GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.
626f92eecc6c5560eb4315ae0aeac47cUbuntu Security Notice 4633-1 - Peter Eisentraut discovered that PostgreSQL incorrectly handled connection security settings. Client applications could possibly be connecting with certain security parameters dropped, contrary to expectations. Etienne Stalmans discovered that PostgreSQL incorrectly handled the security restricted operation sandbox. An authenticated remote attacker could possibly use this issue to execute arbitrary SQL functions as a superuser. Various other issues were also addressed.
7a1f8a3e69e9532a6647338dbaa42eecUbuntu Security Notice 4634-1 - It was discovered that OpenLDAP incorrectly handled certain malformed inputs. A remote attacker could possibly use this issue to cause OpenLDAP to crash, resulting in a denial of service.
ac51b434ea0844b87b92c98d0c3e8907Apache Struts version 2.5.20 double OGNL evaluation exploit.
9eb8066bb5239fdd85e8ea9bf0dc8509Grocy Household Management Solution version 2.7.1 suffers from a persistent cross site scripting vulnerability.
b944c357a6cf9037261302479a61ac07Aerospike Database version 5.1.0.3 suffers from a remote command execution vulnerability.
051c3c0544cc42c22e81396c7a2730edRed Hat Security Advisory 2020-5102-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include man-in-the-middle and traversal vulnerabilities.
bed1d2071747b93a2518623095932992EgavilanMedia User Registration and Login System with Admin Panel versions released prior to November 17, 2020 appear susceptible to a remote SQL injection vulnerability that allows for authentication bypass.
386040b94aeb0a9e7acd29c574971b7cSocial Networking Site versions released prior to November 17, 2020 have been found susceptible to a remote SQL injection vulnerability that allows for authentication bypass.
69166da87cd3b01edb95f12154b8e131Medical Center Portal Management System released prior to November 16, 2020 have been identified as being susceptible to a local file inclusion vulnerability.
ebb1a8cb615f15dc9ac1503fc00676dcOnline News Portal versions released prior to November 16, 2020 have been identified as being susceptible to a local file inclusion vulnerability.
150d4a01deee247d05bff4f6b2ff5485AIX version 5.3L libc local environment handling local root exploit. The AIX 5.3L (and possibly others) libc is vulnerable to multiple buffer overflow issues in the handling of locale environment variables. This allows for exploitation of any setuid root binary that makes use of functions such as setlocale() which do not perform bounds checking when handling LC_* environment variables. An attacker can leverage this issue to obtain root privileges on an impacted AIX system. This exploit makes use of the "/usr/bin/su" binary to trigger the overflow through LC_ALL and obtain root.
5a8e7e11f2da1598bdca5bdbbf71d224Online Doctor Appointment Booking System PHP and MySQL version 1.0 suffers from a remote SQL injection vulnerability.
3e8e325ed4abf3f78a52effcfddad10fHuawei LCD_Service version 1.0.1.0 suffers from an unquoted service path vulnerability.
7d837cab72abefae69034fce67a574a1Whitepaper called NTLM Relaying and LLMNR Poisoning. Written in Turkish.
1053d38b68ece65683d6bf7f89f0d8be
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed