what you don't know can hurt you
Showing 1 - 25 of 360 RSS Feed

Files Date: 2020-01-01 to 2020-01-31

Red Hat Security Advisory 2020-0310-01
Posted Jan 30, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0310-01 - Apache XML-RPC is a Java implementation of XML-RPC, a popular protocol that uses XML over HTTP to implement remote procedure calls. Issues addressed include a deserialization vulnerability.

tags | advisory, java, remote, web, protocol
systems | linux, redhat
advisories | CVE-2019-17570
MD5 | 6eeacd509cd99d6bc1f74bc19b6a57e9
Ubuntu Security Notice USN-4262-1
Posted Jan 30, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4262-1 - Daniel Preussker discovered that OpenStack Keystone incorrectly handled the list credentials API. A user with a role on the project could use this issue to view any other user's credentials.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2019-19687
MD5 | e386ceb8a59dc29538edab28c5b792f9
Red Hat Security Advisory 2020-0296-01
Posted Jan 30, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0296-01 - OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2020-6851
MD5 | 7da9b475178671dd742998ddbda4f430
Red Hat Security Advisory 2020-0295-01
Posted Jan 30, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0295-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.4.1 ESR. Issues addressed include buffer overflow, bypass, and use-after-free vulnerabilities.

tags | advisory, web, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2019-17005, CVE-2019-17008, CVE-2019-17010, CVE-2019-17011, CVE-2019-17012, CVE-2019-17016, CVE-2019-17017, CVE-2019-17022, CVE-2019-17024, CVE-2019-17026
MD5 | bdc85b62a883b5a60f3806fcc1f56d46
Red Hat Security Advisory 2020-0293-01
Posted Jan 30, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0293-01 - Simple DirectMedia Layer is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2019-13616
MD5 | 7153c937643d5b76d958d64a48dcc139
Red Hat Security Advisory 2020-0291-01
Posted Jan 30, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0291-01 - A library to handle bidirectional scripts, so that the display is done in the proper way, while the text data itself is always written in logical order. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.

tags | advisory, denial of service, overflow, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2019-18397
MD5 | de06913bd2b065e8aedfa4a04c814d76
Red Hat Security Advisory 2020-0292-01
Posted Jan 30, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0292-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.4.1. Issues addressed include buffer overflow, bypass, and use-after-free vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2019-17005, CVE-2019-17008, CVE-2019-17010, CVE-2019-17011, CVE-2019-17012, CVE-2019-17016, CVE-2019-17017, CVE-2019-17022, CVE-2019-17024, CVE-2019-17026
MD5 | dff2c54670d899a7fc7c1762773f5e56
Debian Security Advisory 4610-1
Posted Jan 30, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4610-1 - Multiple code execution vulnerabilities have been addressed in the webkit2gtk web engine.

tags | advisory, web, vulnerability, code execution
systems | linux, debian
advisories | CVE-2019-8835, CVE-2019-8844, CVE-2019-8846
MD5 | 329e93db698d4f8060c880553c0781de
Apple Security Advisory 2020-1-29-1
Posted Jan 30, 2020
Authored by Apple | Site apple.com

Apple Security Advisory 2020-1-29-1 - iCloud for Windows 7.17 addresses buffer overflow, code execution, cross site scripting, and denial of service vulnerabilities.

tags | advisory, denial of service, overflow, vulnerability, code execution, xss
systems | windows, apple, 7
advisories | CVE-2020-3825, CVE-2020-3826, CVE-2020-3846, CVE-2020-3862, CVE-2020-3865, CVE-2020-3867, CVE-2020-3868
MD5 | 9c9afef3dc9b4fe91489f657313fe638
Apple Security Advisory 2020-1-29-2
Posted Jan 30, 2020
Authored by Apple | Site apple.com

Apple Security Advisory 2020-1-29-2 - iCloud for Windows 10.9.2 is now available and addresses buffer overflow, code execution, cross site scripting, and denial of service vulnerabilities.

tags | advisory, denial of service, overflow, vulnerability, code execution, xss
systems | windows, apple
advisories | CVE-2020-3825, CVE-2020-3826, CVE-2020-3846, CVE-2020-3862, CVE-2020-3865, CVE-2020-3867, CVE-2020-3868
MD5 | 0fcb0ea7e9eb51d1c25b2e0a08bfdc8b
Debian Security Advisory 4611-1
Posted Jan 30, 2020
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4611-1 - Qualys discovered that the OpenSMTPD SMTP server performed insufficient validation of email addresses which could result in the execution of arbitrary commands as root. In addition this update fixes a denial of service by triggering an opportunistic TLS downgrade.

tags | advisory, denial of service, arbitrary, root
systems | linux, debian
advisories | CVE-2020-7247
MD5 | 86b57c455931fcd59ee4f86326e684f4
Ubuntu Security Notice USN-4261-1
Posted Jan 30, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4261-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2019-8835
MD5 | 016f695463157c80fd637ddc1347439f
Ubuntu Security Notice USN-4259-1
Posted Jan 30, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4259-1 - Michael Stepankin and Olga Barinova discovered that Apache Solr was vulnerable to an XXE attack. An attacker could use this vulnerability to remotely execute code.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2017-12629
MD5 | ce4cecaab539d8db2ff82546473aa4a4
Windows/x86 Dynamic Bind Shell / Null-Free Shellcode
Posted Jan 30, 2020
Authored by Bobby Cooke

571 bytes small Microsoft Windows x86 dynamic bind shell and null-free shellcode.

tags | shell, x86, shellcode
systems | windows
MD5 | 61ae8434a5edb8b37775ebb965df9ff6
TrendMicro Anti-Threat Toolkit Improper Fix
Posted Jan 30, 2020
Authored by Stefan Kanthak

The fix that was applied to address a code execution vulnerability in Trend Micro Anti-Threat Toolkit (ATTK) was insufficient.

tags | exploit, code execution
advisories | CVE-2019-20358, CVE-2019-9491
MD5 | d1a12b9a4603d65949a06bbd3e3891bd
Hunting Process Injection By Windows API Calls
Posted Jan 30, 2020
Authored by Uriel Kosayev, Nir Yehoshua

Whitepaper called Hunting Process Injection By Windows API Calls.

tags | paper
systems | windows
MD5 | d8cdf69a64e4e424c4ea91d7cae8f5b4
rConfig 3.9.3 Remote Code Execution
Posted Jan 30, 2020
Authored by vikingfr

rConfig version 3.9.3 suffers from an authenticated remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2019-19509
MD5 | 26b376c625041af03fef93e48412214a
OpenSMTPD 6.6.2 Remote Code Execution
Posted Jan 30, 2020
Authored by Qualys Security Advisory, 1F98D

OpenSMTPD version 6.6.2 remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2020-7247
MD5 | 720e1a175b5cc8abf21ab6dbeb5c21e7
Centreon 19.10.5 Remote Command Execution
Posted Jan 29, 2020
Authored by Fabien Aunay, Omri Baso

Centreon version 19.10.5 suffers from a Pollers remote command execution vulnerability.

tags | exploit, remote
MD5 | 74b4928a515161688d46037ed3182142
Cups Easy 1.0 Cross Site Request Forgery
Posted Jan 29, 2020
Authored by J3rryBl4nks

Cups Easy version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2020-8424, CVE-2020-8425
MD5 | cafc75de89af6e63e57122e223d909bb
Centreon 19.10.5 Remote Command Execution
Posted Jan 29, 2020
Authored by Fabien Aunay, Omri Baso

Centreon version 19.10.5 suffers from a centreontrapd remote command execution vulnerability.

tags | exploit, remote
MD5 | e4cd583822c0120dac35bdb7b26bf32b
XMLBlueprint 16.191112 XML Injection
Posted Jan 29, 2020
Authored by Javier Olmedo

XMLBlueprint version 16.191112 suffers from an XML external entity injection vulnerability.

tags | exploit
advisories | CVE-2019-19032
MD5 | 6fc60d30c5cfdc3911a73e4c53bcd2ff
OpenBSD OpenSMTPD Privilege Escalation / Code Execution
Posted Jan 29, 2020
Authored by Qualys Security Advisory

Qualys discovered a vulnerability in OpenSMTPD, OpenBSD's mail server. This vulnerability is exploitable since May 2018 (commit a8e222352f, "switch smtpd to new grammar") and allows an attacker to execute arbitrary shell commands, as root.

tags | exploit, arbitrary, shell, root
systems | openbsd
advisories | CVE-2020-7247
MD5 | a167abd4844564a180e18a022a305764
Red Hat Security Advisory 2020-0279-01
Posted Jan 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0279-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2019-11135
MD5 | a35faedb60d9b229d34cee2c8e9a9df2
Red Hat Security Advisory 2020-0273-01
Posted Jan 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0273-01 - SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server. A table corruption detection issue has been addressed.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-13734
MD5 | 1fefecbd6b38401c49c79054c3f3fa1a
Page 1 of 15
Back12345Next

File Archive:

February 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    1 Files
  • 2
    Feb 2nd
    2 Files
  • 3
    Feb 3rd
    17 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    16 Files
  • 7
    Feb 7th
    19 Files
  • 8
    Feb 8th
    1 Files
  • 9
    Feb 9th
    2 Files
  • 10
    Feb 10th
    15 Files
  • 11
    Feb 11th
    20 Files
  • 12
    Feb 12th
    12 Files
  • 13
    Feb 13th
    18 Files
  • 14
    Feb 14th
    17 Files
  • 15
    Feb 15th
    4 Files
  • 16
    Feb 16th
    4 Files
  • 17
    Feb 17th
    34 Files
  • 18
    Feb 18th
    15 Files
  • 19
    Feb 19th
    19 Files
  • 20
    Feb 20th
    20 Files
  • 21
    Feb 21st
    11 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close