what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 28 RSS Feed

Files Date: 2020-04-29

Ubuntu Security Notice USN-4348-1
Posted Apr 29, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4348-1 - It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this to issue execute arbitrary scripts or HTML. It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this issue to display arbitrary text on a web page. It was discovered that Mailman incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code. Various other issues were also addressed.

tags | advisory, web, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-0618, CVE-2018-13796, CVE-2020-12137
SHA-256 | 0182a08a46b822207d21d5388a61d1d799ca704a08b40c2ce1915ca7ddf53cd6
Red Hat Security Advisory 2020-1970-01
Posted Apr 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1970-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 81.0.4044.122. Issues addressed include out of bounds read and use-after-free vulnerabilities.

tags | advisory, web, vulnerability
systems | linux, redhat
advisories | CVE-2020-6458, CVE-2020-6459, CVE-2020-6460
SHA-256 | f3c02d2845648f81236b3aeb2c73319fa0b6765978c93983549346fb4111f753
Apache Shiro 1.2.4 Remote Code Execution
Posted Apr 29, 2020
Authored by L | Site metasploit.com

This Metasploit module exploits a vulnerability that allows remote attackers to execute arbitrary code on vulnerable installations of Apache Shiro version 1.2.4.

tags | exploit, remote, arbitrary
advisories | CVE-2016-4437
SHA-256 | 0f186f161bc8220e1b6f8e1a04626191746fd3904db4d3e3cd00c8971c1ab028
Ubuntu Security Notice USN-4341-3
Posted Apr 29, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4341-3 - USN-4341-1 fixed vulnerabilities in Samba. The updated packages for Ubuntu 16.04 LTS introduced a regression when using LDAP. This update fixes the problem. It was discovered that Samba incorrectly handled certain LDAP queries. A remote attacker could possibly use this issue to cause Samba to consume resources, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, vulnerability
systems | linux, ubuntu
advisories | CVE-2020-10704
SHA-256 | 0e47586447fc86381469e18fba418d8b2b981dd8a8da9c30febbacb3a3cb20bc
Red Hat Security Advisory 2020-1963-01
Posted Apr 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1963-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include HTTP response splitting and buffer under-read vulnerabilities.

tags | advisory, web, vulnerability, ruby
systems | linux, redhat
advisories | CVE-2017-17742, CVE-2018-8778
SHA-256 | d89c1f72c11415c877a264f7eb82847e1dc247053f8bb44de1251e355f54f717
Ubuntu Security Notice USN-4347-1
Posted Apr 29, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4347-1 - A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2020-3899
SHA-256 | 6e9597ffacccb413974284a827eaf058b7a6e65f7fc5b43482f127d363dd0aa5
Druva inSync Windows Client 6.5.2 Privilege Escalation
Posted Apr 29, 2020
Authored by Chris Lyne

Druva inSync Windows Client version 6.5.2 suffers from a local privilege escalation vulnerability.

tags | exploit, local
systems | windows
advisories | CVE-2019-3999
SHA-256 | 31dfb7b5bc6e0e8460608ac6efee03fdb1a7159259a19815bc7b9c3106a68129
Red Hat Security Advisory 2020-1962-01
Posted Apr 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1962-01 - Twisted is an event-based framework for internet applications. Twisted Web is a complete web server, aimed at hosting web applications using Twisted and Python, but fully able to serve static pages too. Issues addressed include an HTTP request smuggling vulnerability.

tags | advisory, web, python
systems | linux, redhat
advisories | CVE-2020-10108
SHA-256 | f76a7373f83c63f0468745123de29bfacbdf1df8aba2f0fc31cce2d3f0bf42b8
Ubuntu Security Notice USN-4346-1
Posted Apr 29, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4346-1 - It was discovered that the QLogic Fibre Channel driver in the Linux kernel did not properly check for error, leading to a NULL pointer dereference. A local attacker could possibly use this to cause a denial of service. It was discovered that the Intel Wi-Fi driver in the Linux kernel did not properly check for errors in some situations. A local attacker could possibly use this to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2019-16233, CVE-2019-16234, CVE-2019-19768, CVE-2020-8648, CVE-2020-9383
SHA-256 | 5007d0c0254a1c6a5e5cf578a8b0ddceb4d3bd150c9e8183a5720ea38dd8fea1
hits script 1.0 SQL Injection
Posted Apr 29, 2020
Authored by sajjadbnd

hits script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 5d84239f404367cfcc0755fee28879cc891111f6491a780d5fbb098b79daa891
Ubuntu Security Notice USN-4345-1
Posted Apr 29, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4345-1 - Al Viro discovered that the Linux kernel for s390x systems did not properly perform page table upgrades for kernel sections that use secondary address mode. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the Intel Wi-Fi driver in the Linux kernel did not properly check for errors in some situations. A local attacker could possibly use this to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2019-16234, CVE-2019-19768, CVE-2020-10942, CVE-2020-11608, CVE-2020-11609, CVE-2020-11668, CVE-2020-11884, CVE-2020-8648, CVE-2020-9383
SHA-256 | f6fefff774c0c873366a1f04ab860ca67e33b79ee3a6c1366475705f24550bb0
Red Hat Security Advisory 2020-1966-01
Posted Apr 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1966-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2019-19768
SHA-256 | 747530524fabfcc59f4b85bb4f43544916e29cdf8410fa0c2c3621201f620667
Red Hat Security Advisory 2020-1932-01
Posted Apr 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1932-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Issues addressed include a file overwrite vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-10696
SHA-256 | 276c6f8d4a8d768737d5e541ca8f6c66cbb00d44eed494e475a5d2ef49e4adf0
EmEditor 19.8 Insecure File Permissions
Posted Apr 29, 2020
Authored by sajjadbnd

EmEditor version 19.8 suffers from an insecure file permission vulnerability.

tags | exploit
SHA-256 | a90bafdd2cbfefa34fbbea58c90b700449be9cad9a3c7d2b1c6cd4b3582cdd28
Ubuntu Security Notice USN-4344-1
Posted Apr 29, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4344-1 - It was discovered that the Intel Wi-Fi driver in the Linux kernel did not properly check for errors in some situations. A local attacker could possibly use this to cause a denial of service. It was discovered that the Intel WiMAX 2400 driver in the Linux kernel did not properly deallocate memory in certain situations. A local attacker could use this to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2019-16234, CVE-2019-19051, CVE-2019-19768, CVE-2020-10942, CVE-2020-8648, CVE-2020-8992, CVE-2020-9383
SHA-256 | 8843a25d79794069c7f4af8f0b7bc644c52469c455abf6857c3eb07ff7d996f0
Gigamon GigaVUE 5.5.01.11 Directory Traversal / File Upload
Posted Apr 29, 2020
Authored by Balazs Hambalko

Gigamon GigaVUE version 5.5.01.11 suffers from directory traversal and file upload with command execution vulnerabilities. Gigamon has chosen to sunset this product and not offer a patch.

tags | exploit, vulnerability, file inclusion, file upload
advisories | CVE-2020-12251, CVE-2020-12252
SHA-256 | 4f94429e64d9c424c9369febb776c41eae261c908658edff22b96292c43a0a65
Red Hat Security Advisory 2020-1926-01
Posted Apr 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1926-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Issues addressed include a file overwrite vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-10696
SHA-256 | aedbc836c2e8f38b200fdb4302da9957d9682490a2441628b77176d4f2cfad70
NVIDIA Update Service Daemon 1.0.21 Unquoted Service Path
Posted Apr 29, 2020
Authored by Roberto Pina

NVIDIA Update Service Daemon version 1.0.21 suffers from a nvUpdatusService unquoted service path vulnerability.

tags | exploit
SHA-256 | 503db033cf0df9a8ab28aa60846bb44ef7310c0396452231a748fdc182ab89db
Ubuntu Security Notice USN-4343-1
Posted Apr 29, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4343-1 - Al Viro discovered that the Linux kernel for s390x systems did not properly perform page table upgrades for kernel sections that use secondary address mode. A local attacker could use this to cause a denial of service or execute arbitrary code.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2020-11884
SHA-256 | ab66cf024812bc9e3054dcbc09600092390f811a199175dcbe3a956a3cbb59a3
Ubuntu Security Notice USN-4342-1
Posted Apr 29, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4342-1 - Al Viro discovered that the Linux kernel for s390x systems did not properly perform page table upgrades for kernel sections that use secondary address mode. A local attacker could use this to cause a denial of service or execute arbitrary code. It was discovered that the Intel Wi-Fi driver in the Linux kernel did not properly check for errors in some situations. A local attacker could possibly use this to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2019-16234, CVE-2019-19768, CVE-2020-10942, CVE-2020-11884, CVE-2020-8648, CVE-2020-8992, CVE-2020-9383
SHA-256 | 8be453bd452ae15bb83b01ddb47f279540dafd5d10a9322ef239871e73451623
Red Hat Security Advisory 2020-1931-01
Posted Apr 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1931-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Issues addressed include a file overwrite vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-10696
SHA-256 | c241c0a7096656ffc7f5ebf489cd3b4b68539bc597b3fd8ee3e5b516852ac409
Red Hat Security Advisory 2020-1933-01
Posted Apr 29, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1933-01 - The targetcli package contains an administration shell for configuring Internet Small Computer System Interface, Fibre Channel over Ethernet, and other SCSI targets, using the Target Core Mod/Linux-IO kernel target subsystem. FCoE users also need to install and use the fcoe-utils package. A command execution vulnerability was addressed.

tags | advisory, shell, kernel
systems | linux, redhat
advisories | CVE-2020-10699
SHA-256 | 216995f16c2986f30c6a10d01eddb066dae26192caf7460b7a6638b2fb940e1f
Open-AudIT Professional 3.3.1 Remote Code Execution
Posted Apr 29, 2020
Authored by Askar

Open-AudIT Professional version 3.3.1 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2020-12078
SHA-256 | 5893982b84476fb326ba71dec7355182063aa15846f74c2968e884acb1e5e0f0
Open-AudIT 3.2.2 Command Injection / SQL Injection
Posted Apr 29, 2020
Authored by Core Security Technologies, Ivan Huertas, Pablo A. Zurro | Site coresecurity.com

Open-AudIT version 3.2.2 suffers from OS command injection, arbitrary file upload, and remote SQL injection vulnerabilities.

tags | exploit, remote, arbitrary, vulnerability, sql injection, file upload
advisories | CVE-2020-11941, CVE-2020-11942, CVE-2020-11943
SHA-256 | d8e9402b9604c3706a2115909b60726c461d0262c2196626918539a2164e5352
School ERP Pro 1.0 Arbitrary File Read
Posted Apr 29, 2020
Authored by Besim Altinok

School ERP Pro version 1.0 suffers from an arbitrary file read vulnerability.

tags | exploit, arbitrary
SHA-256 | 66a872f32ba02b4e93f374c2a694f871df9e25610abafbc0a4b38e5fd174d855
Page 1 of 2
Back12Next

File Archive:

July 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    27 Files
  • 2
    Jul 2nd
    10 Files
  • 3
    Jul 3rd
    35 Files
  • 4
    Jul 4th
    27 Files
  • 5
    Jul 5th
    18 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    28 Files
  • 9
    Jul 9th
    44 Files
  • 10
    Jul 10th
    24 Files
  • 11
    Jul 11th
    25 Files
  • 12
    Jul 12th
    11 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    28 Files
  • 16
    Jul 16th
    6 Files
  • 17
    Jul 17th
    34 Files
  • 18
    Jul 18th
    6 Files
  • 19
    Jul 19th
    34 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close