exploit the possibilities
Showing 1 - 20 of 20 RSS Feed

Files Date: 2021-06-10

Ubuntu Security Notice USN-4971-2
Posted Jun 10, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4971-2 - USN-4971-1 fixed several vulnerabilities in libwebp. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue to cause libwebp to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary, vulnerability
systems | linux, ubuntu
advisories | CVE-2018-25009, CVE-2018-25013, CVE-2020-36330
MD5 | b82d64cb41adba3b71d4830ad200f0c4
Red Hat Security Advisory 2021-2375-01
Posted Jun 10, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2375-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027, CVE-2021-32028, CVE-2021-32029
MD5 | d9e47e9eac4a2a53d740199a98fbe3c4
NSClient++ 0.5.2.35 Remote Code Execution
Posted Jun 10, 2021
Authored by kindredsec, Yann Castel | Site metasploit.com

This Metasploit module allows an attacker with knowledge of the admin password of NSClient++ to start a privileged shell. For this module to work, both web interface of NSClient++ and ExternalScripts feature should be enabled.

tags | exploit, web, shell
MD5 | ee03ba18004e1e17f2300e870c462d89
Red Hat Security Advisory 2021-2372-01
Posted Jun 10, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2372-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027, CVE-2021-32028, CVE-2021-32029, CVE-2021-3393
MD5 | 57e903117a80356c8b14cb3e7197bab7
GravCMS 1.10.7 Arbitrary YAML Write / Update
Posted Jun 10, 2021
Authored by Mehmet Ince, legend

GravCMS version 1.10.7 unauthenticated arbitrary YAML write/update exploit. This is a variant exploit of the original discovery made by Mehmet Ince in April of 2021.

tags | exploit, arbitrary
MD5 | d339a4b0bbbddf85756e2cdfe1e8e8ed
Red Hat Security Advisory 2021-2370-01
Posted Jun 10, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2370-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-30465
MD5 | 20e75110de112b5c1a203dabb6b53148
Student Result Management System 1.0 SQL Injection
Posted Jun 10, 2021
Authored by Riadh Benlamine

Student Result Management System version 1.0 remote SQL injection exploit. This is a variant of the original discovery of SQL injection in this version by Ritesh Gohil.

tags | exploit, remote, sql injection
MD5 | 58539cc8cbacde28a5803e28aa8a5cf9
Red Hat Security Advisory 2021-2371-01
Posted Jun 10, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2371-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-30465
MD5 | 694a3dfc2a7a0ce188e6f912d3d5995a
TextPattern CMS 4.8.7 Cross Site Scripting
Posted Jun 10, 2021
Authored by Mert Das

TextPattern CMS version 4.8.7 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 0a2466e19f21b12c56173ee10106824b
Ubuntu Security Notice USN-4986-2
Posted Jun 10, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4986-2 - USN-4986-1 fixed a vulnerability in rpcbind. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2017-8779
MD5 | f64dfbe9dd90729f061e62aa07a702bc
Red Hat Security Advisory 2021-2150-01
Posted Jun 10, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2150-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.452.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-30465
MD5 | 8f266609a2aff79fc6499f18b2ebba7f
memono Notepad 4.2 Denial Of Service
Posted Jun 10, 2021
Authored by Geovanni Ruiz

memono Notepad 4.2 denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
MD5 | 02eea882c45475062dbace15b6daf8a6
EasyFTP Server 1.7.0.11 Denial Of Service
Posted Jun 10, 2021
Authored by Fernando Mengali

EasyFTP Server version 1.7.0.11 XRMD denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
MD5 | 7f3bbe6bd85382a8eea6762baae721d3
Red Hat Security Advisory 2021-2363-01
Posted Jun 10, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2363-01 - GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-33516
MD5 | 25c24153201f9c6dc837bcea2663ee44
Red Hat Security Advisory 2021-2364-01
Posted Jun 10, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2364-01 - The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format. Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Issues addressed include buffer overflow and use-after-free vulnerabilities.

tags | advisory, web, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2018-25011, CVE-2020-36328, CVE-2020-36329
MD5 | 35165990f9f4577813e7206cad3a7bbe
Sticky Notes Widget 3.0.6 Denial Of Service
Posted Jun 10, 2021
Authored by Geovanni Ruiz

Sticky Notes Widget version 3.0.6 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 56c6b18d70d4f66715e7d0e23aa17279
n+otes 1.6.2 Denial Of Service
Posted Jun 10, 2021
Authored by Geovanni Ruiz

n+otes version 1.6.2 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 10c0a7cf0d9cd7bfd740bfc7ee3fe9a3
Red Hat Security Advisory 2021-2365-01
Posted Jun 10, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2365-01 - The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format. Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Issues addressed include buffer overflow and use-after-free vulnerabilities.

tags | advisory, web, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2018-25011, CVE-2020-36328, CVE-2020-36329
MD5 | 8e349d249173666d30404c33a8b30059
Linux/x86 execve /bin/sh Shellcode
Posted Jun 10, 2021
Authored by D7X | Site promiselabs.net

70 bytes small Linux/x86 shellcode with XOR decoder stub and fstenv MMX FPU spawning a /bin/sh shell.

tags | shell, x86, shellcode
systems | linux
MD5 | e253cdb3deeb186f54711db1afcee22e
Petalus 1.0.0
Posted Jun 10, 2021
Authored by Luis Campo Giralte | Site bitbucket.org

Petalus is a crypto wallet microservice in python that allows users to store any type of information on a virtual wallet. The main functionalities of Petalus are blockchain support on the storage data, multiple hashes for the blockchain (sha256, blake2s and sha3-256), multiple process execution, support for read/write triggers on the wallets, and authorization of write blocks with public/private key.

tags | tool, crypto, python
systems | unix
MD5 | 9211679a0a292251fd6be1b22d01a228
Page 1 of 1
Back1Next

File Archive:

July 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    13 Files
  • 2
    Jul 2nd
    12 Files
  • 3
    Jul 3rd
    1 Files
  • 4
    Jul 4th
    2 Files
  • 5
    Jul 5th
    34 Files
  • 6
    Jul 6th
    21 Files
  • 7
    Jul 7th
    21 Files
  • 8
    Jul 8th
    13 Files
  • 9
    Jul 9th
    6 Files
  • 10
    Jul 10th
    1 Files
  • 11
    Jul 11th
    3 Files
  • 12
    Jul 12th
    15 Files
  • 13
    Jul 13th
    19 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    15 Files
  • 16
    Jul 16th
    9 Files
  • 17
    Jul 17th
    2 Files
  • 18
    Jul 18th
    2 Files
  • 19
    Jul 19th
    19 Files
  • 20
    Jul 20th
    21 Files
  • 21
    Jul 21st
    53 Files
  • 22
    Jul 22nd
    14 Files
  • 23
    Jul 23rd
    14 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close