exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 27 RSS Feed

Files Date: 2020-12-14

Red Hat Security Advisory 2020-5410-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5410-01 - Red Hat Data Grid is a distributed, in-memory, NoSQL datastore based on the Infinispan project. This release of Red Hat Data Grid 7.3.8 serves as a replacement for Red Hat Data Grid 7.3.7 and includes bug fixes and enhancements, which are described in the Release Notes, linked to in the References section of this erratum. Issues addressed include XML injection and memory leak vulnerabilities.

tags | advisory, vulnerability, memory leak
systems | linux, redhat
advisories | CVE-2020-25644, CVE-2020-25649
SHA-256 | 83904f3e200bc90e1a7363c0a9f20c271e362b34ec7e513e7d54bb76ec83b366
Red Hat Security Advisory 2020-5408-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5408-01 - X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Issues addressed include buffer overflow, out of bounds access, and privilege escalation vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2020-14347, CVE-2020-14360, CVE-2020-25712
SHA-256 | 2f1887c4d1d839b2a45ac0287b8b8e211c8eb889104c0867d9c95e0b240df20f
WhatWeb Scanner 0.5.4
Posted Dec 14, 2020
Authored by Andrew Horton | Site morningstarsecurity.com

WhatWeb is a next-generation web scanner. WhatWeb recognizes web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices. WhatWeb has over 1800 plugins, each to recognize something different. WhatWeb also identifies version numbers, email addresses, account IDs, web framework modules, SQL errors, and more. WhatWeb supports an aggression level to control the trade off between speed and reliability.

Changes: Minor release with three new plugins and one plugin update.
tags | tool, web, scanner, javascript
systems | unix
SHA-256 | 73e1b8592bf5a15f8a66fffe2408732c434b7068f5d3379cc889fad14ea513ee
usrsctp HMAC Generation Out-Of-Bounds Access
Posted Dec 14, 2020
Authored by Google Security Research, Felix Wilhelm

usrsctp suffers from insecure HMAC generation that can lead to out-of-bounds access.

tags | exploit
SHA-256 | 69e92243c6bd41974a900dc98b7a0757d386d20f488d2990c84c93ea121be861
usrsctp pending_reply_queue Out-Of-Bounds Access
Posted Dec 14, 2020
Authored by Google Security Research, Felix Wilhelm

usrsctp suffers from a usrsctp pending_reply_queue out-of-bounds access vulnerability.

tags | exploit
SHA-256 | ea5557c59234c8615d7ded46ca3513dc591370aae707b02618e0d07c3615d064
Red Hat Security Advisory 2020-5259-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5259-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2015-8011, CVE-2020-8563, CVE-2020-8564
SHA-256 | 34d099c307d4d4174ccea2bd3897e935f140adcee17d9ec5cae6ff054c09c29e
Ubuntu Security Notice USN-4660-2
Posted Dec 14, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4660-2 - USN-4660-1 fixed vulnerabilities in the Linux kernel. Unfortunately, that update introduced a regression in the software raid10 driver when used with fstrim that could lead to data corruption. This update fixes the problem. It was discovered that a race condition existed in the perf subsystem of the Linux kernel, leading to a use-after-free vulnerability. An attacker with access to the perf subsystem could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, vulnerability
systems | linux, ubuntu
advisories | CVE-2020-14351, CVE-2020-14390, CVE-2020-25211, CVE-2020-25284, CVE-2020-25285, CVE-2020-25641, CVE-2020-25643, CVE-2020-25645, CVE-2020-28915, CVE-2020-4788
SHA-256 | b683340da7eef1e285118a4d437c5ecf07c3a00fa703347ee4cb1c9ef5624aa8
LibreNMS 1.46 SQL Injection
Posted Dec 14, 2020
Authored by Hodorsec

LibreNMS version 1.46 suffers from an authenticated remote SQL injection vulnerability in the MAC Account Graph. Original discovery of SQL injection in this version is attributed to Punt in May of 2020.

tags | exploit, remote, sql injection
SHA-256 | ea3344c4db8aac29739017c56d9f67f842adeab17b741741d19a6459f7ef0656
Red Hat Security Advisory 2020-5402-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5402-01 - The libexif packages provide a library for extracting extra information from image files. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2020-0452
SHA-256 | 9436fc9f25b8828a05004793b5433b40463416be056db6fbd7d4c3fdf9895e52
Red Hat Security Advisory 2020-5260-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5260-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-8563
SHA-256 | 2d3e03ebd018b82551f3e34bbf52c9d39c3ada7ec4158fbf5d535d3840eec0c9
Macally WIFISD2-2A82 2.000.010 Privilege Escalation
Posted Dec 14, 2020
Authored by Maximilian Barz, Daniel Schwendner

Macally WIFISD2-2A82 version 2.000.010 guest to root privilege escalation exploit.

tags | exploit, root
advisories | CVE-2020-29669
SHA-256 | d03bcf3ef8c984733b8fb9a20ee042058114eff5ee0f50b675d80934f83db097
Ubuntu Security Notice USN-4658-2
Posted Dec 14, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4658-2 - USN-4658-1 fixed vulnerabilities in the Linux kernel. Unfortunately, that update introduced a regression in the software raid10 driver when used with fstrim that could lead to data corruption. This update fixes the problem. It was discovered that a race condition existed in the binder IPC implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local, vulnerability
systems | linux, ubuntu
advisories | CVE-2020-0423, CVE-2020-10135, CVE-2020-14351, CVE-2020-14390, CVE-2020-25211, CVE-2020-25284, CVE-2020-25643, CVE-2020-25645, CVE-2020-25705, CVE-2020-28915, CVE-2020-4788
SHA-256 | bbc584a0fe5af295e0f436fdc4bd981b54271cf0c2a539f59dc946b7ea324060
Rumble Mail Server 0.51.3135 Cross Site Scripting
Posted Dec 14, 2020
Authored by Mohammed Alshehri

Rumble Mail Server version 0.51.3135 suffers from multiple persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 61c79ed78afb69f9a0502605ee26e019a56de5480acb0e0316f40b3287214563
Red Hat Security Advisory 2020-5401-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5401-01 - The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-25694, CVE-2020-25696
SHA-256 | c0ffcba93d8aab5c64e650387f3c60b72ee4a2a0a4b0fdd2ecadb75cc0b9c855
Red Hat Security Advisory 2020-5400-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5400-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.1.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-26970
SHA-256 | cfac5064847628ca5f7033c593c040886242a6b6785eb27a7cb7feb387005279
System Explorer 7.0.0 Unquoted Service Path
Posted Dec 14, 2020
Authored by Mohammed Alshehri

System Explorer version 7.0.0 suffers from an unquoted service path vulnerability.

tags | exploit
SHA-256 | 80c5f72b90d7e5c7d2e1cf05c41daeb9057779ac9a4abe790bd8f1e4945f4319
Ubuntu Security Notice USN-4659-2
Posted Dec 14, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4659-2 - USN-4659-1 fixed vulnerabilities in the Linux kernel. Unfortunately, that update introduced a regression in the software raid10 driver when used with fstrim that could lead to data corruption. This update fixes the problem. It was discovered that a race condition existed in the binder IPC implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local, vulnerability
systems | linux, ubuntu
advisories | CVE-2020-0423, CVE-2020-10135, CVE-2020-14351, CVE-2020-25705, CVE-2020-27152, CVE-2020-28915, CVE-2020-4788
SHA-256 | e138a7080f715c2dcc2727e15e0e258a11808c6d9e156fb00fa4ac8c8953c766
Red Hat Security Advisory 2020-5399-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5399-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.1.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-26970
SHA-256 | c34e8e04f3e314513c74bdc43e2e8a88b95349fcc693072715fea384cbd8c6d5
MiniWeb HTTP Server 0.8.19 Buffer Overflow
Posted Dec 14, 2020
Authored by securityforeveryone.com

MiniWeb HTTP Server version 0.8.19 buffer overflow proof of concept exploit.

tags | exploit, web, overflow, proof of concept
SHA-256 | 1a71e4f5aaaa29ed17ae6a981c9455726c46099cdb6db2ff4bd92d771c72b161
Red Hat Security Advisory 2020-5398-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5398-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.5.1.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-26970
SHA-256 | d5835cf764040458abe7c0e3ab54e7444779062315e17e487b8a6eb4eef2825b
Red Hat Security Advisory 2020-5394-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5394-01 - The libexif packages provide a library for extracting extra information from image files. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2020-0452
SHA-256 | 1b283daa17d2d21b64d16293d4730c416f04650cc90f603d6896976df8586f78
Red Hat Security Advisory 2020-5393-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5393-01 - The libexif packages provide a library for extracting extra information from image files. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2020-0452
SHA-256 | 593bdcd353df763427f613426abf2818b6e8eaa92585181a468377883359900e
WordPress Total Upkeep 1.14.9 Backup Disclosure
Posted Dec 14, 2020
Authored by Wadeek

WordPress Total Upkeep plugin version 1.14.9 suffers from a backup disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | 1a482567d665942d7b66e8c7097084e716aa6d3a91a0714cfe35cb036dc12072
Red Hat Security Advisory 2020-5395-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5395-01 - The libexif packages provide a library for extracting extra information from image files. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2020-0452
SHA-256 | 406db4d84954b02d3a78ba408fe71c17d0ae4b25eea0fc7d07261e5bb36e93a9
Red Hat Security Advisory 2020-5396-01
Posted Dec 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5396-01 - The libexif packages provide a library for extracting extra information from image files. Issues addressed include integer overflow and out of bounds write vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2020-0452
SHA-256 | b64af2586ebba06f79777d72c4bb0e66989797ca430e57841ec89075a3adb4da
Page 1 of 2
Back12Next

File Archive:

December 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    2 Files
  • 2
    Dec 2nd
    12 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    14 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    12 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close