exploit the possibilities
Showing 1 - 23 of 23 RSS Feed

Files Date: 2021-03-22

Ubuntu Security Notice USN-4885-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4885-1 - It was discovered that Pygments incorrectly handled parsing SML files. If a user or automated system were tricked into parsing a specially crafted SML file, a remote attacker could cause Pygments to hang, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2021-20270
MD5 | a3a85071b4f559e38a297f2f2c2cd26b
Red Hat Security Advisory 2021-0949-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0949-01 - Red Hat OpenShift Do is a simple CLI tool for developers to create, build, and deploy applications on OpenShift. The odo tool is completely client-based and requires no server within the OpenShift cluster for deployment. It detects changes to local code and deploys it to the cluster automatically, giving instant feedback to validate changes in real-time. It supports multiple programming languages and frameworks. Red Hat OpenShift Do openshift/odo-init-image 1.1.3 is a container image that is used as part of the InitContainer setup that provisions odo components.

tags | advisory, local
systems | linux, redhat
advisories | CVE-2018-20843, CVE-2019-11719, CVE-2019-11727, CVE-2019-11756, CVE-2019-12749, CVE-2019-14866, CVE-2019-15903, CVE-2019-17006, CVE-2019-17023, CVE-2019-17498, CVE-2019-19956, CVE-2019-20388, CVE-2019-20907, CVE-2019-5094, CVE-2019-5188, CVE-2020-12243, CVE-2020-12400, CVE-2020-12401, CVE-2020-12402, CVE-2020-12403, CVE-2020-1971, CVE-2020-6829, CVE-2020-7595, CVE-2020-8177
MD5 | 5d9bb5ed3d28f53dd20a3130fa28953c
Red Hat Security Advisory 2021-0948-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0948-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include a cross site scripting vulnerability.

tags | advisory, xss
systems | linux, redhat
advisories | CVE-2019-10178, CVE-2019-10180, CVE-2020-1696
MD5 | 8c946da9b1ccca559b8ee7dc248865c6
Ubuntu Security Notice USN-4884-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4884-1 - Loris Reiff discovered that the BPF implementation in the Linux kernel did not properly validate attributes in the getsockopt BPF hook. A local attacker could possibly use this to cause a denial of service. It was discovered that the priority inheritance futex implementation in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2021-20194, CVE-2021-3347, CVE-2021-3348
MD5 | d65259f1229a869c8e40f8221cabfb17
MacPaw Encrypto 1.0.1 Unquoted Service Path
Posted Mar 22, 2021
Authored by Ismael Nava

MacPaw Encrypto version 1.0.1 suffers from an unquoted service path vulnerability.

tags | exploit
MD5 | b41061e268bd3c836ec3d4e613e65ba0
Red Hat Security Advisory 2021-0947-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0947-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include a cross site scripting vulnerability.

tags | advisory, xss
systems | linux, redhat
advisories | CVE-2019-10178, CVE-2019-10180, CVE-2020-1696
MD5 | 066774a9bd5d7d5a55817acb00dc2356
Trojan-Dropper.Win32.Demp.rft Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Demp.rft malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
MD5 | 79c8953c3bf4f40b753793315c6eaa62
ProFTPD 1.3.7a Denial Of Service
Posted Mar 22, 2021
Authored by xynmaps

ProFTPD version 1.3.7a suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 24275c487afa97667075812d6974cad5
Ubuntu Security Notice USN-4883-1
Posted Mar 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4883-1 - Adam Nichols discovered that heap overflows existed in the iSCSI subsystem in the Linux kernel. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Adam Nichols discovered that the iSCSI subsystem in the Linux kernel did not properly restrict access to iSCSI transport handles. A local attacker could use this to cause a denial of service or expose sensitive information. Various other issues were also addressed.

tags | advisory, denial of service, overflow, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2021-27363, CVE-2021-27364, CVE-2021-27365
MD5 | f8ee214038707c269cc83f16f2f86c1a
MyBB 1.8.25 Remote Command Execution
Posted Mar 22, 2021
Authored by SivertPL

MyBB version 1.8.25 chain remote command execution exploit that leverages cross site scripting and SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
advisories | CVE-2021-27889, CVE-2021-27890
MD5 | 8df4b80b70018e49e686b9dad1d61e91
Apache Ghostcat Exploitation
Posted Mar 22, 2021
Authored by Team SafeSecurity

This whitepaper focuses on explaining the Apache Ghostcat vulnerability and how it can be used to read file contents of all web applications deployed on Tomcat.

tags | paper, web
advisories | CVE-2020-1938
MD5 | 7b5367c3ca27515550ec6987a5c4a554
Credential Dumping Cheatsheet
Posted Mar 22, 2021
Authored by Jeenali Kothari | Site hackingarticles.in

Whitepaper called Credential Dumping Cheatsheet. It covers locations of data and various tooling you can use to find passwords.

tags | paper
MD5 | 23e7ebc003820d6a7825532027cba6c9
Trojan-Dropper.Win32.Delf.da Buffer Overflow
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Delf.da malware suffers from a buffer overflow vulnerability.

tags | exploit, overflow, trojan
systems | windows
MD5 | d3f8bf0f02a6872665d054c4cd406827
HEUR.Trojan.Win32.Generic Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

HEUR.Trojan.Win32.Generic malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
MD5 | 09251124923c21316c7d135fdac3085e
Red Hat Security Advisory 2021-0946-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0946-01 - The OpenJDK 8 container images provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. This release of the Red Hat build of OpenJDK 8 serves as a replacement for the Red Hat build of OpenJDK 8, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2021-20264
MD5 | e98818a803c3ea6f0f5fc2880af2e764
Red Hat Security Advisory 2021-0945-01
Posted Mar 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0945-01 - The OpenJDK 11 container images provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. This release of the Red Hat Build of OpenJDK 11 serves as a replacement for the Red Hat Build of OpenJDK 11, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2021-20264
MD5 | 42860674c99311b0d471242725307549
OSAS Traverse Extension 11 Unquoted Service Path
Posted Mar 22, 2021
Authored by Tech Johnny

OSAS Traverse Extension 11 suffers from an unquoted service path vulnerability.

tags | exploit
MD5 | 8ac29b8b19a84faaa6e8817c06d4a2d8
WordPress Delightful Downloads Jquery File Tree 1.6.6 Path Traversal
Posted Mar 22, 2021
Authored by Nicholas Ferreira

WordPress Delightful Downloads Jquery File Tree plugin versions 1.6.6 and below path traversal exploit.

tags | exploit, file inclusion
advisories | CVE-2017-1000170
MD5 | 486a3c691b8eb36346d834cb5c332a48
Trojan-Dropper.Win32.Dycler.vrp Insecure Permissions
Posted Mar 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Dycler.vrp malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
MD5 | e41ee939ab6d46b0781ccd480436a3a0
hardwear.io 2021 Call For Papers
Posted Mar 22, 2021
Authored by hardwear.io CFP

The call for papers for hardwear.io 2021 is open. It will take place July 9th through the 10th, 2021.

tags | paper, conference
MD5 | 2143a391744c79048dfd6a64085656e6
Zoom 5.4.3 (54779.1115) / 5.5.4 (13142.0301) Information Disclosure
Posted Mar 22, 2021
Authored by Matthias Deeg, Michael Strametz | Site sec-consult.com

Zoom versions 5.4.3 (54779.1115) and 5.5.4 (13142.0301) temporarily shares other application windows not in scope for sharing.

tags | exploit
systems | windows
advisories | CVE-2021-28133
MD5 | 59e91a4dcecfcc003db5eec3a2ab5987
SAPSetup Automatic Workstation Update Service 750 Unquoted Service Path
Posted Mar 22, 2021
Authored by Alan Mondragon

SAPSetup Automatic Workstation Update Service 750 suffers from an unquoted service path vulnerability.

tags | exploit
MD5 | 22ca25ba5753e27fdbb4d9c6b1fccb5f
Winpakpro 4.8 Unquoted Service Path
Posted Mar 22, 2021
Authored by Alan Mondragon

Winpakpro version 4.8 suffers from multiple unquoted service path vulnerabilities.

tags | exploit, vulnerability
MD5 | 0f9f010242dced2a3d4c1d62b2f1e714
Page 1 of 1
Back1Next

File Archive:

May 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    1 Files
  • 2
    May 2nd
    4 Files
  • 3
    May 3rd
    27 Files
  • 4
    May 4th
    17 Files
  • 5
    May 5th
    3 Files
  • 6
    May 6th
    32 Files
  • 7
    May 7th
    11 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    0 Files
  • 10
    May 10th
    0 Files
  • 11
    May 11th
    0 Files
  • 12
    May 12th
    0 Files
  • 13
    May 13th
    0 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    0 Files
  • 17
    May 17th
    0 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    0 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close