exploit the possibilities
Showing 1 - 25 of 35 RSS Feed

Files Date: 2021-06-01

American Fuzzy Lop plus plus 3.13c
Posted Jun 1, 2021
Authored by van Hauser, thc, Heiko Eissfeldt, Andrea Fioraldi, Dominik Maier | Site thc.org

Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.

Changes: frida_mode added. Created a fuzzing dictionary. Updated the grammar custom mutator to the newest version. Dozens of changes applied across afl-fuzz and afl-cc.
tags | tool, fuzzer
systems | unix
MD5 | 197fc50133bc998bbd5fcbd86d6e098c
Flawfinder 2.0.16
Posted Jun 1, 2021
Authored by David A. Wheeler | Site sourceforge.net

Flawfinder searches through source code for potential security flaws, listing potential security flaws sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function.

Changes: The distributed source file is now flawfinder.py, not flawfinder. Added support for generating SARIF output. Improved handling of Git patch format.
tags | tool
systems | unix
MD5 | c0bf0076b34fcc64ff8b22aaac2ca676
Korenix CSRF / Backdoor Accounts / Command Injection / Missing Authentication
Posted Jun 1, 2021
Authored by T. Weber | Site sec-consult.com

Multiple Korenix products are affected by unauthenticated device administration, backdoor accounts, cross site request forgery, unauthenticated tftp actions, and command injection vulnerabilities. Products affected include JetNet 5428G-20SFP, JetNet 5810G, JetNet 4706F, JetNet 4706, JetNet 4706, JetNet 4510, JetNet 5010, JetNet 5310, and JetNet 6095.

tags | exploit, vulnerability, csrf
advisories | CVE-2020-12500, CVE-2020-12501, CVE-2020-12502, CVE-2020-12503, CVE-2020-12504
MD5 | 5a94a925fe67c1c0e0e3e86198346de4
Red Hat Security Advisory 2021-2180-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2180-01 - The ovirt-engine package provides the Red Hat Virtualization Manager, a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features including search capabilities, resource management, live migrations, and virtual infrastructure provisioning.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-20178, CVE-2021-20180, CVE-2021-20191, CVE-2021-20228
MD5 | 32ced0cf61bb3cebf5d4c9a9bdb60fbd
Red Hat Security Advisory 2021-2179-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2179-01 - The ovirt-engine package provides the manager for virtualization environments. This manager enables admins to define hosts and networks, as well as to add storage, create VMs and manage user permissions. Issues addressed include code execution and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2020-28500, CVE-2021-23337
MD5 | 3b2571652fa1f07f89942a26a893e7cb
ProjeQtOr Project Management 9.1.4 Shell Upload
Posted Jun 1, 2021
Authored by Temel Demir

ProjeQtOr Project Management version 9.1.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | c339c240029d0206837f21f8c4bf2f70
Ubuntu Security Notice USN-4971-1
Posted Jun 1, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4971-1 - It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue to cause libwebp to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-25009, CVE-2018-25013, CVE-2020-36330
MD5 | 5bf683a898c535b77a9103e8e89306ab
Ubuntu Security Notice USN-4973-1
Posted Jun 1, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4973-1 - It was discovered that the Python stdlib ipaddress API incorrectly handled octal strings. A remote attacker could possibly use this issue to perform a wide variety of attacks, including bypassing certain access restrictions.

tags | advisory, remote, python
systems | linux, ubuntu
advisories | CVE-2021-29921
MD5 | cd2648077093fc448a28a651e7b745fb
Ubee EVW327 Cross Site Request Forgery
Posted Jun 1, 2021
Authored by lated

Ubee EVW327 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 01ed3d8c1fc25fc339715d21a01c5697
Ubuntu Security Notice USN-4972-1
Posted Jun 1, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4972-1 - Tom Lane discovered that PostgreSQL incorrect handled certain array subscripting calculations. An authenticated attacker could possibly use this issue to overwrite server memory and escalate privileges. Andres Freund discovered that PostgreSQL incorrect handled certain INSERT ... ON CONFLICT ... DO UPDATE commands. A remote attacker could possibly use this issue to read server memory and obtain sensitive information. Various other issues were also addressed.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2021-32027, CVE-2021-32028, CVE-2021-32029
MD5 | 9c44217354e7e174bc2ffdff485feed2
Red Hat Security Advisory 2021-2175-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2175-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-27219
MD5 | b33571e87f9608f0283357cff47ea794
Backdoor.Win32.NetSpy.10 Heap Corruption
Posted Jun 1, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.NetSpy.10 malware suffers from a heap corruption vulnerability.

tags | exploit
systems | windows
MD5 | 923240ccfc9a8110c0e05522e83e39bd
Red Hat Security Advisory 2021-2170-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2170-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-27219
MD5 | 6d88d37722c59daf810daa91a45b6a38
Red Hat Security Advisory 2021-2174-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2174-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-27219
MD5 | 32b65ecd1b73b6058af0e093f9b14f8c
Atlassian Jira 8.15.0 Username Enumeration
Posted Jun 1, 2021
Authored by Mohammed Aloraimi

Atlassian Jira version 8.15.0 suffers from a username enumeration vulnerability.

tags | exploit
MD5 | 4b92e462658e679d7ad87e278f5d71dd
Red Hat Security Advisory 2021-2168-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2168-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2021-3501, CVE-2021-3543
MD5 | 695d4d0dca0e813dffc148909f48d3e1
Red Hat Security Advisory 2021-2171-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2171-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-27219
MD5 | 53636e39545c09cdab2ecf7e2ce3c90e
Red Hat Security Advisory 2021-2173-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2173-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-27219
MD5 | 01abc6d100f8c7646bfc1cc5ab150c22
CHIYU IoT Cross Site Scripting
Posted Jun 1, 2021
Authored by sirpedrotavares

CHIYU IoT devices suffer from multiple cross site scripting vulnerabilities. Versions affected include BF-430, BF-431, BF-450M, BF-630, BF631-W, BF830-W, Webpass, BF-MINI-W, and SEMAC.

tags | exploit, vulnerability, xss
advisories | CVE-2021-31250, CVE-2021-31641, CVE-2021-31643
MD5 | be521ba12f3652a10a9d3371e8b27108
CHIYU TCP/IP Converter CRLF Injection
Posted Jun 1, 2021
Authored by sirpedrotavares

CHIYU TCP/IP Converter devices suffers from a crlf injection vulnerability. Versions affected include BF-430, BF-431, and BF-450M.

tags | exploit, tcp
MD5 | 13a797a4534c55f2a1bacdeee0f9a77e
Ubuntu Security Notice USN-4970-1
Posted Jun 1, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4970-1 - It was discovered that GUPnP incorrectly filtered local requests. If a user were tricked into visiting a malicious website, a remote attacker could possibly use this issue to perform actions against local UPnP services such as obtaining or altering sensitive information.

tags | advisory, remote, local
systems | linux, ubuntu
advisories | CVE-2021-33516
MD5 | 81df7b367d254c26a9517a6afc5b45d6
Red Hat Security Advisory 2021-2172-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2172-01 - GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-27219
MD5 | c1b7d6c5de6b0c22d3f766b61d09df22
WordPress WP Prayer 1.6.1 Cross Site Scripting
Posted Jun 1, 2021
Authored by Bastijn Ouwendijk

WordPress WP Prayer plugin version 1.6.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | a68a7b64369f6b1a3d49b44df9c98526
Red Hat Security Advisory 2021-2165-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2165-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2021-3501
MD5 | 49287de78f7c3992d0e8664afbe2308b
Red Hat Security Advisory 2021-2169-01
Posted Jun 1, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2169-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2021-3501, CVE-2021-3543
MD5 | 9803a617bbcda2de283725b5349d6ac7
Page 1 of 2
Back12Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    2 Files
  • 13
    Jun 13th
    1 Files
  • 14
    Jun 14th
    32 Files
  • 15
    Jun 15th
    34 Files
  • 16
    Jun 16th
    9 Files
  • 17
    Jun 17th
    33 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close