what you don't know can hurt you
Showing 1 - 11 of 11 RSS Feed

Files Date: 2020-03-09

Richsploit RichFaces Exploitation Toolkit
Posted Mar 9, 2020
Authored by redtimmysec

This tool can be used to exploit vulnerable versions of RichFaces. It has payloads for 4 vulnerabilities that have been identified, which can lead to remote code execution via java deserialization and EL injection.

tags | exploit, tool, java, remote, vulnerability, code execution
advisories | CVE-2013-2165, CVE-2015-0279, CVE-2018-14667
MD5 | dbe44bcd30e854ad24e9361d53b24ebb
pppd 2.4.8 Buffer Overflow
Posted Mar 9, 2020
Authored by Marcin Kozlowski

Proof of concept crash exploit for pppd versions 2.4.2 through 2.4.8. It leverages a rhostname buffer overflow in the eap_request and eap_response functions in eap.c.

tags | exploit, overflow, proof of concept
advisories | CVE-2020-8597
MD5 | 694ecff0fb2c7aa589655a4edc33f057
Citrix Gateway 11.1 / 12.0 / 12.1 Cache Bypass
Posted Mar 9, 2020
Authored by Micha Borrmann

Citrix Gateway versions 11.1, 12.0, and 12.1 suffer from a caching bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2020-10111
MD5 | 1009c64a1d888ddc6c7512f4221d1e4d
Citrix Gateway 11.1 / 12.0 / 12.1 Cache Poisoning
Posted Mar 9, 2020
Authored by Micha Borrmann

Citrix Gateway versions 11.1, 12.0, and 12.1 suffer from a cache poisoning vulnerability.

tags | exploit
advisories | CVE-2020-10112
MD5 | 07d4982030785b7b90341e76e3e07ea5
Ubuntu Security Notice USN-4297-1
Posted Mar 9, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4297-1 - It was discovered that runC incorrectly checked mount targets. An attacker with a malicious container image could possibly mount over the /proc directory and escalate privileges. This issue only affected Ubuntu 18.04 LTS. It was discovered that runC incorrectly performed access control. An attacker could possibly use this issue to escalate privileges. Various other issues were also addressed.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2019-16884, CVE-2019-19921
MD5 | a3d8981993c427634845baf9e68183e0
Red Hat Security Advisory 2020-0740-01
Posted Mar 9, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0740-01 - The kernel-alt packages provide the Linux kernel version 4.x. Issues addressed include buffer overflow, denial of service, information leakage, and null pointer vulnerabilities.

tags | advisory, denial of service, overflow, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2018-16871, CVE-2019-11884, CVE-2019-15030, CVE-2019-15916, CVE-2019-17666, CVE-2019-18805, CVE-2019-3459, CVE-2019-3460
MD5 | 0838a8ba90706fd715178fe0c2e71ee7
Red Hat Security Advisory 2020-0738-01
Posted Mar 9, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-0738-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 80.0.3987.122. Issues addressed include integer overflow, type confusion, and use-after-free vulnerabilities.

tags | advisory, web, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2020-6383, CVE-2020-6384, CVE-2020-6386, CVE-2020-6407, CVE-2020-6418
MD5 | 1911f29dce8b2f4b15487931aa401390
Citrix Gateway 11.1 / 12.0 / 12.1 Information Disclosure
Posted Mar 9, 2020
Authored by Micha Borrmann

Citrix Gateway versions 11.1, 12.0, and 12.1 suffer from an information disclosure vulnerability.

tags | exploit, info disclosure
advisories | CVE-2020-10110
MD5 | d5d012e0d06c1a3aa0e4cd4c44123f39
Windows User Accounts Penetration Testing
Posted Mar 9, 2020
Authored by Moslem Haghighian

Whitepaper called Windows User Accounts Penetration Testing. Written in Persian.

tags | paper
systems | windows
MD5 | 24202c63017e503036f420cbfc0ea8a1
60CycleCMS 2.5.2 SQL Injection
Posted Mar 9, 2020
Authored by Unkn0wn

60CycleCMS version 2.5.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c2949b82eed1016ff1e00cd651d36dc2
iOS / macOS AWDL Heap Corruption / Bounds Checking
Posted Mar 9, 2020
Authored by Google Security Research, ianbeer

A remote iOS / macOS heap corruption issue exists due to insufficient bounds checking in AWDL.

tags | exploit, remote
systems | ios
advisories | CVE-2020-3843
MD5 | bf5b45700458564cfc6029e73e8906ec
Page 1 of 1
Back1Next

File Archive:

October 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    16 Files
  • 2
    Oct 2nd
    1 Files
  • 3
    Oct 3rd
    1 Files
  • 4
    Oct 4th
    24 Files
  • 5
    Oct 5th
    24 Files
  • 6
    Oct 6th
    11 Files
  • 7
    Oct 7th
    14 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    1 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    7 Files
  • 12
    Oct 12th
    15 Files
  • 13
    Oct 13th
    26 Files
  • 14
    Oct 14th
    10 Files
  • 15
    Oct 15th
    6 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close