what you don't know can hurt you
Showing 1 - 20 of 20 RSS Feed

Files Date: 2021-01-18

IBM Spectrum LSF 10.1 / 10.2 Hardcoded Eauth Key / Eauth Key Exposure
Posted Jan 18, 2021
Authored by John Fitzpatrick

IBM Spectrum LSF versions 10.1 and 10.2 suffer from hardcoded eauth key and eauth key exposure vulnerabilities.

tags | advisory, vulnerability
advisories | CVE-2020-4983
MD5 | 65c67bbfe71af2731bd4de95c90a4a57
Microsoft Spooler Local Privilege Elevation
Posted Jan 18, 2021
Authored by bwatters-r7, Peleg Hadar, sailay1996, 404death, Tomer Bar | Site metasploit.com

This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds a permanent elevated backdoor.

tags | exploit
advisories | CVE-2020-1337
MD5 | 190acc955c26bdcd0792eec51903d02d
OpenStego Free Steganography Solution 0.8.0
Posted Jan 18, 2021
Authored by Samir Vaidya | Site github.com

OpenStego is a tool implemented in Java for generic steganography, with support for password-based encryption of the data. It supports plugins for various steganographic algorithms (currently, only Least Significant Bit algorithm is supported for images).

Changes: Reduced memory consumption drastically for embed/extract operations. Added RPM package.
tags | tool, java, encryption, steganography
MD5 | 104411e6feaa7e86fe36b2b8637ba744
Cisco UCS Manager 2.2(1d) Remote Command Execution
Posted Jan 18, 2021
Authored by liquidsky

Cisco UCS Manager version 2.2(1d) remote command execution exploit. An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System (UCS) Manager before 2.2(4b), 2.2(5) before 2.2(5a), and 3.0 before 3.0(2e) allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888.

tags | exploit, remote, web, arbitrary, shell, cgi
systems | cisco
advisories | CVE-2015-6435
MD5 | 483ae8252192dee26cf8c9814dc78eb9
Red Hat Security Advisory 2021-0162-01
Posted Jan 18, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0162-01 - XStream is a Java XML serialization library to serialize objects to and deserialize object from XML. Issues addressed include code execution and deserialization vulnerabilities.

tags | advisory, java, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2020-26217
MD5 | d9296480dea43fdb2055da43de4742be
Ubuntu Security Notice USN-4695-1
Posted Jan 18, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4695-1 - Choongwoo Han discovered that icoutils incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. It was discovered that icoutils incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. Jerzy Kramarz discovered that icoutils incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-5208, CVE-2017-6009, CVE-2017-6011
MD5 | cc7f5a77193361f6afb87d4fc323cbb7
Inteno IOPSYS 3.16.4 Root Filesystem Access
Posted Jan 18, 2021
Authored by Henrik Pedersen

Inteno IOPSYS version 3.16.4 suffers from a newline injection issue with samba share options that allows an attacker root access to the filesystem.

tags | exploit, root, bypass
MD5 | 4dd764fc81b64e4c4edde1c782c708ff
Star Names Wordlist
Posted Jan 18, 2021
Authored by mylk | Site mylk.github.io

This is a wordlist of 518 star names to be used for cracking.

tags | cracker
MD5 | 834adc6a705c8b8ca54145e7e09b05e5
Ancient Greek Names Wordlist
Posted Jan 18, 2021
Authored by mylk | Site mylk.github.io

This is a wordlist of 495 ancient Greek names in their Greek and Latin forms to be used for cracking.

tags | cracker
MD5 | 2a2985ef1abe4009ab0cc6e822c5dc53
Constellation Names Wordlist
Posted Jan 18, 2021
Authored by mylk | Site mylk.github.io

This is a wordlist of 73 constellation names to be used for cracking.

tags | cracker
MD5 | 61af0bf59b97274bb1926e6ce6b22c86
Backdoor.Win32.Mnets Remote Stack Buffer Overflow
Posted Jan 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Mnets malware suffers from a remote stack buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
MD5 | 5d8aad9a560a7ece945d0fe95285e29d
Backdoor.Win32.Whgrx Remote Stack Buffer Overflow
Posted Jan 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Whgrx malware suffers from a remote host header stack buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
MD5 | 029e2786ef07f0a4088dd28099d0c0ba
Red Hat Security Advisory 2021-0164-01
Posted Jan 18, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0164-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include bypass and improper authorization vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2019-10130, CVE-2019-10208, CVE-2020-14350, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
MD5 | 5e70b2fefa51825ab0f354bc031e4ac1
Life Insurance Management System 1.0 Shell Upload
Posted Jan 18, 2021
Authored by Aitor Herrero

Life Insurance Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | c698cf2be2d505e9ebdaf79dc6745a4f
Life Insurance Management System 1.0 SQL Injection
Posted Jan 18, 2021
Authored by Aitor Herrero

Life Insurance Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | be1a73249748787af66e4615c9b228b6
Kong Admin API Overview
Posted Jan 18, 2021
Authored by dash at undisclosed

This whitepaper compiles notes that can be useful to security researchers if access to the administrative API is achieved.

tags | paper
MD5 | 12f9554092c0319f6a27ae52e2d56846
Red Hat Security Advisory 2021-0161-01
Posted Jan 18, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0161-01 - PostgreSQL is an advanced object-relational database management system.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
MD5 | 5f789890ec48baefb1c49baa181f60db
Backdoor.Win32.Latinus.b Remote Buffer Overflow
Posted Jan 18, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Latinus.b malware suffers from a remote buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
MD5 | b661fe827bf583c7569949c8d8a2da77
Backdoor.Win32.Nucleroot.t MaskPE 1.6 Local Buffer Overflow
Posted Jan 18, 2021
Authored by malvuln | Site malvuln.com

MaskPE by yzkzero is a tool for implanting backdoors in existing PE files. The backdoor tool does not properly check the files it loads and falls victim to a file based local buffer overflow.

tags | exploit, overflow, local
MD5 | 72efcb72d724bc0daa49e648ba265a77
Red Hat Security Advisory 2021-0163-01.tct
Posted Jan 18, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0163-01.tct - PostgreSQL is an advanced object-relational database management system. Issues addressed include an improper authorization vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-14349, CVE-2020-14350, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
MD5 | 229435fcf242fc18aa0e98f84f071be7
Page 1 of 1
Back1Next

File Archive:

January 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    4 Files
  • 2
    Jan 2nd
    3 Files
  • 3
    Jan 3rd
    3 Files
  • 4
    Jan 4th
    33 Files
  • 5
    Jan 5th
    31 Files
  • 6
    Jan 6th
    21 Files
  • 7
    Jan 7th
    15 Files
  • 8
    Jan 8th
    19 Files
  • 9
    Jan 9th
    1 Files
  • 10
    Jan 10th
    1 Files
  • 11
    Jan 11th
    33 Files
  • 12
    Jan 12th
    19 Files
  • 13
    Jan 13th
    27 Files
  • 14
    Jan 14th
    8 Files
  • 15
    Jan 15th
    16 Files
  • 16
    Jan 16th
    1 Files
  • 17
    Jan 17th
    2 Files
  • 18
    Jan 18th
    20 Files
  • 19
    Jan 19th
    32 Files
  • 20
    Jan 20th
    15 Files
  • 21
    Jan 21st
    10 Files
  • 22
    Jan 22nd
    16 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close