certificates. An attacker could possibly use this issue to cause a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2019-17007
MD5 | 762b720239cb53e4606f143bb0b92e81
Red Hat Security Advisory 2019-4114-01
Posted Dec 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4114-01 - Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. An out-of-bounds write was addressed.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-11745
MD5 | d40c8e0fcd049091fbf544327b3d0891
Red Hat Security Advisory 2019-4115-01
Posted Dec 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4115-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6. Issues addressed include deserialization and null pointer vulnerabilities.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2019-17631, CVE-2019-2945, CVE-2019-2962, CVE-2019-2964, CVE-2019-2973, CVE-2019-2975, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2996, CVE-2019-2999
MD5 | 8e495c366004f842baedfa1b670dd356
Red Hat Security Advisory 2019-4113-01
Posted Dec 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4113-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6. Issues addressed include deserialization and null pointer vulnerabilities.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2019-17631, CVE-2019-2945, CVE-2019-2962, CVE-2019-2964, CVE-2019-2973, CVE-2019-2975, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2996, CVE-2019-2999
MD5 | dd49a5baf3e54ef7e1548b60045b856c
DroneSploit Black Hat Europe 2019 Release
Posted Dec 9, 2019
Authored by Yannick Pasquazzo, Alexandre D'Hondt | Site github.com

DroneSploit is a CLI framework that is based on sploitkit and is an attempt to gather hacking techniques and exploits especially focused on drone hacking. For the ease of use, the interface has a layout that looks like Metasploit.

tags | tool
systems | unix
MD5 | 40cd07e72a9a32f848220525ef7f6670
PRO-7070 Hazir Profesyonel Web Sitesi 1.0 SQL Injection
Posted Dec 9, 2019
Authored by Ahmet Umit Bayram

PRO-7070 Hazir Profesyonel Web Sitesi version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, web, sql injection
MD5 | 791eab6baad5a9a9903848ffb987623d
SpotAuditor 5.3.2 Local Buffer Overflow
Posted Dec 9, 2019
Authored by Kirill Nikolaev

SpotAuditor version 5.3.2 Base64 local buffer overflow SEH exploit.

tags | exploit, overflow, local
MD5 | 67c769fde0bc2d49be93a7f6690b9476
Page 1 of 1
Back1Next

File Archive:

September 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    20 Files
  • 2
    Sep 2nd
    15 Files
  • 3
    Sep 3rd
    15 Files
  • 4
    Sep 4th
    4 Files
  • 5
    Sep 5th
    1 Files
  • 6
    Sep 6th
    1 Files
  • 7
    Sep 7th
    15 Files
  • 8
    Sep 8th
    27 Files
  • 9
    Sep 9th
    7 Files
  • 10
    Sep 10th
    16 Files
  • 11
    Sep 11th
    9 Files
  • 12
    Sep 12th
    0 Files
  • 13
    Sep 13th
    0 Files
  • 14
    Sep 14th
    25 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    15 Files
  • 17
    Sep 17th
    15 Files
  • 18
    Sep 18th
    12 Files
  • 19
    Sep 19th
    1 Files
  • 20
    Sep 20th
    1 Files
  • 21
    Sep 21st
    15 Files
  • 22
    Sep 22nd
    21 Files
  • 23
    Sep 23rd
    8 Files
  • 24
    Sep 24th
    15 Files
  • 25
    Sep 25th
    4 Files
  • 26
    Sep 26th
    1 Files
  • 27
    Sep 27th
    1 Files
  • 28
    Sep 28th
    20 Files
  • 29
    Sep 29th
    11 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close