what you don't know can hurt you
Showing 1 - 20 of 20 RSS Feed

Files Date: 2019-12-12

Windows Defender Antivirus 4.18.1908.7-0 File Extension Spoofing
Posted Dec 12, 2019
Authored by David Haintz | Site sec-consult.com

Windows Defender Antivirus version 4.18.1908.7-0 suffers from a file extension spoofing vulnerability.

tags | exploit, spoof
systems | windows
MD5 | bf4d6995971178b6b1ea80749698ee1f
Qualys Security Advisory - OpenBSD Dynamic Loader Privilege Escalation
Posted Dec 12, 2019
Authored by Qualys Security Advisory

Qualys discovered a local privilege escalation in OpenBSD's dynamic loader (ld.so). This vulnerability is exploitable in the default installation (via the set-user-ID executable chpass or passwd) and yields full root privileges. They developed a simple proof of concept and successfully tested it against OpenBSD 6.6 (the current release), 6.5, 6.2, and 6.1, on both amd64 and i386; other releases and architectures are probably also exploitable.

tags | exploit, local, root, proof of concept
systems | openbsd
advisories | CVE-2019-19726
MD5 | 5cd25d74e467c8f83e9ece30c0c6b982
OpenNetAdmin 18.1.1 Command Injection
Posted Dec 12, 2019
Authored by Onur ER, mattpascoe | Site metasploit.com

This Metasploit module exploits a command injection in OpenNetAdmin versions 8.5.14 through 18.1.1.

tags | exploit
MD5 | e0125a1f3ab628006c1c5332f3a1c783
Bullwark Momentum Series JAWS 1.0 Directory Traversal
Posted Dec 12, 2019
Authored by numan turle

Bullwark Momentum Series JAWS version 1.0 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 9c13d9574ed7f6ae1ac1f4755cf23500
Red Hat Security Advisory 2019-4222-01
Posted Dec 12, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4222-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. This advisory covers the RPM packages for the OpenShift Service Mesh 1.0.3 release. Issues addressed include bypass and information leakage vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2019-18801, CVE-2019-18802, CVE-2019-18838
MD5 | a9e433f1e75e67d1b8f9ee8ce430edc5
Ubuntu Security Notice USN-4214-2
Posted Dec 12, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4214-2 - USN-4214-1 fixed a vulnerability in RabbitMQ. This update provides the corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. It was discovered that RabbitMQ incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-18609
MD5 | 531ff27eaa01727b4de3f3657de0cfcf
Ubuntu Security Notice USN-4217-2
Posted Dec 12, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4217-2 - USN-4217-1 fixed several vulnerabilities in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM. Andreas Oster discovered that the Samba DNS management server incorrectly handled certain records. An authenticated attacker could possibly use this issue to crash Samba, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, vulnerability
systems | linux, ubuntu
advisories | CVE-2019-14861, CVE-2019-14870
MD5 | 8f8bc5296135141a6c216b6ebef1839a
Red Hat Security Advisory 2019-4205-01
Posted Dec 12, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4205-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.3.0. Issues addressed include buffer overflow and use-after-free vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2019-17005, CVE-2019-17008, CVE-2019-17010, CVE-2019-17011, CVE-2019-17012
MD5 | 302aa6f297ad40425649c3cf9a759b62
Apple Security Advisory 2019-12-10-4
Posted Dec 12, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-12-10-4 - watchOS 5.3.4 is now available and addresses a code execution vulnerability.

tags | advisory, code execution
systems | apple
advisories | CVE-2019-8830
MD5 | efe2abfa605d0b9af26055148d879a1e
Apple Security Advisory 2019-12-10-3
Posted Dec 12, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-12-10-3 - macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra is now available and addresses buffer overflow, code execution, and denial of service vulnerabilities.

tags | advisory, denial of service, overflow, vulnerability, code execution
systems | apple
advisories | CVE-2012-1164, CVE-2012-2668, CVE-2013-4449, CVE-2015-1545, CVE-2017-16808, CVE-2018-10103, CVE-2018-10105, CVE-2018-14461, CVE-2018-14462, CVE-2018-14463, CVE-2018-14464, CVE-2018-14465, CVE-2018-14466, CVE-2018-14467, CVE-2018-14468, CVE-2018-14469, CVE-2018-14470, CVE-2018-14879, CVE-2018-14880, CVE-2018-14881, CVE-2018-14882, CVE-2018-16227, CVE-2018-16228, CVE-2018-16229, CVE-2018-16230, CVE-2018-16300, CVE-2018-16301
MD5 | dddf2d42c70f63769a92decc6f5f8dfa
Apple Security Advisory 2019-12-10-2
Posted Dec 12, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-12-10-2 - iOS 12.4.4 is now available and addresses a code execution vulnerability.

tags | advisory, code execution
systems | apple, ios
advisories | CVE-2019-8830
MD5 | 7ea2f15c6cb33b6ffa5c4ccb81b03eed
Apple Security Advisory 2019-12-10-5
Posted Dec 12, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-12-10-5 - tvOS 13.3 is now available and addresses code execution vulnerabilities.

tags | advisory, vulnerability, code execution
systems | apple
advisories | CVE-2019-15903, CVE-2019-8828, CVE-2019-8830, CVE-2019-8832, CVE-2019-8833, CVE-2019-8835, CVE-2019-8836, CVE-2019-8838, CVE-2019-8844, CVE-2019-8846, CVE-2019-8848
MD5 | 02384b0b061764b2a447d032d4fea9e3
Apple Security Advisory 2019-12-10-6
Posted Dec 12, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-12-10-6 - Safari 13.0.4 is now available and addresses code execution vulnerabilities.

tags | advisory, vulnerability, code execution
systems | apple
advisories | CVE-2019-8835, CVE-2019-8844, CVE-2019-8846
MD5 | 680c79aaea9ce94fc8876e74bd2f8821
Apple Security Advisory 2019-12-10-8
Posted Dec 12, 2019
Authored by Apple | Site apple.com

Apple Security Advisory 2019-12-10-8 - watchOS 6.1.1 is now available and addresses code execution vulnerabilities.

tags | advisory, vulnerability, code execution
systems | apple
advisories | CVE-2019-15903, CVE-2019-8828, CVE-2019-8830, CVE-2019-8832, CVE-2019-8833, CVE-2019-8836, CVE-2019-8838, CVE-2019-8844, CVE-2019-8848, CVE-2019-8856
MD5 | 89e0fdbafe8925445e671261927ede83
Red Hat Security Advisory 2019-4096-01
Posted Dec 12, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4096-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-11255
MD5 | 87333d2b9f1ba3cf341670001b94edb8
Red Hat Security Advisory 2019-4101-01
Posted Dec 12, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4101-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a bypass vulnerability.

tags | advisory, bypass
systems | linux, redhat
advisories | CVE-2019-14845
MD5 | 4538c1b478f34c769f32f1e33d37d987
Red Hat Security Advisory 2019-4097-01
Posted Dec 12, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4097-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include bypass and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
systems | linux, redhat
advisories | CVE-2019-10431, CVE-2019-10432
MD5 | 24aa64575a2e530c96725f09ef0f8b1a
Red Hat Security Advisory 2019-4098-01
Posted Dec 12, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4098-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-14854
MD5 | ea9c2cdd107fe812c5bbcc03e4668c37
Red Hat Security Advisory 2019-4099-01
Posted Dec 12, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-4099-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-11255
MD5 | 31729e90015665ddcb986c469853f7bb
Ubuntu Security Notice USN-4221-1
Posted Dec 12, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4221-1 - It was discovered that libpcap did not properly validate PHB headers in some situations. An attacker could use this to cause a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2019-15165
MD5 | 812516e31f9aef99777b56d729dd109c
Page 1 of 1
Back1Next

File Archive:

December 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    22 Files
  • 2
    Dec 2nd
    33 Files
  • 3
    Dec 3rd
    16 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close