what you don't know can hurt you
Showing 1 - 19 of 19 RSS Feed

Files Date: 2020-07-14

I Got My Eye On You - Security Vulnerabilities In D-Link's Baby Monitor
Posted Jul 14, 2020
Authored by Naor Kalbo

Whitepaper called I Got My Eye On You - Security Vulnerabilities In D-Link's Baby Monitor.

tags | paper, vulnerability
MD5 | 0304f25cce0455f304b37b0f4bff220a
Ubuntu Security Notice USN-4422-1
Posted Jul 14, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4422-1 - A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2020-13753, CVE-2020-9806
MD5 | 1b8543f2c71af096df5e32c7f265fadc
Red Hat Security Advisory 2020-2906-01
Posted Jul 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2906-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.10.0. Issues addressed include information leakage and use-after-free vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421
MD5 | 4f343272d16859a0f2af7f7bec973241
Trend Micro Web Security Remote Code Execution
Posted Jul 14, 2020
Authored by Mehmet Ince | Site metasploit.com

This Metasploit module exploits multiple vulnerabilities together in order to achieve remote code execution in Trend Micro Web Security versions prior to 6.5 SP2 Patch 4 (Build 1901).

tags | exploit, remote, web, vulnerability, code execution
advisories | CVE-2020-8604, CVE-2020-8605, CVE-2020-8606
MD5 | d7036cbc4fecb0531893b183314bceb1
Apartment Visitors Management System Project 1.0 SQL Injection
Posted Jul 14, 2020
Authored by gh1mau

Apartment Visitors Management System Project version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 91b58f16959b350a171ce9b91dc1c50a
Red Hat Security Advisory 2020-2907-01
Posted Jul 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2907-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.10.0. Issues addressed include information leakage and use-after-free vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421
MD5 | f14663ef04891b4c392a1f8f4d1a6261
BSA Radar 1.6.7234.24750 Local File Inclusion
Posted Jul 14, 2020
Authored by William Summerhill

BSA Radar version 1.6.7234.24750 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
advisories | CVE-2020-14946
MD5 | 4f8724486f85bed5c6ebc292e5dde54d
Red Hat Security Advisory 2020-2902-01
Posted Jul 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2902-01 - Scanner Access Now Easy is a universal scanner interface. The SANE application programming interface provides standardized access to any raster image scanner hardware. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2020-12861, CVE-2020-12865
MD5 | 63fd1a8a88cfdac8bd109cc153612662
Cyber Cafe Management System SQL Injection
Posted Jul 14, 2020
Authored by gh1mau

Cyber Cafe Management System from phpgurukul.com suffers from multiple remote SQL injection vulnerabilities. One allows for authentication bypass.

tags | exploit, remote, vulnerability, sql injection
MD5 | 46f2d88200e3723d579cd1ca4acfb52d
Teachers Record Management System 1.0 SQL Injection
Posted Jul 14, 2020
Authored by gh1mau

Teachers Record Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4437bc02a5029d5d8cde47fcc28c6470
Client Management System 1.0 SQL Injection
Posted Jul 14, 2020
Authored by gh1mau

Client Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e4e363f8a4b47df3c76073f5d2112aac
Red Hat Security Advisory 2020-2878-01
Posted Jul 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2878-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-9283
MD5 | c2d7c75fc595da4c7ed0f11add051b15
Checker CVE-2020-5902
Posted Jul 14, 2020
Authored by MrCl0wn Lab | Site github.com

BIG-IP versions 15.0.0 through 15.1.0.3, 14.1.0 through 14.1.2.5, 13.1.0 through 13.1.3.3, 12.1.0 through 12.1.5.1, and 11.6.1 through 11.6.5.1 suffer from Traffic Management User Interface (TMUI) arbitrary file read and command execution vulnerabilities. Checker CVE-2020-5902 is a scanning tool to look for vulnerable instances.

tags | exploit, arbitrary, vulnerability
advisories | CVE-2020-5902
MD5 | 62ea43725fad228d1989b40395c8570c
Verint Impact 360 15.1 Cross Site Request Forgery
Posted Jul 14, 2020
Authored by Ryan Delaney

Verint Impact 360 version 15.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2019-12784
MD5 | 84d4cc2e45861f1068b0ed860cde744c
Verint Impact 360 15.1 Open Redirect
Posted Jul 14, 2020
Authored by Ryan Delaney

Verint Impact 360 version 15.1 suffers from an open redirection vulnerability.

tags | exploit
advisories | CVE-2019-12783
MD5 | 2351ca8c739a95467620c8c6f3b0c9b0
Verint Impact 360 15.1 Script Insertion / HTML Injection
Posted Jul 14, 2020
Authored by Ryan Delaney

Verint Impact 360 version 15.1 has an issue where the helpURL parameter in wfo/help/help_popup.jsp can be changed to embed arbitrary content inside of an iFrame. Attackers may use this in conjunction with social engineering to embed malicious scripts or phishing pages on a site where this product is installed, given the attacker can convince a victim to visit a crafted link.

tags | exploit, arbitrary, xss
advisories | CVE-2019-12773
MD5 | 4dd04c37bb2f1afa689fdbef4d3f3853
V-SOL OLTs Backdoor / Privilege Escalation
Posted Jul 14, 2020
Authored by Pierre Kim

Various V-SOL OLTs suffer from multiple backdoor issues, hardcoded RSA keys, potential command injection, and insecure management vulnerabilities.

tags | exploit, vulnerability
MD5 | d122b428606a083cd3a8e39e652a2acc
Google Android Silent App Installation
Posted Jul 14, 2020
Authored by Enrico Weigelt

Google's PlayServices has a built-in backdoor which allows Google Inc, or anybody who has access to some device owner's Google account to remotely silently deploy any apps (at least those listed in the AppStore).

tags | advisory
MD5 | c26d2b2ec386f54422b84195982c384c
APK Testing Report
Posted Jul 14, 2020
Authored by Rahul Jangra

This is a whitepaper called APK Testing Report. It goes through various tooling used to analyze devices.

tags | paper
MD5 | ad4a14ea86d0891260f406cc0fedd7db
Page 1 of 1
Back1Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    1 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    27 Files
  • 11
    Aug 11th
    11 Files
  • 12
    Aug 12th
    11 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close