exploit the possibilities
Showing 1 - 18 of 18 RSS Feed

Files Date: 2021-04-22

Ubuntu Security Notice USN-4916-2
Posted Apr 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4916-2 - USN-4916-1 fixed vulnerabilities in the Linux kernel. Unfortunately, the fix for CVE-2021-3493 introduced a memory leak in some situations. This update fixes the problem. It was discovered that the overlayfs implementation in the Linux kernel did not properly validate the application of file system capabilities with respect to user namespaces. A local attacker could use this to gain elevated privileges. Various other issues were also addressed.

tags | advisory, kernel, local, vulnerability, memory leak
systems | linux, ubuntu
advisories | CVE-2021-29154, CVE-2021-3493
MD5 | 463f8608bb8c56e58878d9bf6dca9de5
Wireshark Analyzer 3.4.5
Posted Apr 22, 2021
Authored by Gerald Combs | Site wireshark.org

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. This is the source code release.

Changes: Ten bug fixes have been applied along with a fix for a memory consumption vulnerability.
tags | tool, sniffer, protocol
systems | windows, unix
MD5 | ce626304a5a8d993794c5af45c82a594
BMD BMDWeb 2.0 Cross Site Scripting
Posted Apr 22, 2021
Authored by Stefan Viehbock | Site sec-consult.com

BMD BMDWeb 2.0 versions prior to 24.01.21 suffer from persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 3b60a332a26f09f24987c8582306a9bd
Red Hat Security Advisory 2021-1322-01
Posted Apr 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1322-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include integer overflow and null pointer vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2019-25014, CVE-2021-28682, CVE-2021-28683, CVE-2021-29258
MD5 | b0c8a04a7aa58eaf4917f8e0d57b2a84
Zeek 4.0.1
Posted Apr 22, 2021
Authored by Robin Sommer, Vern Paxson | Site zeek.org

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know. While focusing on network security monitoring, Zeek provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber-infrastructure. Zeek's user community includes major universities, research labs, supercomputing centers, and open-science communities. This is the source code release.

Changes: This is a release that addresses quite a few bugs including a null-pointer dereference vulnerability.
tags | tool, intrusion detection
systems | unix
MD5 | 610c02b5b5ccaea7a1ac377534ab1894
nfstream 6.3.0
Posted Apr 22, 2021
Authored by Zied Aouini | Site github.com

nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.

Changes: Implemented tunnel_id extraction.
tags | tool, python
systems | unix
MD5 | b3798076bcfbe79af8c3a2679c128a4e
Packed.Win32.Black.d Unauthenticated Open Proxy
Posted Apr 22, 2021
Authored by malvuln | Site malvuln.com

Packed.Win32.Black.d malware has an unauthenticated open proxy vulnerability.

tags | exploit
systems | windows
MD5 | adc0f7b022a2d64dc61d2975977b6eaf
Red Hat Security Advisory 2021-1324-01
Posted Apr 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1324-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include integer overflow and null pointer vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2021-28682, CVE-2021-28683, CVE-2021-29258
MD5 | e12bb5efa23c615fa978420f9891581a
OTRS 6.0.1 Remote Command Execution
Posted Apr 22, 2021
Authored by Hex_26

OTRS version 6.0.1 remote command execution exploit.

tags | exploit, remote
advisories | CVE-2017-16921
MD5 | 2a4a0d662ddbb40ed9bf9a5bbe357d4d
Backdoor.Win32.DarkKomet.artr Insecure Permissions
Posted Apr 22, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.DarkKomet.artr malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
MD5 | fecd682c5522b35c6a65c75b4d93d54d
Red Hat Security Advisory 2021-1313-01
Posted Apr 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1313-01 - Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Issues addressed include double free, information leakage, and remote SQL injection vulnerabilities.

tags | advisory, remote, vulnerability, sql injection
systems | linux, redhat
advisories | CVE-2017-2662, CVE-2019-18874, CVE-2020-11612, CVE-2020-14335, CVE-2020-25633, CVE-2020-9402
MD5 | 52c06a50249502d87081f9b0b7701eaf
Trojan-Dropper.Win32.Agent.xtp Insecure Permissions
Posted Apr 22, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Agent.xtp malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
MD5 | 8e89a86e6c11f3f3c3c59b5fc095a20d
RemoteClinic 2.0 Cross Site Scripting
Posted Apr 22, 2021
Authored by Saud Ahmad

RemoteClinic version 2.0 suffers from multiple persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2021-30030, CVE-2021-30034, CVE-2021-30039, CVE-2021-30042
MD5 | 595ad2c6469d900f430693ecfc6768cb
IM-Worm.Win32.Bropia.aa Insecure Permissions
Posted Apr 22, 2021
Authored by malvuln | Site malvuln.com

IM-Worm.Win32.Bropia.aa malware suffers from an insecure permissions vulnerability.

tags | exploit, worm
systems | windows
MD5 | 695f9acb229dede25734a9ad77cdd57b
Red Hat Security Advisory 2021-1315-01
Posted Apr 22, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1315-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2021-2163
MD5 | b4131126e2246b1e20bdf82bad9359e2
HEUR.Trojan.Win32.Generic Insecure Permissions
Posted Apr 22, 2021
Authored by malvuln | Site malvuln.com

HEUR.Trojan.Win32.Generic malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
MD5 | 2a482d4c4d4e0b3ced5112d43e250ba3
CMS Made Simple 2.2.15 Cross Site Scripting
Posted Apr 22, 2021
Authored by bt0

CMS Made Simple version 2.2.15 suffers from a reflective cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-28935
MD5 | 1bd97d4c76ab1904826cf2601e327f7c
HTTP Host Header Attacks
Posted Apr 22, 2021
Authored by SunCSR

This is a brief whitepaper that discuss HTTP Host header attacks.

tags | paper, web
MD5 | a1981f34582f6b20784bc27231fda231
Page 1 of 1
Back1Next

File Archive:

October 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    16 Files
  • 2
    Oct 2nd
    1 Files
  • 3
    Oct 3rd
    1 Files
  • 4
    Oct 4th
    24 Files
  • 5
    Oct 5th
    24 Files
  • 6
    Oct 6th
    11 Files
  • 7
    Oct 7th
    14 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    1 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    7 Files
  • 12
    Oct 12th
    15 Files
  • 13
    Oct 13th
    26 Files
  • 14
    Oct 14th
    10 Files
  • 15
    Oct 15th
    6 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close