what you don't know can hurt you
Showing 1 - 22 of 22 RSS Feed

Files Date: 2020-12-07

Facebook Messenger For Android Forced Answer
Posted Dec 7, 2020
Authored by Google Security Research, natashenka

Facebook Messenger for Android has an issue where an SdpUpdate message can cause an audio call to connect before the callee has answered the call.

tags | exploit
MD5 | 996b474ac139e5a7edba39345522d390
Linux io_uring SUID Boundary Access Violation
Posted Dec 7, 2020
Authored by Jann Horn, Google Security Research

Linux io_uring suffers from mm and files access across suid binaries.

tags | exploit
systems | linux
MD5 | 637f9c04457efc1d0b80725cfac4b5ef
Google Duo Race Condition
Posted Dec 7, 2020
Authored by Google Security Research, natashenka

A race condition in Google Duo can cause callee to leak video packets from an unanswered call.

tags | exploit
MD5 | 70b2888d42fb8b4c3cf655a4aa27eb48
Apache 2 HTTP2 Module Concurrent Pool Usage
Posted Dec 7, 2020
Authored by Google Security Research, Felix Wilhelm

Apache 2 suffers from an issue with concurrent pool usage in the http2 module.

tags | advisory
advisories | CVE-2020-11993
MD5 | 8e2f6c32f5529339e29797af43253dee
Apache 2.4.43 mod_http2 Memory Corruption
Posted Dec 7, 2020
Authored by Google Security Research, Felix Wilhelm

Apache 2 suffers from a memory corruption vulnerability in the mod_http2 push diary implementation.

tags | exploit
advisories | CVE-2020-9490
MD5 | 8368f936e5103096fbffcf0dc212a89e
Red Hat Security Advisory 2020-5350-01
Posted Dec 7, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5350-01 - The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl Management Information Base browser.

tags | advisory, perl, protocol
systems | linux, redhat
advisories | CVE-2020-15862
MD5 | 80c489b8aae2b1bd43d8a5d153eb0c90
Gentoo Linux Security Advisory 202012-08
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-8 - Multiple vulnerabilities have been found in MariaDB, the worst of which could result in privilege escalation. Versions less than 10.5.8 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2020-2752, CVE-2020-2760, CVE-2020-2812, CVE-2020-2814
MD5 | f93167da152d14c172627b0bfd156c17
Gentoo Linux Security Advisory 202012-07
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-7 - Multiple vulnerabilities have been found in PostgreSQL, the worst of which could result in arbitrary code execution. Versions less than 13.1 are affected.

tags | advisory, arbitrary, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
MD5 | be19de36dc8efd02ce649046656d99bb
ProCaster LE-32F430 GStreamer souphttpsrc libsoup/2.51.3 Stack Overflow
Posted Dec 7, 2020
Authored by def

ProCaster LE-32F430 SmartTV remote code execution exploit that leverages a stack overflow vulnerability in GStreamer souphttpsrc libsoup version 2.51.3.

tags | exploit, remote, overflow, code execution
advisories | CVE-2017-2885
MD5 | d18a43131bc124fd1e6a92560857602a
Gentoo Linux Security Advisory 202012-06
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-6 - A vulnerability has been found in Linux-PAM, allowing attackers to bypass the authentication process. Versions less than 1.5.1 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2020-27780
MD5 | c7c61e825c4536f8ffb432a8a9f32ceb
vBulletin 5.6.3 Cross Site Scripting
Posted Dec 7, 2020
Authored by Vincent666 ibn Winnie

vBulletin version 5.6.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | ec322f7f738d3d6c59281d5ee4ef9800
Savsoft Quiz 5 Cross Site Scripting
Posted Dec 7, 2020
Authored by Dipak Panchal

Savsoft Quiz version 5 suffers from a persistent cross site scripting vulnerability. This finding differs from the original discovery of persistent cross site scripting in this version found originally by th3d1gger.

tags | exploit, xss
MD5 | 3f5f929cd5c13ca7a26d5b43c74c8a86
Gentoo Linux Security Advisory 202012-05
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-5 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 87.0.4280.88 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-16014, CVE-2020-16015, CVE-2020-16018, CVE-2020-16019, CVE-2020-16020, CVE-2020-16021, CVE-2020-16022, CVE-2020-16023, CVE-2020-16024, CVE-2020-16025, CVE-2020-16026, CVE-2020-16027, CVE-2020-16028, CVE-2020-16029, CVE-2020-16030, CVE-2020-16031, CVE-2020-16032, CVE-2020-16033, CVE-2020-16034, CVE-2020-16036, CVE-2020-16037, CVE-2020-16038, CVE-2020-16039, CVE-2020-16040, CVE-2020-16041, CVE-2020-16042
MD5 | 745e9e2f0cdc2ac43898c9fa2623cc24
TapinRadio 2.13.7 Denial Of Service
Posted Dec 7, 2020
Authored by Ismael Nava

TapinRadio version 2.13.7 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 29e7429bbb1740eae89a1e51e8b7d6c0
Red Hat Security Advisory 2020-5351-01
Posted Dec 7, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5351-01 - KornShell is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard.

tags | advisory, shell
systems | linux, redhat, unix, osx
advisories | CVE-2019-14868
MD5 | d0c0e105a1db23827e75ce7072db41b9
Gentoo Linux Security Advisory 202012-04
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-4 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could lead to the execution of arbitrary code. Versions less than 78.5.1 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-15999, CVE-2020-16012, CVE-2020-26951, CVE-2020-26953, CVE-2020-26956, CVE-2020-26958, CVE-2020-26959, CVE-2020-26960, CVE-2020-26961, CVE-2020-26965, CVE-2020-26968, CVE-2020-26970
MD5 | 8742747476492ac0ff48d2a8c86867fa
RarmaRadio 2.72.5 Denial Of Service
Posted Dec 7, 2020
Authored by Ismael Nava

RarmaRadio version 2.72.5 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | f007c3c331444146b3b4997efe8db6e3
Gentoo Linux Security Advisory 202012-03
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-3 - Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. Versions less than 83 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-16012, CVE-2020-26951, CVE-2020-26953, CVE-2020-26956, CVE-2020-26958, CVE-2020-26959, CVE-2020-26960, CVE-2020-26961, CVE-2020-26965, CVE-2020-26968
MD5 | b25a4f0089a4be2c379aeaddfb57e35d
Gentoo Linux Security Advisory 202012-02
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-2 - Multiple vulnerabilities have been found in SeaMonkey, the worst of which could result in the arbitrary execution of code. Versions less than 2.53.5.1 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
MD5 | faadb1f5366394ac7178be191d3c0fc2
Red Hat Security Advisory 2020-5352-01
Posted Dec 7, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5352-01 - KornShell is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard.

tags | advisory, shell
systems | linux, redhat, unix, osx
advisories | CVE-2019-14868
MD5 | 12b6bb5f09185927f265dbab3a4e04a4
Cyber Cafe Management System 1.0 Cross Site Scripting
Posted Dec 7, 2020
Authored by Pruthvi Nekkanti

Cyber Cafe Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 192f860f403a70a6c7c07a08641b2b7b
Gentoo Linux Security Advisory 202012-01
Posted Dec 7, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202012-1 - Multiple vulnerabilities have been found in X.org X Server, the worst of which could lead to privilege escalation. Versions less than 1.20.10 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2020-14345, CVE-2020-14346, CVE-2020-14347, CVE-2020-14360, CVE-2020-14361, CVE-2020-14362, CVE-2020-25712
MD5 | 58c30cbef23b224d2851bb15d3cf57dc
Page 1 of 1
Back1Next

File Archive:

December 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    18 Files
  • 2
    Dec 2nd
    11 Files
  • 3
    Dec 3rd
    23 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close