what you don't know can hurt you
Showing 1 - 16 of 16 RSS Feed

Files Date: 2021-02-24

Global Socket 1.4.25
Posted Feb 24, 2021
Authored by thc | Site thc.org

Global Socket is a tool for moving data from here to there, securely, fast, and through NAT and firewalls. It uses the Global Socket Relay Network to connect TCP pipes, has end-to-end encryption (using OpenSSL's SRP / RFC-5054), AES-256 and key exchange using 4096-bit Prime, requires no PKI, has Perfect Forward Secrecy, and TOR support.

Changes: Terminal/ANSI code fixes.
tags | tool, tcp
systems | unix
MD5 | 678586d46969ea1bbd7e8b77dacafa3e
jSQL Injection 0.84
Posted Feb 24, 2021
Authored by ron190 | Site github.com

jSQL Injection is a lightweight application used to find database information from a distant server. jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in various other distributions like Pentest Box, Parrot Security OS, ArchStrike and BlackArch Linux. This is the source code release.

Changes: Integrated Nashorn sandbox for Java 15. Fixed Mac glitches. Restored Scan results. Used Java 11 and dropped Java 8, 9, 10.
tags | tool, scanner, sql injection
systems | linux, unix
MD5 | 94ca759744816cccb5adcb61bc26ebf8
Ubuntu Security Notice USN-4745-1
Posted Feb 24, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4745-1 - David Benjamin discovered that OpenSSL incorrectly handled comparing certificates containing a EDIPartyName name type. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. Tavis Ormandy discovered that OpenSSL incorrectly handled parsing issuer fields. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2020-1971, CVE-2021-23841
MD5 | 1a7f63d15153eb9e27d7797b79124c6a
Unified Remote 3.9.0.2463 Remote Code Execution
Posted Feb 24, 2021
Authored by H4rk3nz0

Unified Remote version 3.9.0.2463 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 240c6cd2b7dc24499bf8b9041b110f77
Red Hat Security Advisory 2021-0651-01
Posted Feb 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0651-01 - The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-27135
MD5 | 71eee0bbdbc20218bdaa2fe3b959bdd8
Backdoor.Win32.Delf.adag Hardcoded Credentials / Traversal
Posted Feb 24, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Delf.adag malware suffers from hardcoded credential and traversal vulnerabilities.

tags | exploit, vulnerability
systems | windows
MD5 | 43bbfd711b4fcf5ebe51f0cd6acd891f
Red Hat Security Advisory 2021-0650-01
Posted Feb 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0650-01 - The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-27135
MD5 | 934fe16544fc7d58cf40dfba921a6740
LayerBB 1.1.4 SQL Injection
Posted Feb 24, 2021
Authored by Gorkem Hasin

LayerBB version 1.1.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6de2f87bd092a51c9d7160d359e7ae0e
Python jsonpickle 2.0.0 Remote Code Execution
Posted Feb 24, 2021
Authored by Shay Reuven, Adi Malyanker

Python jsonpickle version 2.0.0 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution, python
MD5 | 7f823e00e2ad92c744d0d31059e24f72
Red Hat Security Advisory 2021-0648-01
Posted Feb 24, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0648-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include buffer overflow and information leakage vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2020-11947, CVE-2020-25723
MD5 | d2fc464afb4c2756cdb2778fedba6c64
Backdoor.Win32.Agent.xw Denial Of Service / Null Pointer
Posted Feb 24, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.xw malware suffers from denial of service and null pointer vulnerabilities.

tags | exploit, denial of service, vulnerability
systems | windows
MD5 | 133af23d67b6f241199602c300eaa495
Active Directory Penetration Testing
Posted Feb 24, 2021
Authored by Hasan Ekin Dumanogullari

Whitepaper called Active Directory Penetration Testing. Written in Turkish.

tags | paper
MD5 | 6cf7cdabf5934f885805bd1b3b9746dc
VMware vCenter 6.5 / 7.0 Remote Code Execution Proof Of Concept
Posted Feb 24, 2021
Authored by NebulabdSec | Site github.com

VMware vCenter version 6.5 and 7.0 remote code execution proof of concept exploit.

tags | exploit, remote, code execution, proof of concept
advisories | CVE-2021-21972
MD5 | 0e2cd531bc599d8832ac0d628c3d1aea
Microsoft Exchange Server msExchEcpCanary CSRF / Privilege Escalation
Posted Feb 24, 2021
Authored by Source Incite | Site github.com

Microsoft Exchange Server has a flaw that exists within the HasValidCanary function inside of the Canary15 class. The issue results in an insecure generation of cross site request forgery tokens that can be used to install an office-addins. An attacker can leverage this vulnerability to escalate privileges to an administrative account.

tags | exploit, csrf
advisories | CVE-2021-24085
MD5 | 81b28382748f4fe34c5a25dbf5cda8e9
SLMail 5.1.0.4420 Remote Code Execution
Posted Feb 24, 2021
Authored by mednic | Site github.com

SLMail version 5.1.0.4420 remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2003-0264
MD5 | fb80ef2495dd59e60f4f343bd7cf02a2
Softros LAN Messenger 9.6.4 Unquoted Service Path
Posted Feb 24, 2021
Authored by Victor Mondragon

Softros LAN Messenger version 9.6.4 suffers from an unquoted service path vulnerability.

tags | exploit
MD5 | 465e7cfb9e6cad9b65826611c82d73c1
Page 1 of 1
Back1Next

File Archive:

August 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    1 Files
  • 2
    Aug 2nd
    7 Files
  • 3
    Aug 3rd
    5 Files
  • 4
    Aug 4th
    0 Files
  • 5
    Aug 5th
    0 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    0 Files
  • 9
    Aug 9th
    0 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close