Ubuntu Security Notice 4230-1 - It was discovered that ClamAV incorrectly handled certain MIME messages. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service.
0b444d414bd2fea0347ff745ad3f6c95fcb4e2b6f3605303eb34f4422df51963Red Hat Security Advisory 2020-0057-01 - The Apache Commons BeanUtils library provides utility methods for accessing and modifying properties of arbitrary JavaBeans.
9c0171ee18da9b9577446a113eea35a1dca7eb54bf7143c4b0eb3f1de2509fabDebian Linux Security Advisory 4598-1 - Simon Charette reported that the password reset functionality in Django, a high-level Python web development framework, uses a Unicode case-insensitive query to retrieve accounts matching the email address requesting the password reset. An attacker can take advantage of this flaw to potentially retrieve password reset tokens and hijack accounts.
f5673ae929ba17e846a9995b9d5afe651944e292787ae289f570b05b3e483a97Debian Linux Security Advisory 4599-1 - Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform various Cross-Side Scripting (XSS) and Cross-Site Request Forgery (CSRF) attacks, create open redirects, poison cache, and bypass authorization access and input sanitation.
dee089686a65d4ec93a8523a27603cadf0d9b6bd7647954645a7625e9a51adaaIt was discovered that a heap-based buffer overflow existed in the Marvell WiFi-Ex Driver for the Linux kernel. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. It was discovered that a heap-based buffer overflow existed in the Marvell Libertas WLAN Driver for the Linux kernel. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Various other issues were also addressed.
7a78ab2637b0c415c10d8aece2f49d7cb0ffca96812fc550881491945ac50eacOnline Book Store version 1.0 suffers from an unauthenticated remote code execution vulnerability.
4692c6c9662844ad79908b186d29c759f227be8c93518290083e9e2ff398d70bASTPP VoIP version 4.0.1 suffers from a remote code execution vulnerability.
0bac9bc8752b1acc6e2aa26bbeaf0fd6a77bfeb6048649743f2f7b5354a41c00EBBISLAND EBBSHAVE 6100-09-04-1441 suffers from a remote buffer overflow vulnerability.
752c0dd1427815a28ffca2405491b7679ebea46ed02260ee83be0b02302b6008Codoforum version 4.8.3 suffers from a persistent cross site scripting vulnerability under the topic additions.
237ea4f266fba531b4d3011ed07e097452c7151743f3226b40f985691fafe92aJetBrains TeamCity version 2018.2.4 suffers from a remote code execution vulnerability.
0c3bfaca43dec73060f830e405b2120c3ab1e6d61f374999890652784051cad8Tomcat version 9.0.0.M1 proprietaryEvaluate sandbox escape proof of concept.
6387cb2de359a320bca8b8198ebe1e1860a11299b6b805ab3668970553e0d452Django versions prior to 3.0, 2.2, and 1.11 account hijack proof of concept exploit.
09c0f50e3a8e55f9ff1ddd09386d4e27b175f680162cb0b2fda29e9cca3ed4b9Sony Playstation 4 (PS4) versions prior to 6.72 webkit code execution proof of concept exploit.
41d8fd6e5ae04692eff8d6ebee4de5a61ab974ca60aa476e46b3952dd493730bCisco DCNM JBoss version 10.4 suffers from a credential leakage vulnerability.
2e290ed0460d004995aa5c6beda5de80054af8fec723414b381b7f8d67e3a1a2Ubuntu Security Notice 4227-2 - USN-4227-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux kernel for Microsoft Azure Cloud systems for Ubuntu 14.04 ESM. It was discovered that a heap-based buffer overflow existed in the Marvell WiFi-Ex Driver for the Linux kernel. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.
aa121640b79887c848fac3a9914336f3dd7ae6e39cbf987c13fd20f2f462a2a4Ubuntu Security Notice 4228-2 - USN-4228-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 ESM. It was discovered that a heap-based buffer overflow existed in the Marvell WiFi-Ex Driver for the Linux kernel. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.
eeaa5a05e77427ac48c67cf7fceca26acf66ad45d1091ad4fd1e0f1f49297363
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed