what you don't know can hurt you
Showing 1 - 25 of 339 RSS Feed

Files Date: 2021-04-01 to 2021-04-30

GRAudit Grep Auditing Tool 3.0
Posted Apr 29, 2021
Authored by Wireghoul | Site justanotherhacker.com

Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible.

Changes: Fixed broken Java rule causing massive false positives. Additional PHP fruit rules added.
tags | tool
systems | unix
MD5 | 7c8dfb24277f5b0dfd742652a262a2a1
Ubuntu Security Notice USN-4929-1
Posted Apr 29, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4929-1 - Greg Kuechle discovered that Bind incorrectly handled certain incremental zone updates. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. Siva Kakarla discovered that Bind incorrectly handled certain DNAME records. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. It was discovered that Bind incorrectly handled GSSAPI security policy negotiation. A remote attacker could use this issue to cause Bind to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2021-25214, CVE-2021-25215, CVE-2021-25216
MD5 | 8717bb83ee18054ef92b8588dcefa170
Red Hat Security Advisory 2021-1468-01
Posted Apr 29, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1468-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2021-25215
MD5 | fa0f38899e7f17cb8e9c7b082d704845
NodeBB Emoji 3.2.1 Arbitrary FIle Write
Posted Apr 29, 2021
Authored by 1F98D

NodeBB Emoji plugin version 3.2.1 suffers from an arbitrary file write vulnerability.

tags | exploit, arbitrary
MD5 | 49005c6dc65d4c7b995ca019f2d8b491
Ubuntu Security Notice USN-4928-1
Posted Apr 29, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4928-1 - It was discovered that GStreamer Good Plugins incorrectly handled certain files. An attacker could possibly use this issue to cause access sensitive information or cause a crash. It was discovered that GStreamer Good Plugins incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code or cause a crash. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 20.10. Various other issues were also addressed.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2021-3497, CVE-2021-3498
MD5 | 4d4792aa2bffcfb70aaac8e21719ae86
Red Hat Security Advisory 2021-1452-01
Posted Apr 29, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1452-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. The ceph-ansible package provides Ansible playbooks for installing, maintaining, and upgrading Red Hat Ceph Storage. Perf Tools is a collection of performance analysis tools, including a high performance multi-threaded malloc() implementation that works particularly well with threads and STL, a thread-friendly heap-checker, a heap profiler, and a cpu-profiler.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-25678, CVE-2021-3139
MD5 | 4d57e64d73bbcbf3a0bae57a9ace381b
Cacti 1.2.12 SQL Injection / Remote Code Execution
Posted Apr 29, 2021
Authored by M4yFly, Leonardo Paiva

Cacti version 1.2.12 remote code execution exploit that leverages a remote SQL vulnerability.

tags | exploit, remote, code execution, sql injection
advisories | CVE-2020-14295
MD5 | 7d02b8eae5a01a746cf44cba4c1fe1a3
Red Hat Security Advisory 2021-1448-01
Posted Apr 29, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1448-01 - Red Hat Advanced Cluster Management for Kubernetes 2.0.10 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which resolve some security issues and bugs. Issues addressed include a code execution vulnerability.

tags | advisory, code execution
systems | linux, redhat
advisories | CVE-2020-0466, CVE-2020-15586, CVE-2020-16845, CVE-2020-27152, CVE-2020-28362, CVE-2020-28374, CVE-2021-20305, CVE-2021-23358, CVE-2021-26708, CVE-2021-27363, CVE-2021-27364, CVE-2021-27365, CVE-2021-3347, CVE-2021-3449, CVE-2021-3450
MD5 | 5858c9ee6963bfd4463cba6e1e6d4385
Fog Project 1.5.9 Shell Upload
Posted Apr 29, 2021
Authored by sML

Fog Project version 1.5.9 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 4137325100e71652f6c4dc385797fd66
PFSense 2.5.0 Cross Site Scripting
Posted Apr 28, 2021
Authored by William Costa

PFSense version 2.5.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | da48c8ecd86bf68532a8db99f3ada8be
Android NFC Stack Out-Of-Bounds Write
Posted Apr 28, 2021
Authored by Google Security Research, nedwill

Android suffers from an out-of-bounds write in the NFC stack when handling MIFARE Classic TLVs.

tags | exploit
advisories | CVE-2021-0430
MD5 | 1876be15a92df0d791bf35ae3be87ae4
Ubuntu Security Notice USN-4913-2
Posted Apr 28, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4913-2 - USN-4913-1 fixed vulnerabilities in Underscore. This update provides the corresponding updates for Ubuntu 21.04. It was discovered that Underscore incorrectly handled certain inputs. An attacker could possibly use this issue to inject arbitrary code.

tags | advisory, arbitrary, vulnerability
systems | linux, ubuntu
advisories | CVE-2021-23358
MD5 | d198fc4c11a333962e288a84a28dca41
Red Hat Security Advisory 2021-1445-01
Posted Apr 28, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1445-01 - The OpenJDK 8 packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. This release of the Red Hat build of OpenJDK 8 for Windows serves as a replacement for the Red Hat build of OpenJDK 8 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat, windows
advisories | CVE-2021-2161, CVE-2021-2163
MD5 | 895d4ba6bc86c4c59b1111c61f54a3ee
Red Hat Security Advisory 2021-1444-01
Posted Apr 28, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1444-01 - The OpenJDK 8 packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. This release of the Red Hat build of OpenJDK 8 for portable Linux serves as a replacement for the Red Hat build of OpenJDK 8 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2021-2163
MD5 | c4417b2de19a902d98cabbd1cf4dc24c
Red Hat Security Advisory 2021-1447-01
Posted Apr 28, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1447-01 - The OpenJDK 11 packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. This release of the Red Hat build of OpenJDK 11 for Windows serves as a replacement for the Red Hat build of OpenJDK 11 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat, windows
advisories | CVE-2021-2161, CVE-2021-2163
MD5 | 41962cbb637bf1aa0dbd81efe491a535
Red Hat Security Advisory 2021-1446-01
Posted Apr 28, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1446-01 - The OpenJDK 11 packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. This release of the Red Hat build of OpenJDK 11 for portable Linux serves as a replacement for the Red Hat build of OpenJDK 11 and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2021-2163
MD5 | 9873994b6eba2f96b3106c99305e0d75
Apple Security Advisory 2021-04-26-10
Posted Apr 28, 2021
Authored by Apple | Site apple.com

Apple Security Advisory 2021-04-26-10 - Xcode 12.5 addresses an arbitrary code execution vulnerability.

tags | advisory, arbitrary, code execution
systems | apple
advisories | CVE-2021-21300
MD5 | 2c6f6cb6441710436e39f98eee4c3335
Apple Security Advisory 2021-04-26-9
Posted Apr 28, 2021
Authored by Apple | Site apple.com

Apple Security Advisory 2021-04-26-9 - iTunes 12.11.3 for Windows addresses cross site scripting and use-after-free vulnerabilities.

tags | advisory, vulnerability, xss
systems | windows, apple
advisories | CVE-2020-7463, CVE-2021-1811, CVE-2021-1825, CVE-2021-1857
MD5 | 668cde28836e64c17d0bbc33969dc89f
Apple Security Advisory 2021-04-26-8
Posted Apr 28, 2021
Authored by Apple | Site apple.com

Apple Security Advisory 2021-04-26-8 - iCloud for Windows 12.3 addresses cross site scripting and use-after-free vulnerabilities.

tags | advisory, vulnerability, xss
systems | windows, apple
advisories | CVE-2020-7463, CVE-2021-1811, CVE-2021-1825, CVE-2021-1857
MD5 | a9f491649e323a6f4652efcef5f44e60
Apple Security Advisory 2021-04-26-7
Posted Apr 28, 2021
Authored by Apple | Site apple.com

Apple Security Advisory 2021-04-26-7 - Safari 14.1 addresses cross site scripting and use-after-free vulnerabilities.

tags | advisory, vulnerability, xss
systems | apple
advisories | CVE-2020-7463, CVE-2021-1825
MD5 | 172a622d68962ff279256a61a37f14fb
Apple Security Advisory 2021-04-26-5
Posted Apr 28, 2021
Authored by Apple | Site apple.com

Apple Security Advisory 2021-04-26-5 - watchOS 7.4 addresses buffer overflow, bypass, code execution, cross site scripting, denial of service, double free, heap corruption, out of bounds read, out of bounds write, and use-after-free vulnerabilities.

tags | advisory, denial of service, overflow, vulnerability, code execution, xss
systems | apple
advisories | CVE-2021-1739, CVE-2021-1740, CVE-2021-1807, CVE-2021-1808, CVE-2021-1809, CVE-2021-1811, CVE-2021-1813, CVE-2021-1814, CVE-2021-1815, CVE-2021-1816, CVE-2021-1817, CVE-2021-1820, CVE-2021-1822, CVE-2021-1825, CVE-2021-1826, CVE-2021-1832, CVE-2021-1843, CVE-2021-1846, CVE-2021-1849, CVE-2021-1851, CVE-2021-1857, CVE-2021-1858, CVE-2021-1860, CVE-2021-1864, CVE-2021-1868, CVE-2021-1872, CVE-2021-1875, CVE-2021-1880
MD5 | 14cccbfd5ffa206e0abdfc29c80fd160
Apple Security Advisory 2021-04-26-6
Posted Apr 28, 2021
Authored by Apple | Site apple.com

Apple Security Advisory 2021-04-26-6 - tvOS 14.5 addresses buffer overflow, bypass, code execution, cross site scripting, denial of service, double free, heap corruption, out of bounds read, out of bounds write, and use-after-free vulnerabilities.

tags | advisory, denial of service, overflow, vulnerability, code execution, xss
systems | apple
advisories | CVE-2021-1739, CVE-2021-1740, CVE-2021-1808, CVE-2021-1809, CVE-2021-1811, CVE-2021-1813, CVE-2021-1815, CVE-2021-1816, CVE-2021-1817, CVE-2021-1820, CVE-2021-1822, CVE-2021-1825, CVE-2021-1826, CVE-2021-1832, CVE-2021-1836, CVE-2021-1843, CVE-2021-1844, CVE-2021-1846, CVE-2021-1849, CVE-2021-1851, CVE-2021-1857, CVE-2021-1858, CVE-2021-1860, CVE-2021-1864, CVE-2021-1868, CVE-2021-1875, CVE-2021-1881, CVE-2021-1882
MD5 | d1196bcc1613dbb6b8f54cd25ea9dea2
Ubuntu Security Notice USN-4892-1
Posted Apr 28, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4892-1 - It was discovered that OpenJDK incorrectly verified Jar signatures. An attacker could possibly use this issue to bypass intended security restrictions when using Jar files signed with a disabled algorithm.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2021-2163
MD5 | bd90f8535dda00ab8338d916ec32f0c1
Backdoor.Win32.Agent.afq Heap Corruption
Posted Apr 28, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.afq malware suffers from a heap corruption vulnerability.

tags | exploit
systems | windows
MD5 | 2e2878e4b44cb1edd0ffcd902d324dd9
Backdoor.Win32.Agent.afq Directory Traversal
Posted Apr 28, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.afq malware suffers from a directory traversal vulnerability.

tags | exploit
systems | windows
MD5 | 4366de52456ebadbb82046cc42dd5a78
Page 1 of 14
Back12345Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    2 Files
  • 13
    Jun 13th
    1 Files
  • 14
    Jun 14th
    32 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close