exploit the possibilities
Showing 1 - 15 of 15 RSS Feed

Files Date: 2021-02-23

LogonExpert 8.1 Unquoted Service Path
Posted Feb 23, 2021
Authored by Victor Mondragon

LogonExpert version 8.1 suffers from an unquoted service path vulnerability.

tags | exploit
MD5 | 630fdaa9ad1d4309e16c64205f31b9f0
Backdoor.Win32.Agent.xs Insecure Permissions
Posted Feb 23, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.xs malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
MD5 | d2916061c5f8b68a3a9d24232b67ad6e
SpotAuditor 5.3.5 Denial Of Service
Posted Feb 23, 2021
Authored by Sinem Sahin

SpotAuditor version 5.3.5 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 6af369cf6cb1d22462a83724fe72b540
Zeek 3.2.4
Posted Feb 23, 2021
Authored by Robin Sommer, Vern Paxson | Site zeek.org

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know. While focusing on network security monitoring, Zeek provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber-infrastructure. Zeek's user community includes major universities, research labs, supercomputing centers, and open-science communities. This is the source code release.

Changes: A denial of service issue has been addressed as well as two bugs.
tags | tool, intrusion detection
systems | unix
MD5 | 12687bbdab008fa1c1f6d55ff97f3c20
Apache Flink JAR Upload Java Code Execution
Posted Feb 23, 2021
Authored by Brendan Coles, bigger.wing, Henry Chen | Site metasploit.com

This Metasploit module uses job functionality in the Apache Flink dashboard web interface to upload and execute a JAR file, leading to remote execution of arbitrary Java code as the web server user. This module has been tested successfully on Apache Flink versions: 1.9.3 on Ubuntu 18.04.4; 1.11.2 on Ubuntu 18.04.4; 1.9.3 on Windows 10; and 1.11.2 on Windows 10.

tags | exploit, java, remote, web, arbitrary
systems | linux, windows, ubuntu
MD5 | df5b84ceecc3ad0a0dd97aadca7fdd1a
CIRA Canadian Shield Man-In-The-Middle
Posted Feb 23, 2021
Authored by David Coomber

The Canadian Internet Registration Authority (CIRA) Canadian Shield iOS application versions 4.0.12 and below do not validate the SSL certificate it receives when connecting to the application server.

tags | advisory
systems | ios
advisories | CVE-2021-27189
MD5 | bf1cf19e84f8affc4de78a67a8f1e677
Ubuntu Security Notice USN-4467-3
Posted Feb 23, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4467-3 - USN-4467-1 fixed vulnerabilities in QEMU. The fix for CVE-2020-13754 introduced a regression in certain environments. This update fixes the problem. Ren Ding, Hanqing Zhao, Alexander Bulekov, and Anatoly Trosinenko discovered that the QEMU incorrectly handled certain msi-x mmio operations. An attacker inside a guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, vulnerability
systems | linux, ubuntu
advisories | CVE-2020-13754
MD5 | a7e31c1e96f7d9b05feefaa9025c72ab
Batflat CMS 1.3.6 Cross Site Scripting
Posted Feb 23, 2021
Authored by Tadjmen

Batflat CMS version 1.3.6 suffers from multiple persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | c1f79d85745a8a9fcd828d3d01d26ec1
HFS (HTTP File Server) 2.3.x Remote Code Execution
Posted Feb 23, 2021
Authored by Pergyz

HFS (HTTP File Server) version 2.3.x remote code execution exploit.

tags | exploit, remote, web, code execution
advisories | CVE-2014-6287
MD5 | b595e576c62f3f8fe99679ec1f65cc13
VLC 3.0.11 / 3.0.12 Type Confusion
Posted Feb 23, 2021
Authored by Ofir Moskovitch

VLC media player versions 3.0.11 and 3.0.12 suffer from a type confusion vulnerability.

tags | advisory
MD5 | 401657930264b453a85b2bac57f7e6dd
Monica 2.19.1 Cross Site Scripting
Posted Feb 23, 2021
Authored by BouSalman

Monica version 2.19.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-27370
MD5 | 5be6e3ad3b5c51d915fa3357e25b62f0
eChat 1.0 SQL Injection
Posted Feb 23, 2021
Authored by sML

eChat version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7601ab56af8150320041155a410557b4
Product Key Explorer 4.2.7 Denial Of Service
Posted Feb 23, 2021
Authored by Sinem Sahin

Product Key Explorer version 4.2.7 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 4bab1d47da45bed88c8ff9e6ff883337
Windows/x86 Add User Alfred Shellcode
Posted Feb 23, 2021
Authored by Armando Huesca Prida

240 bytes small Windows/x86 add user Alfred to administrators/remote desktop users group shellcode.

tags | remote, x86, shellcode
systems | windows
MD5 | 444c0277c03e6f66fefa718118a17499
Mobile Security And Penetration Testing
Posted Feb 23, 2021
Authored by Furkan Enes Polatoglu

Whitepaper called Mobile Security and Penetration Testing. Written in Turkish.

tags | paper
MD5 | 8eb77f9226e892dea4936264dcedaff7
Page 1 of 1
Back1Next

File Archive:

May 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    1 Files
  • 2
    May 2nd
    4 Files
  • 3
    May 3rd
    26 Files
  • 4
    May 4th
    17 Files
  • 5
    May 5th
    3 Files
  • 6
    May 6th
    32 Files
  • 7
    May 7th
    11 Files
  • 8
    May 8th
    2 Files
  • 9
    May 9th
    2 Files
  • 10
    May 10th
    13 Files
  • 11
    May 11th
    17 Files
  • 12
    May 12th
    22 Files
  • 13
    May 13th
    11 Files
  • 14
    May 14th
    9 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    0 Files
  • 17
    May 17th
    0 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    0 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close