what you don't know can hurt you
Showing 1 - 22 of 22 RSS Feed

Files Date: 2020-12-07

Facebook Messenger For Android Forced Answer
Posted Dec 7, 2020
Authored by Google Security Research, natashenka

Facebook Messenger for Android has an issue where an SdpUpdate message can cause an audio call to connect before the callee has answered the call.

tags | exploit
MD5 | 996b474ac139e5a7edba39345522d390
Linux io_uring SUID Boundary Access Violation
Posted Dec 7, 2020
Authored by Jann Horn, Google Security Research

Linux io_uring suffers from mm and files access across suid binaries.

tags | exploit
systems | linux
MD5 | 637f9c04457efc1d0b80725cfac4b5ef
Google Duo Race Condition
Posted Dec 7, 2020
Authored by Google Security Research, natashenka

A race condition in Google Duo can cause callee to leak video packets from an unanswered call.

tags | exploit
MD5 | 70b2888d42fb8b4c3cf655a4aa27eb48
Apache 2 HTTP2 Module Concurrent Pool Usage
Posted Dec 7, 2020
Authored by Google Security Research, Felix Wilhelm

Apache 2 suffers from an issue with concurrent pool usage in the http2 module.

tags | advisory
advisories | CVE-2020-11993
MD5 | 8e2f6c32f5529339e29797af43253dee
Apache 2.4.43 mod_http2 Memory Corruption
Posted Dec 7, 2020
Authored by Google Security Research, Felix Wilhelm

Apache 2 suffers from a memory corruption vulnerability in the mod_http2 push diary implementation.

tags | exploit
advisories | CVE-2020-9490
MD5 | 8368f936e5103096fbffcf0dc212a89e
Red Hat Security Advisory 2020-5350-01
Posted Dec 7, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5350-01 - The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl Management Information Base browser.

tags | advisory, perl, protocol
systems | linux, redhat
advisories | CVE-2020-15862
MD5 | 80c489b8aae2b1bd43d8a5d153eb0c90
Gentoo Linux Security Advisory 202012-08
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-8 - Multiple vulnerabilities have been found in MariaDB, the worst of which could result in privilege escalation. Versions less than 10.5.8 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2020-2752, CVE-2020-2760, CVE-2020-2812, CVE-2020-2814
MD5 | f93167da152d14c172627b0bfd156c17
Gentoo Linux Security Advisory 202012-07
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-7 - Multiple vulnerabilities have been found in PostgreSQL, the worst of which could result in arbitrary code execution. Versions less than 13.1 are affected.

tags | advisory, arbitrary, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
MD5 | be19de36dc8efd02ce649046656d99bb
ProCaster LE-32F430 GStreamer souphttpsrc libsoup/2.51.3 Stack Overflow
Posted Dec 7, 2020
Authored by def

ProCaster LE-32F430 SmartTV remote code execution exploit that leverages a stack overflow vulnerability in GStreamer souphttpsrc libsoup version 2.51.3.

tags | exploit, remote, overflow, code execution
advisories | CVE-2017-2885
MD5 | d18a43131bc124fd1e6a92560857602a
Gentoo Linux Security Advisory 202012-06
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-6 - A vulnerability has been found in Linux-PAM, allowing attackers to bypass the authentication process. Versions less than 1.5.1 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2020-27780
MD5 | c7c61e825c4536f8ffb432a8a9f32ceb
vBulletin 5.6.3 Cross Site Scripting
Posted Dec 7, 2020
Authored by Vincent666 ibn Winnie

vBulletin version 5.6.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | ec322f7f738d3d6c59281d5ee4ef9800
Savsoft Quiz 5 Cross Site Scripting
Posted Dec 7, 2020
Authored by Dipak Panchal

Savsoft Quiz version 5 suffers from a persistent cross site scripting vulnerability. This finding differs from the original discovery of persistent cross site scripting in this version found originally by th3d1gger.

tags | exploit, xss
MD5 | 3f5f929cd5c13ca7a26d5b43c74c8a86
Gentoo Linux Security Advisory 202012-05
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-5 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 87.0.4280.88 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-16014, CVE-2020-16015, CVE-2020-16018, CVE-2020-16019, CVE-2020-16020, CVE-2020-16021, CVE-2020-16022, CVE-2020-16023, CVE-2020-16024, CVE-2020-16025, CVE-2020-16026, CVE-2020-16027, CVE-2020-16028, CVE-2020-16029, CVE-2020-16030, CVE-2020-16031, CVE-2020-16032, CVE-2020-16033, CVE-2020-16034, CVE-2020-16036, CVE-2020-16037, CVE-2020-16038, CVE-2020-16039, CVE-2020-16040, CVE-2020-16041, CVE-2020-16042
MD5 | 745e9e2f0cdc2ac43898c9fa2623cc24
TapinRadio 2.13.7 Denial Of Service
Posted Dec 7, 2020
Authored by Ismael Nava

TapinRadio version 2.13.7 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 29e7429bbb1740eae89a1e51e8b7d6c0
Red Hat Security Advisory 2020-5351-01
Posted Dec 7, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5351-01 - KornShell is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard.

tags | advisory, shell
systems | linux, redhat, unix, osx
advisories | CVE-2019-14868
MD5 | d0c0e105a1db23827e75ce7072db41b9
Gentoo Linux Security Advisory 202012-04
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-4 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could lead to the execution of arbitrary code. Versions less than 78.5.1 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-15999, CVE-2020-16012, CVE-2020-26951, CVE-2020-26953, CVE-2020-26956, CVE-2020-26958, CVE-2020-26959, CVE-2020-26960, CVE-2020-26961, CVE-2020-26965, CVE-2020-26968, CVE-2020-26970
MD5 | 8742747476492ac0ff48d2a8c86867fa
RarmaRadio 2.72.5 Denial Of Service
Posted Dec 7, 2020
Authored by Ismael Nava

RarmaRadio version 2.72.5 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | f007c3c331444146b3b4997efe8db6e3
Gentoo Linux Security Advisory 202012-03
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-3 - Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. Versions less than 83 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-16012, CVE-2020-26951, CVE-2020-26953, CVE-2020-26956, CVE-2020-26958, CVE-2020-26959, CVE-2020-26960, CVE-2020-26961, CVE-2020-26965, CVE-2020-26968
MD5 | b25a4f0089a4be2c379aeaddfb57e35d
Gentoo Linux Security Advisory 202012-02
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-2 - Multiple vulnerabilities have been found in SeaMonkey, the worst of which could result in the arbitrary execution of code. Versions less than 2.53.5.1 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
MD5 | faadb1f5366394ac7178be191d3c0fc2
Red Hat Security Advisory 2020-5352-01
Posted Dec 7, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5352-01 - KornShell is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard.

tags | advisory, shell
systems | linux, redhat, unix, osx
advisories | CVE-2019-14868
MD5 | 12b6bb5f09185927f265dbab3a4e04a4
Cyber Cafe Management System 1.0 Cross Site Scripting
Posted Dec 7, 2020
Authored by Pruthvi Nekkanti

Cyber Cafe Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 192f860f403a70a6c7c07a08641b2b7b
Gentoo Linux Security Advisory 202012-01
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-1 - Multiple vulnerabilities have been found in X.org X Server, the worst of which could lead to privilege escalation. Versions less than 1.20.10 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2020-14345, CVE-2020-14346, CVE-2020-14347, CVE-2020-14360, CVE-2020-14361, CVE-2020-14362, CVE-2020-25712
MD5 | 58c30cbef23b224d2851bb15d3cf57dc
Page 1 of 1
Back1Next

File Archive:

January 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    4 Files
  • 2
    Jan 2nd
    3 Files
  • 3
    Jan 3rd
    3 Files
  • 4
    Jan 4th
    33 Files
  • 5
    Jan 5th
    31 Files
  • 6
    Jan 6th
    21 Files
  • 7
    Jan 7th
    15 Files
  • 8
    Jan 8th
    19 Files
  • 9
    Jan 9th
    1 Files
  • 10
    Jan 10th
    1 Files
  • 11
    Jan 11th
    33 Files
  • 12
    Jan 12th
    19 Files
  • 13
    Jan 13th
    27 Files
  • 14
    Jan 14th
    8 Files
  • 15
    Jan 15th
    16 Files
  • 16
    Jan 16th
    0 Files
  • 17
    Jan 17th
    0 Files
  • 18
    Jan 18th
    0 Files
  • 19
    Jan 19th
    0 Files
  • 20
    Jan 20th
    0 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close