Showing 1 - 15 of 15

Files Date: 2020-06-03

Node.js Hostname Verification Bypass: Posted Jun 3, 2020; Authored by Google Security Research, Felix Wilhelm; Insecure TLS session reuse can lead to a hostname verification bypass in Node.js.; tags | exploit; MD5 | 9bde5356a44eb307d096d404cbcdc1d0; Download | Favorite | View

Apache Tomcat CVE-2020-9484 Proof Of Concept: Posted Jun 3, 2020; Authored by redtimmysec, masahiro331; Apache Tomcat is affected by a Java deserialization vulnerability if the PersistentManager is configured as session manager. Successful exploitation requires the attacker to be able to upload an arbitrary file to the server. This archive includes a write up and proof of concept code from multiple researchers.; tags | exploit, java, arbitrary, proof of concept; advisories | CVE-2020-9484; MD5 | a4290abd849a9bb4c118b840fc087ac9; Download | Favorite | View

Sabberworm PHP CSS Code Injection: Posted Jun 3, 2020; Authored by Eldar Marcussen; Sabberworm PHP CSS parser suffers from a code injection vulnerability. Many versions are affected.; tags | exploit, php; advisories | CVE-2020-13756; MD5 | 3a39459dcc05923af09d4a4ccd02d788; Download | Favorite | View

JSC JIT Out-Of-Bounds Access: Posted Jun 3, 2020; Authored by saelo, Google Security Research; The DFG and FTL JIT compilers incorrectly replace Checked with Unchecked ArithNegate operations (and vice versa) during Common Subexpression Elimination. This can then be exploited to cause out-of-bounds accesses and potentially other memory safety violations.; tags | exploit; advisories | CVE-2020-9802; MD5 | 0b1a6974a8c2118b0cb88077ae99fe29; Download | Favorite | View

Bluetooth Impersonation Attack (BIAS) Proof Of Concept: Posted Jun 3, 2020; Authored by Marcin Kozlowski, francozappa; This archive holds Bluetooth Impersonation Attack (BIAS) CVE-2020-10135 proof of concept and reproduction research from multiple researchers.; tags | exploit, proof of concept; advisories | CVE-2020-10135; MD5 | a475ec6792f7dd27ad27b9595b77195a; Download | Favorite | View

Red Hat Security Advisory 2020-2383-01: Posted Jun 3, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2383-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. An issue was addressed where BIND does not sufficiently limit the number of fetches performed when processing referrals as well as an issue where a logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c.; tags | advisory, protocol; systems | linux, redhat; advisories | CVE-2020-8616, CVE-2020-8617; MD5 | e92db49e925089bf66c1739a06cdd557; Download | Favorite | View

Red Hat Security Advisory 2020-2382-01: Posted Jun 3, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2382-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.9.0 ESR. Issues addressed include a use-after-free vulnerability.; tags | advisory, web; systems | linux, redhat; advisories | CVE-2020-12405, CVE-2020-12406, CVE-2020-12410; MD5 | 148ad12673ba8af9889b7e8f82bca823; Download | Favorite | View

Ubuntu Security Notice USN-4381-1: Posted Jun 3, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4381-1 - Dan Palmer discovered that Django incorrectly validated memcached cache keys. A remote attacker could possibly use this issue to cause a denial of service and obtain sensitive information. Jon Dufresne discovered that Django incorrectly encoded query parameters for the admin ForeignKeyRawIdWidget. A remote attacker could possibly use this issue to perform XSS attacks.; tags | advisory, remote, denial of service; systems | linux, ubuntu; advisories | CVE-2020-13254, CVE-2020-13596; MD5 | aaca05b8d77be7a8f192fc887ad484f3; Download | Favorite | View

Red Hat Security Advisory 2020-2378-01: Posted Jun 3, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2378-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.9.0 ESR. Issues addressed include a use-after-free vulnerability.; tags | advisory, web; systems | linux, redhat; advisories | CVE-2020-12405, CVE-2020-12406, CVE-2020-12410; MD5 | 9ce6b09eefaa7f03f22cd7cc3b209537; Download | Favorite | View

Red Hat Security Advisory 2020-2305-01: Posted Jun 3, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2305-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a privilege escalation vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2020-1706; MD5 | 531015559ab4641fa3171c1ae13b8dd8; Download | Favorite | View

Red Hat Security Advisory 2020-2306-01: Posted Jun 3, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2306-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include denial of service and memory exhaustion vulnerabilities.; tags | advisory, denial of service, vulnerability; systems | linux, redhat; advisories | CVE-2020-8552; MD5 | 5690550c5786b9cc96802ffef5bf5934; Download | Favorite | View

Red Hat Security Advisory 2020-2380-01: Posted Jun 3, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2380-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.9.0 ESR. Issues addressed include a use-after-free vulnerability.; tags | advisory, web; systems | linux, redhat; advisories | CVE-2020-12405, CVE-2020-12406, CVE-2020-12410; MD5 | 718039aea02d89abea82c0116954d7bd; Download | Favorite | View

Red Hat Security Advisory 2020-2379-01: Posted Jun 3, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-2379-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.9.0 ESR. Issues addressed include a use-after-free vulnerability.; tags | advisory, web; systems | linux, redhat; advisories | CVE-2020-12405, CVE-2020-12406, CVE-2020-12410; MD5 | 006e3e56389b82715e8996ec67c8cc8a; Download | Favorite | View

Apple Security Advisory 2020-06-01-4: Posted Jun 3, 2020; Authored by Apple | Site apple.com; Apple Security Advisory 2020-06-01-4 - watchOS 6.2.6 is now available and addresses a code execution vulnerability.; tags | advisory, code execution; systems | apple; advisories | CVE-2020-9859; MD5 | 97fcc3ee70140e4a6ac5a07f25f15d1f; Download | Favorite | View

OpenCart 3.0.3.2 Cross Site Scripting: Posted Jun 3, 2020; Authored by Kailash Bohara; OpenCart version 3.0.3.2 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2020-10596; MD5 | a227cafc12e096a8d0cd56342e5b5341; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days