what you don't know can hurt you
Showing 1 - 25 of 32 RSS Feed

Files Date: 2021-06-14

TOR Virtual Network Tunneling Tool 0.4.6.5
Posted Jun 14, 2021
Authored by Roger Dingledine | Site tor.eff.org

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs). This is the source code release.

Changes: Tor 0.4.6.5 is the first stable release in its series. The 0.4.6.x series includes numerous features and bugfixes, including a significant improvement to the circuit timeout algorithm that should improve observed client performance, and a way for relays to report when they are overloaded. This release also includes security fixes for several security issues, including a denial-of-service attack against onion service clients, and another denial-of-service attack against relays. Everybody should upgrade to one of 0.3.5.15, 0.4.4.9, 0.4.5.9, or 0.4.6.5.
tags | tool, remote, local, peer2peer
systems | unix
advisories | CVE-2021-34548, CVE-2021-34550
SHA-256 | 7b6d354e0d9791eace4b51e92211909308297b7aa257993937163d7ee0694cf9
Red Hat Security Advisory 2021-2374-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2374-01 - Openshift Logging Bug Fix Release (5.0.5) addresses a lack of index validation in plugin/unmarshal/unmarshal.go .

tags | advisory
systems | linux, redhat
advisories | CVE-2021-27219, CVE-2021-3121
SHA-256 | c3e45cb69881c8b06d5d7566338829f8b228d237cd4b74f91602afd45b4a1368
ChromeOS arc-obb-mounter Missing Path Restriction
Posted Jun 14, 2021
Authored by Jann Horn, Google Security Research

ChromeOS suffers from a missing path restriction vulnerability in arc-obb-mounter.

tags | exploit
SHA-256 | 5a39171dc660d2c47df5696635fea0f20a0814593c67d9aa4f2ca1cf665e8660
Backdoor.Win32.VB.pld MVID-2021-0248 Code Execution
Posted Jun 14, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.VB.pld malware suffers from a code execution vulnerability.

tags | exploit, code execution
systems | windows
SHA-256 | 957f936ebfca694f7a407c17a65d695e1fabaa42d13f1c27597f72eedd428c64
Chrome SandboxedUnpacker Unsafe Shared Memory Use
Posted Jun 14, 2021
Authored by Google Security Research, Mark Brand

SandboxedUnpacker in Chrome uses shared memory in an unsafe fashion.

tags | advisory
SHA-256 | bc91dd004d418d7fd6b56285f99323944f8802e8dd4b5215b649c990046ed88a
Red Hat Security Advisory 2021-2405-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2405-01 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow, protocol
systems | linux, redhat
advisories | CVE-2021-25217
SHA-256 | 8054841c67121d8aaea5946270370a04e1393c6ead36a9de1e14f6c414e20002
TextPattern CMS 4.8.7 Remote Command Execution
Posted Jun 14, 2021
Authored by Mert Das

TextPattern CMS version 4.8.7 suffers from an authenticated remote command execution vulnerability.

tags | exploit, remote
SHA-256 | b1029d9b5fac8ab084657aa9f3a43e85cb93e165fadec1e6e5b75884f4bb851b
Red Hat Security Advisory 2021-2397-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2397-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027
SHA-256 | 9b0f57ab3312ecd33acd5d59cd905b9c2ba39c00e68d09ed875288931a2ad2e9
Red Hat Security Advisory 2021-2396-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2396-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027, CVE-2021-32028, CVE-2021-32029
SHA-256 | 037b083826ad55d5ac79e962e0db29d105f0c79a832c36e498ca58c6c5074fb4
Small CRM 3.0 SQL Injection
Posted Jun 14, 2021
Authored by BHAVESH KAUL

Small CRM version 3.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
SHA-256 | 87849f6ad909986dbf3114d178be74d8b8fb4759cfdccf6c50dd6020911e0129
Red Hat Security Advisory 2021-2394-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2394-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027, CVE-2021-32028, CVE-2021-32029, CVE-2021-3393
SHA-256 | 8663c30764720d6b6e59f13f0516bbc98577b1ce3897dea7b5746226a25632ba
Stock Management System 1.0 SQL Injection
Posted Jun 14, 2021
Authored by Riadh Benlamine

Stock Management System version 1.0 suffers from a remote blind SQL injection vulnerability. This is a variant to the original discovery of SQL injection in this version discovered in August of 2020 by hyd3sec.

tags | exploit, remote, sql injection
SHA-256 | ec5c01634c879e691ca24ef6f6b4308b76d28463969fc20a2fa3baf5f723f9fc
Backdoor.Win32.Zombam.gen MVID-2021-0249 Information Disclosure
Posted Jun 14, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Zombam.gen malware suffers from an information leakage vulnerability.

tags | exploit
systems | windows
SHA-256 | 06a83203053fe0c83fac73d0d72286b0d8eacd272aa7381e0df3b83470be156f
Smuggling Via Windows Services Display Name - Lateral Movement
Posted Jun 14, 2021
Authored by Lawrence Amer

This research paper explains how to take advantage of windows services, how to mimic display names to deploy malicious beacons or even Meterpreter sessions.

tags | paper
systems | windows
SHA-256 | e1a4a62a90edd81fc9429eb3e16e8be7198bf5bc28a6abec8b729d347a942b26
GLPI 9.4.5 Remote Code Execution
Posted Jun 14, 2021
Authored by Brian Peters

GLPI version 9.4.5 remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2020-11060
SHA-256 | ba69edea877f453d3799c4c74da755a665b0e3f6b2bc6e1212e8415554291165
Red Hat Security Advisory 2021-2390-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2390-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027, CVE-2021-32028
SHA-256 | 3057c7b4c01b7eeb39896c6137abd9673e25a845e85db1afc07fb3838cc40be7
Red Hat Security Advisory 2021-2395-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2395-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027, CVE-2021-32028
SHA-256 | 2bbe91909abef012d8555f6bd3447e5a4e7bf89f2d046bea5f867d7855829b5e
Accela Civic Platform 21.1 Insecure Direct Object Reference
Posted Jun 14, 2021
Authored by Abdulazeez Alaseeri

Accela Civic Platform version 21.1 suffers from an insecure direct object reference vulnerability.

tags | exploit
advisories | CVE-2021-34369
SHA-256 | f00249885f300a480263e36f80078a438c592544ef67f4e19f6163e6a2f77a2e
Accela Civic Platform 21.1 Cross Site Scripting / Open Redirection
Posted Jun 14, 2021
Authored by Abdulazeez Alaseeri

Accela Civic Platform version 21.1 suffers from cross site scripting and open redirection vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2021-34370
SHA-256 | ec84d1f532330d711880b241f6ee19ad609e721aecc99e4234da77147a10f7c3
Red Hat Security Advisory 2021-2391-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2391-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027, CVE-2021-32028
SHA-256 | f1e0881f57f451c321458b46c2ae6fa2847a61162678bf9724a5c5aa92445b0b
Backdoor.Win32.Pazus.18 MVID-2021-0246 Authentication Bypass / Code Execution
Posted Jun 14, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Pazus.18 malware suffers from bypass and code execution vulnerabilities.

tags | exploit, vulnerability, code execution
systems | windows
SHA-256 | 4ba07b6fb22d3933549649cf2f9793cf71272060fc0d2e65e9f507df677a183e
COVID-19 Testing Management System 1.0 Cross Site Scripting
Posted Jun 14, 2021
Authored by BHAVESH KAUL

COVID-19 Testing Management System version 1.0 suffers from a persistent cross site scripting vulnerability. This is a variant of the original discovery of cross site scripting in this version made by Rohit Burke in May of 2021.

tags | exploit, xss
SHA-256 | 35546692f25857c70752490fe45e4a3de6ab03d81b9c35a77bade6046c697174
Red Hat Security Advisory 2021-2389-01
Posted Jun 14, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2389-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2021-32027, CVE-2021-32028, CVE-2021-32029, CVE-2021-3393
SHA-256 | 73874a58cfbcd7ced594ea631a8192fe4556091f6e7d53b32c8a8d372ad75b16
OpenEMR 5.0.1.3 Shell Upload
Posted Jun 14, 2021
Authored by Ron Jost

OpenEMR version 5.0.1.3 authenticated remote shell upload exploit.

tags | exploit, remote, shell
advisories | CVE-2018-15139
SHA-256 | 1c976d82d20d572267256bdb0e89f3da86fd7a4937ea55c99df13535b3d1abf2
KnFTP Server 1.0.0 Denial Of Service
Posted Jun 14, 2021
Authored by Fernando Mengali

KnFTP Server version 1.0.0 LIST denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
SHA-256 | 6e992b00b4404656da10a5211abde600ea5faa319eb07349de5de184d6afe3de
Page 1 of 2
Back12Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close