exploit the possibilities
Showing 1 - 9 of 9 RSS Feed

Files Date: 2020-11-02

Ubuntu Security Notice USN-4611-1
Posted Nov 2, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4611-1 - Steven French discovered that Samba incorrectly handled ChangeNotify permissions. A remote attacker could possibly use this issue to obtain file name information. Bas Alberts discovered that Samba incorrectly handled certain winbind requests. A remote attacker could possibly use this issue to cause winbind to crash, resulting in a denial of service. Francis Brosnan Blázquez discovered that Samba incorrectly handled certain invalid DNS records. A remote attacker could possibly use this issue to cause the DNS server to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2020-14318, CVE-2020-14323, CVE-2020-14383
MD5 | 47e6b47eeae24d5bb1467b3b35282526
Samhain File Integrity Checker 4.4.3
Posted Nov 2, 2020
Authored by Rainer Wichmann | Site samhain.sourceforge.net

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.

Changes: Now allows console logging to a unix domain socket. Fixed spurious cppcheck warnings, gcc 10 compiler warning in sh_audit.c, gcc 10 compiler warning in sh_ipvx.c, gcc 10 compile problem in sh_tiger1_64.c, and gcc 10 compiler warning in sh_portcheck.c.
tags | tool, tcp, intrusion detection
systems | linux, unix, solaris, aix, hpux, unixware
MD5 | 5a314bb9e345e93012bf2e9b2ffb7b24
SQLMAP - Automatic SQL Injection Tool 1.4.11
Posted Nov 2, 2020
Authored by Bernardo Damele | Site sqlmap.sourceforge.net

sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.

Changes: Bug fixes.
tags | tool, web, overflow, arbitrary, vulnerability, sql injection
systems | unix
MD5 | 047d55e3aa2b4d5456c4bc7f12d87f75
Packet Storm New Exploits For October, 2020
Posted Nov 2, 2020
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 154 exploits added to Packet Storm in October, 2020.

tags | exploit
MD5 | 38ef462bdcdffd1f49bea1f012a5e3fa
WordPress Simple File List 5.4 Shell Upload
Posted Nov 2, 2020
Authored by H4rk3nz0

WordPress Simple File List plugin version 5.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 75488258360850a9899dfe59fe7a49df
Multi Restaurant Table Reservation System 1.0 SQL Injection
Posted Nov 2, 2020
Authored by yunaranyancat

Multi Restaurant Table Reservation System version 1.0 suffers from an unauthenticated remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | efabcf6a433d34eec9adc4b042e32893
Multi Restaurant Table Reservation System 1.0 Cross Site Scripting
Posted Nov 2, 2020
Authored by yunaranyancat

Multi Restaurant Table Reservation System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 0986632ea3a2b055728f01d15e0c0d2a
Monitorr 1.7.6m Authorization Bypass
Posted Nov 2, 2020
Authored by Simon Lyhin

Monitorr version 1.7.6m suffers from an authorization bypass vulnerability.

tags | exploit, bypass
MD5 | cff648ad561711a93b6dd2c39a72cee7
Monitorr 1.7.6m Remote Code Execution
Posted Nov 2, 2020
Authored by Simon Lyhin

Monitorr version 1.7.6m suffers from an unauthenticated remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | cd4d30c82b2cf42e047c35c13bfb1a0c
Page 1 of 1
Back1Next

File Archive:

November 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    2 Files
  • 2
    Nov 2nd
    9 Files
  • 3
    Nov 3rd
    15 Files
  • 4
    Nov 4th
    90 Files
  • 5
    Nov 5th
    22 Files
  • 6
    Nov 6th
    16 Files
  • 7
    Nov 7th
    1 Files
  • 8
    Nov 8th
    1 Files
  • 9
    Nov 9th
    40 Files
  • 10
    Nov 10th
    27 Files
  • 11
    Nov 11th
    28 Files
  • 12
    Nov 12th
    13 Files
  • 13
    Nov 13th
    18 Files
  • 14
    Nov 14th
    2 Files
  • 15
    Nov 15th
    2 Files
  • 16
    Nov 16th
    29 Files
  • 17
    Nov 17th
    15 Files
  • 18
    Nov 18th
    15 Files
  • 19
    Nov 19th
    21 Files
  • 20
    Nov 20th
    16 Files
  • 21
    Nov 21st
    1 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    19 Files
  • 24
    Nov 24th
    32 Files
  • 25
    Nov 25th
    7 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close