exploit the possibilities
Showing 1 - 25 of 27 RSS Feed

Files Date: 2021-01-13

Ubuntu Security Notice USN-4692-1
Posted Jan 13, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4692-1 - Chris Siebenmann discovered that tar incorrectly handled extracting files resized during extraction when invoked with the --sparse flag. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Daniel Axtens discovered that tar incorrectly handled certain malformed tar files. If a user or automated system were tricked into processing a specially crafted tar archive, a remote attacker could use this issue to cause tar to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-20482, CVE-2019-9923
MD5 | 344cbf5822690466c47037ca26772ba8
Red Hat Security Advisory 2021-0114-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0114-01 - .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET Core that address a security vulnerability are now available. The updated versions are .NET Core SDK 3.1.111 and .NET Core Runtime 3.1.11.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-1723
MD5 | 6a4b3f028afeb63298ac24093c54456c
Red Hat Security Advisory 2021-0110-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0110-01 - This release of Red Hat Integration - Camel K - Tech-Preview 2 serves as a replacement for tech-preview 1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include an XML injection vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-13692
MD5 | e9763ad7acab37e7bd71b9774eb9627d
Ubuntu Security Notice USN-4691-1
Posted Jan 13, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4691-1 - Jonas Rudloff discovered that Open vSwitch incorrectly handled certain malformed LLDP packets. A remote attacker could use this issue to cause Open vSwitch to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2015-8011
MD5 | 622199ebe49995537dcf295a4a531f9d
Red Hat Security Advisory 2021-0030-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0030-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-8559
MD5 | dce7955d61911f67036e2390a0501fad
Red Hat Security Advisory 2021-0106-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0106-01 - Red Hat Decision Manager is an open source decision management platform that combines business rules management, complex event processing, Decision Model & Notation execution, and Business Optimizer for solving planning problems. It automates business decisions and makes that logic available to the entire business. This release of Red Hat Decision Manager 7.9.1 serves as an update to Red Hat Decision Manager 7.9.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution and deserialization vulnerabilities.

tags | advisory, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2020-26217
MD5 | 00cac4a6608b0577aae4612828d12d01
Red Hat Security Advisory 2021-0105-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0105-01 - Red Hat Process Automation Manager is an open source business process management suite that combines process management and decision service management and enables business and IT users to create, manage, validate, and deploy process applications and decision services. This release of Red Hat Process Automation Manager 7.9.1 serves as an update to Red Hat Process Automation Manager 7.9.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution and deserialization vulnerabilities.

tags | advisory, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2020-26217
MD5 | d181ff8a0b578471ad111710d32accbd
Online Movie Streaming 1.0 SQL Injection
Posted Jan 13, 2021
Authored by Richard Jones

Online Movie Streaming version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 82d3e3b9ac3251037440fca5f40c392d
Online Hotel Reservation 1.0 SQL Injection
Posted Jan 13, 2021
Authored by Richard Jones

Online Hotel Reservation version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 3b3b96192c21768363de2b321dc24414
Ubuntu Security Notice USN-4690-1
Posted Jan 13, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4690-1 - It was discovered that coTURN allowed peers to connect and relay packets to loopback addresses in the range of 127.x.x.x. A malicious user could use this vulnerability to insert packages into the loopback interface.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2020-26262
MD5 | a250c57907fc4d20314b01267251dffc
Gentoo Linux Security Advisory 202101-10
Posted Jan 13, 2021
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202101-10 - Multiple vulnerabilities have been found in Asterisk, the worst of which could result in a Denial of Service condition. Versions less than 13.38.1 are affected.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
MD5 | b4165fb7207bb11390f126c273aec56a
flatCore CMS XSS / File Disclosure / SQL Injection
Posted Jan 13, 2021
Authored by Calvin Phang, Yew Chung Cheah | Site sec-consult.com

flatCore CMS versions prior to 2.0.0 build 139 suffer from cross site scripting, file disclosure, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
advisories | CVE-2021-23835, CVE-2021-23836, CVE-2021-23837, CVE-2021-23838
MD5 | 1fa6af99aeb588403f58ee25830613f4
Red Hat Security Advisory 2021-0095-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0095-01 - .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET Core that address a security vulnerability are now available. The updated versions are .NET Core SDK 3.1.111 and .NET Core Runtime 3.1.11.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-1723
MD5 | 51d1a66d1daa97f8ce53f30a9059495d
Red Hat Security Advisory 2021-0094-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0094-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 5.0.102 and .NET Runtime 5.0.2.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-1723
MD5 | 939f0ea25dc513f06355d81271499037
Pepperl+Fuchs IO-Link Master Series 1.36 CSRF / XSS / Command Injection
Posted Jan 13, 2021
Authored by T. Weber | Site sec-consult.com

Pepperl+Fuchs IO-Link Master Series with system version 1.36 and application version 1.5.28 suffers from command injection, cross site request forgery, cross site scripting, denial of service, and null pointer vulnerabilities.

tags | exploit, denial of service, vulnerability, xss, csrf
advisories | CVE-2020-12511, CVE-2020-12512, CVE-2020-12513, CVE-2020-12514
MD5 | aa2d5c40642dad8f8d6fe9a2f9666788
Deep Insight Into Social Engineering
Posted Jan 13, 2021
Authored by Pradyumn Khanchandani, Rushil Saxena

Whitepaper called Deep Insight into Social Engineering.

tags | paper
MD5 | 7ceee78fadaa96ded09aea1718d7ac19
Gentoo Linux Security Advisory 202101-09
Posted Jan 13, 2021
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202101-9 - Multiple vulnerabilities have been found in VirtualBox, the worst of which could allow an attacker to take control of VirtualBox. Versions prior to 6.1.12 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2019-2848, CVE-2019-2850, CVE-2019-2859, CVE-2019-2863, CVE-2019-2864, CVE-2019-2865, CVE-2019-2866, CVE-2019-2867, CVE-2019-2873, CVE-2019-2874, CVE-2019-2875, CVE-2019-2876, CVE-2019-2877, CVE-2019-2926, CVE-2019-2944, CVE-2019-2984, CVE-2019-3002, CVE-2019-3005, CVE-2019-3017, CVE-2019-3021, CVE-2019-3026, CVE-2019-3028, CVE-2019-3031, CVE-2020-14628, CVE-2020-14629, CVE-2020-14646, CVE-2020-14647, CVE-2020-14648
MD5 | 252115a5279461dc614c738aefe07245
Red Hat Security Advisory 2021-0096-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0096-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 5.0.102 and .NET Runtime 5.0.2.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-1723
MD5 | 3abb44908ff988765418c3b3b5bdd82c
FiberHome HG6245D Disclosure / Bypass / Privilege Escalation / DoS
Posted Jan 13, 2021
Authored by Pierre Kim

FiberHome HG6245D routers suffer from bypass, hard-coded credentials, password disclosure, privilege escalation, denial of service, remote stack overflow, and additional vulnerabilities. suffers from bypass, cross site scripting, denial of service, and privilege escalation vulnerabilities.

tags | exploit, remote, denial of service, overflow, vulnerability, xss, info disclosure
MD5 | 64f5abcb1d25b607eec98356b1ed6c6e
Red Hat Security Advisory 2021-0087-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0087-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.6.1. Issues addressed include a use-after-free vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-16044
MD5 | 01be35ba1b141a5a2c440d3438caf6be
Red Hat Security Advisory 2021-0088-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0088-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.6.1. Issues addressed include a use-after-free vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-16044
MD5 | 88e2b40bc909cc7b61bd77be2f566e27
Red Hat Security Advisory 2021-0089-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0089-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.6.1. Issues addressed include a use-after-free vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-16044
MD5 | 3a1087ef77def78114e135cd8601fba8
Red Hat Security Advisory 2021-0084-01
Posted Jan 13, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0084-01 - This release of Red Hat build of Quarkus 1.7.6 includes security updates, bug fixes, and enhancements. For more information, see the release notes page listed in the References section.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-13956
MD5 | 98feed9e40743a3037ad053ba60978ac
Envira Gallery Lite 1.8.3.2 Cross Site Scripting
Posted Jan 13, 2021
Authored by Rodolfo Tavares | Site tempest.com.br

Envira Gallery Lite edition version 1.8.3.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2020-35581, CVE-2020-35582
MD5 | 4f29341ba3923a4083599b429f88437b
Backdoor.Win32.Kurbadur.a Remote Stack Buffer Overflow
Posted Jan 13, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Kurbadur.a malware suffers from a remote stack buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
MD5 | d7e25699281dd539a431c9cfb0f980e8
Page 1 of 2
Back12Next

File Archive:

April 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    17 Files
  • 2
    Apr 2nd
    2 Files
  • 3
    Apr 3rd
    2 Files
  • 4
    Apr 4th
    0 Files
  • 5
    Apr 5th
    15 Files
  • 6
    Apr 6th
    15 Files
  • 7
    Apr 7th
    20 Files
  • 8
    Apr 8th
    16 Files
  • 9
    Apr 9th
    5 Files
  • 10
    Apr 10th
    0 Files
  • 11
    Apr 11th
    0 Files
  • 12
    Apr 12th
    4 Files
  • 13
    Apr 13th
    15 Files
  • 14
    Apr 14th
    27 Files
  • 15
    Apr 15th
    19 Files
  • 16
    Apr 16th
    7 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close