exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 20 of 20 RSS Feed

Files Date: 2021-01-18

IBM Spectrum LSF 10.1 / 10.2 Hardcoded Eauth Key / Eauth Key Exposure
Posted Jan 18, 2021
Authored by John Fitzpatrick

IBM Spectrum LSF versions 10.1 and 10.2 suffer from hardcoded eauth key and eauth key exposure vulnerabilities.

tags | advisory, vulnerability
advisories | CVE-2020-4983
SHA-256 | 7b805922df0af9a8af46eb5021d5ad516d5d2b44e2d6fc8f4bd24f60749d3a03
Microsoft Spooler Local Privilege Elevation
Posted Jan 18, 2021
Authored by bwatters-r7, Peleg Hadar, sailay1996, 404death, Tomer Bar | Site metasploit.com

This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds a permanent elevated backdoor.

tags | exploit
advisories | CVE-2020-1337
SHA-256 | 88e1248d5e21e3a00dd23e98ab5d2075610af6a2f071e96ac3de2656c5624198
OpenStego Free Steganography Solution 0.8.0
Posted Jan 18, 2021
Authored by Samir Vaidya | Site github.com

OpenStego is a tool implemented in Java for generic steganography, with support for password-based encryption of the data. It supports plugins for various steganographic algorithms (currently, only Least Significant Bit algorithm is supported for images).

Changes: Reduced memory consumption drastically for embed/extract operations. Added RPM package.
tags | tool, java, encryption, steganography
SHA-256 | 0284928f4730f75ddba0c72100288a71d8e86da9345256c28c2f61870428bae2
Cisco UCS Manager 2.2(1d) Remote Command Execution
Posted Jan 18, 2021
Authored by liquidsky

Cisco UCS Manager version 2.2(1d) remote command execution exploit. An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System (UCS) Manager before 2.2(4b), 2.2(5) before 2.2(5a), and 3.0 before 3.0(2e) allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888.

tags | exploit, remote, web, arbitrary, shell, cgi
systems | cisco
advisories | CVE-2015-6435
SHA-256 | f3fab9befb8e7cbad15afa31a69504a465f274122e534cebcbde38a7d8f6288e
Red Hat Security Advisory 2021-0162-01
Posted Jan 18, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0162-01 - XStream is a Java XML serialization library to serialize objects to and deserialize object from XML. Issues addressed include code execution and deserialization vulnerabilities.

tags | advisory, java, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2020-26217
SHA-256 | b366e9e05e09ff35036b57f8b3cd40b6da1910782ce05c9ce113a213dee6f24d
Ubuntu Security Notice USN-4695-1
Posted Jan 18, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4695-1 - Choongwoo Han discovered that icoutils incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. It was discovered that icoutils incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. Jerzy Kramarz discovered that icoutils incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-5208, CVE-2017-6009, CVE-2017-6011
SHA-256 | f59cdee7119a63e6267c98cb8436332e70f982c3e605747eb25581220a45a6f0
Inteno IOPSYS 3.16.4 Root Filesystem Access
Posted Jan 18, 2021
Authored by Henrik Pedersen

Inteno IOPSYS version 3.16.4 suffers from a newline injection issue with samba share options that allows an attacker root access to the filesystem.

tags | exploit, root, bypass
SHA-256 | 57d2c4c5417869f5ee8345114e4b71d01749373fb3cb41d1af74d827de647f0b
Star Names Wordlist
Posted Jan 18, 2021
Authored by mylk | Site mylk.github.io

This is a wordlist of 518 star names to be used for cracking.

tags | cracker
SHA-256 | 20700815b15308123e8f272625af5cce6ca1827199e92185cf1e35f12e8cf646
Ancient Greek Names Wordlist
Posted Jan 18, 2021
Authored by mylk | Site mylk.github.io

This is a wordlist of 495 ancient Greek names in their Greek and Latin forms to be used for cracking.

tags | cracker
SHA-256 | 147fa2907d99026b8d94814be470f95bea49a8a8958687d39143449d7f19632f
Constellation Names Wordlist
Posted Jan 18, 2021
Authored by mylk | Site mylk.github.io

This is a wordlist of 73 constellation names to be used for cracking.

tags | cracker
SHA-256 | 2298be93758d34d947f4ec8c69780930ee5dc8c4602dc145e54a572a8808306d
Backdoor.Win32.Mnets MVID-2021-0031 Remote Stack Buffer Overflow
Posted Jan 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Mnets malware suffers from a remote stack buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
SHA-256 | 4ff369dbcc196820e7620832995b441e38f285a39874c53ab81e2b52c8b9552e
Backdoor.Win32.Whgrx MVID-2021-0030 Remote Stack Buffer Overflow
Posted Jan 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Whgrx malware suffers from a remote host header stack buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
SHA-256 | 26e7b337afb1d8fe2e1dda74d9186c6fa83a2e393c4c548cf46ee0a76895d87e
Red Hat Security Advisory 2021-0164-01
Posted Jan 18, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0164-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include bypass and improper authorization vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2019-10130, CVE-2019-10208, CVE-2020-14350, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
SHA-256 | eb8e1e6365635553d7141e57d96f70695631b1f37610081bbae039f06b0b9a33
Life Insurance Management System 1.0 Shell Upload
Posted Jan 18, 2021
Authored by Aitor Herrero

Life Insurance Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 716ccfe814a9be17a074d61e8f32e84baceeaae4e146d0d07f8103072237f03c
Life Insurance Management System 1.0 SQL Injection
Posted Jan 18, 2021
Authored by Aitor Herrero

Life Insurance Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | f1d784ebda1b1ede68fa022c5c1e6e36288afbd0fedd54223373b8bab37ab3d5
Kong Admin API Overview
Posted Jan 18, 2021
Authored by dash

This whitepaper compiles notes that can be useful to security researchers if access to the administrative API is achieved.

tags | paper
SHA-256 | f8cdc318a0a8b674d987eeded8c3380504f6b4cfc7f2b06383775cf521817fc1
Red Hat Security Advisory 2021-0161-01
Posted Jan 18, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0161-01 - PostgreSQL is an advanced object-relational database management system.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
SHA-256 | 710caf5536ab97ac2ec7021fb158593b53341882c0f21e6a55443af15f04d63c
Backdoor.Win32.Latinus.b MVID-2021-0029 Remote Buffer Overflow
Posted Jan 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Latinus.b malware suffers from a remote buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
SHA-256 | a91b3fa467220ae0ca31a58c710477dbc386566cf7cd3f6770615bc70f496ccb
Backdoor.Win32.Nucleroot.t MVID-2021-0028 MaskPE 1.6 Local Buffer Overflow
Posted Jan 18, 2021
Authored by malvuln | Site malvuln.com

MaskPE by yzkzero is a tool for implanting backdoors in existing PE files. The backdoor tool does not properly check the files it loads and falls victim to a file based local buffer overflow.

tags | exploit, overflow, local
SHA-256 | 30543228fb9aaeb986a32662c1807b3029075354133f3ee6b7f9cb049943066a
Red Hat Security Advisory 2021-0163-01.tct
Posted Jan 18, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0163-01.tct - PostgreSQL is an advanced object-relational database management system. Issues addressed include an improper authorization vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-14349, CVE-2020-14350, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
SHA-256 | 575df684c9edc18a6d05418493114b9a6583c3da5ebc93cf9854d5145aa0c61c
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close