exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 23 of 23 RSS Feed

Files Date: 2021-03-22

Ubuntu Security Notice USN-4885-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4885-1 - It was discovered that Pygments incorrectly handled parsing SML files. If a user or automated system were tricked into parsing a specially crafted SML file, a remote attacker could cause Pygments to hang, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2021-20270
SHA-256 | cf9c92c9eb6671be05dc716da1af0aeeec5c587a2c09dfac4f7ddf70476ffa13
Red Hat Security Advisory 2021-0949-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0949-01 - Red Hat OpenShift Do is a simple CLI tool for developers to create, build, and deploy applications on OpenShift. The odo tool is completely client-based and requires no server within the OpenShift cluster for deployment. It detects changes to local code and deploys it to the cluster automatically, giving instant feedback to validate changes in real-time. It supports multiple programming languages and frameworks. Red Hat OpenShift Do openshift/odo-init-image 1.1.3 is a container image that is used as part of the InitContainer setup that provisions odo components.

tags | advisory, local
systems | linux, redhat
advisories | CVE-2018-20843, CVE-2019-11719, CVE-2019-11727, CVE-2019-11756, CVE-2019-12749, CVE-2019-14866, CVE-2019-15903, CVE-2019-17006, CVE-2019-17023, CVE-2019-17498, CVE-2019-19956, CVE-2019-20388, CVE-2019-20907, CVE-2019-5094, CVE-2019-5188, CVE-2020-12243, CVE-2020-12400, CVE-2020-12401, CVE-2020-12402, CVE-2020-12403, CVE-2020-1971, CVE-2020-6829, CVE-2020-7595, CVE-2020-8177
SHA-256 | 0f1e14fcd33ae341ac5a449e63f1c5aaf2d67016bb8f8bf52669a3ae8351010d
Red Hat Security Advisory 2021-0948-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0948-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include a cross site scripting vulnerability.

tags | advisory, xss
systems | linux, redhat
advisories | CVE-2019-10178, CVE-2019-10180, CVE-2020-1696
SHA-256 | 1cf1c16829abb46d2105ea57b50e4474e4ebb6be1e9ca72559dfce7274efd371
Ubuntu Security Notice USN-4884-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4884-1 - Loris Reiff discovered that the BPF implementation in the Linux kernel did not properly validate attributes in the getsockopt BPF hook. A local attacker could possibly use this to cause a denial of service. It was discovered that the priority inheritance futex implementation in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2021-20194, CVE-2021-3347, CVE-2021-3348
SHA-256 | 6489a0321e388e395c9abf2af0d1e25ed8126a432c304b1773a5b533cb22c005
MacPaw Encrypto 1.0.1 Unquoted Service Path
Posted Mar 22, 2021
Authored by Ismael Nava

MacPaw Encrypto version 1.0.1 suffers from an unquoted service path vulnerability.

tags | exploit
SHA-256 | b5d2d4e435e62adf8936f495f49c69e8a6aa8eb98356b07592b0ca5c404d687c
Red Hat Security Advisory 2021-0947-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0947-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include a cross site scripting vulnerability.

tags | advisory, xss
systems | linux, redhat
advisories | CVE-2019-10178, CVE-2019-10180, CVE-2020-1696
SHA-256 | 6c8d65bdd6b7609d102c519abd77c3d25ab0ad28f7fe37f9626eb0bc6d093e7a
Trojan-Dropper.Win32.Demp.rft MVID-2021-0138 Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Demp.rft malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
SHA-256 | 1f4f629000e2471575a98a869cc1a0a165e27313c58c7146c8bb1fe6f827bc1a
ProFTPD 1.3.7a Denial Of Service
Posted Mar 22, 2021
Authored by xynmaps

ProFTPD version 1.3.7a suffers from a denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | c0e784a8dfecb916330f571b1f983fd5def5ae69c08468b48e1b027131766f11
Ubuntu Security Notice USN-4883-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4883-1 - Adam Nichols discovered that heap overflows existed in the iSCSI subsystem in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Adam Nichols discovered that the iSCSI subsystem in the Linux kernel did not properly restrict access to iSCSI transport handles. A local attacker could use this to cause a denial of service or expose sensitive information. Various other issues were also addressed.

tags | advisory, denial of service, overflow, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2021-27363, CVE-2021-27364, CVE-2021-27365
SHA-256 | d29d80374cb667f159382aded40ea914c42d0a84ad22af17e1dc69adb813beb8
MyBB 1.8.25 Remote Command Execution
Posted Mar 22, 2021
Authored by SivertPL

MyBB version 1.8.25 chain remote command execution exploit that leverages cross site scripting and SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
advisories | CVE-2021-27889, CVE-2021-27890
SHA-256 | 346cb7b2b76354697b6dad56b74d10e2a918ecc58d1255b8e981d570c996ec5a
Apache Ghostcat Exploitation
Posted Mar 22, 2021
Authored by Team SafeSecurity

This whitepaper focuses on explaining the Apache Ghostcat vulnerability and how it can be used to read file contents of all web applications deployed on Tomcat.

tags | paper, web
advisories | CVE-2020-1938
SHA-256 | dc2b8740104317c36ad79dcb929d334c237272637cf804d3dfc086cec7bb44d1
Credential Dumping Cheatsheet
Posted Mar 22, 2021
Authored by Jeenali Kothari | Site hackingarticles.in

Whitepaper called Credential Dumping Cheatsheet. It covers locations of data and various tooling you can use to find passwords.

tags | paper
SHA-256 | 029b308e2946943240e7d06eea765f709be7c1af2173b93f3e636ef0b7313a94
Trojan-Dropper.Win32.Delf.da MVID-2021-0137 Buffer Overflow
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Delf.da malware suffers from a buffer overflow vulnerability.

tags | exploit, overflow, trojan
systems | windows
SHA-256 | 043f924f6806b59b6f22b1995781a0710598c685f901b518f21a0305fa491d30
HEUR.Trojan.Win32.Generic MVID-2021-0136 Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

HEUR.Trojan.Win32.Generic malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
SHA-256 | 5b3dffe10e3758104f20e7c87d4a72be6b808a64a51d0e89fca8524603481c22
Red Hat Security Advisory 2021-0946-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0946-01 - The OpenJDK 8 container images provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. This release of the Red Hat build of OpenJDK 8 serves as a replacement for the Red Hat build of OpenJDK 8, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2021-20264
SHA-256 | 1ca0eec462bce021ce6217308293cf29147d6f3c721340fddcd2b340651e5c87
Red Hat Security Advisory 2021-0945-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0945-01 - The OpenJDK 11 container images provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. This release of the Red Hat Build of OpenJDK 11 serves as a replacement for the Red Hat Build of OpenJDK 11, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2021-20264
SHA-256 | dc2a5d2b187f35a2e8a5744d6eeb7327e161e8df9d5c0848c443570959dc72ac
OSAS Traverse Extension 11 Unquoted Service Path
Posted Mar 22, 2021
Authored by Tech Johnny

OSAS Traverse Extension 11 suffers from an unquoted service path vulnerability.

tags | exploit
SHA-256 | d5081a005413b7ff934e790a93aaa7906a70d3ca77ff852d52e8fdde8298e802
WordPress Delightful Downloads Jquery File Tree 1.6.6 Path Traversal
Posted Mar 22, 2021
Authored by Nicholas Ferreira

WordPress Delightful Downloads Jquery File Tree plugin versions 1.6.6 and below path traversal exploit.

tags | exploit, file inclusion
advisories | CVE-2017-1000170
SHA-256 | 55dc77f809d56b8b5aa14205f75e1428b5c479b4e6d09486ba4219db69b108dd
Trojan-Dropper.Win32.Dycler.vrp MVID-2021-0135 Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Dycler.vrp malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
SHA-256 | d419d0a70c54bee34fdf004edffc1f7cb5abcbbe87eb0efa654add780443518f
hardwear.io 2021 Call For Papers
Posted Mar 22, 2021
Authored by hardwear.io CFP

The call for papers for hardwear.io 2021 is open. It will take place July 9th through the 10th, 2021.

tags | paper, conference
SHA-256 | 41f2f7a1cc68e7540cb4bf44eafb313d968d9ca6802b1ebeae31737fd6b4c2eb
Zoom 5.4.3 (54779.1115) / 5.5.4 (13142.0301) Information Disclosure
Posted Mar 22, 2021
Authored by Matthias Deeg, Michael Strametz | Site syss.de

Zoom versions 5.4.3 (54779.1115) and 5.5.4 (13142.0301) temporarily shares other application windows not in scope for sharing.

tags | exploit
systems | windows
advisories | CVE-2021-28133
SHA-256 | 8edd2952731c5406247e59a26f231a47d2274297902c48d382bde6e4e4477b3b
SAPSetup Automatic Workstation Update Service 750 Unquoted Service Path
Posted Mar 22, 2021
Authored by Alan Mondragon

SAPSetup Automatic Workstation Update Service 750 suffers from an unquoted service path vulnerability.

tags | exploit
SHA-256 | 9cb9a475db9e3f4aa0fbcbec3e67d7163a35af29faed63f79768573f94e20917
Winpakpro 4.8 Unquoted Service Path
Posted Mar 22, 2021
Authored by Alan Mondragon

Winpakpro version 4.8 suffers from multiple unquoted service path vulnerabilities.

tags | exploit, vulnerability
SHA-256 | 4f393064ad089a914e798971df1dbb23b60694589ed0b4b5b8d1cefe8f5b4841
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close