Sysdig Falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco will notify you when these rules are violated. You can think about falco as a mix between snort, ossec and strace.
9d90a86752a700dad2d1ea888b2cd33cdc808621faa2b6300bb0463d404744fbsqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.
7147ba8c9ac98fe55daa4928c34f7b6e314bfa7fa60a4f073689f70533128bcbThis archive contains all of the 169 exploits added to Packet Storm in September, 2021.
2d5335d8a4719b57986a4b6b030b83b25c923ac73802cc371f160375e3b46e97Red Hat Security Advisory 2021-3646-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform.
b7f83a250af312bf31fa5032a238f15f79c627c5609e6722afefe20f3e59aecaUbuntu Security Notice 5094-2 - It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute arbitrary code. It was discovered that the tracing subsystem in the Linux kernel did not properly keep track of per-cpu ring buffer state. A privileged attacker could use this to cause a denial of service. Various other issues were also addressed.
d31622e283cd38f8cb186bd7afe5560894a41bd02dd928f9715cafc78b2e7e09WhatsUpGold version 21.0.3 suffers from a persistent cross site scripting vulnerability.
55b88de8291761c51c5450acbd129660ffecb1a9e91858de065104793b2af57aBlood Bank System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
d3b75452cf8183199e7006866b99c99faca97862d311599a9f00a3a95d4dbb21Red Hat Security Advisory 2021-3704-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include buffer overflow, integer overflow, null pointer, out of bounds access, and out of bounds read vulnerabilities.
5864f73fcab2cbaccf361eb3ef0f59a34a59c5e826c50cff47e2ad6e9a3e23bfPhpwcms version 1.9.30 suffers from a cross site scripting vulnerability via the file upload functionality.
b13080fa702d0a623b11c613c2d06c2c1b46321813ade15e2e32f9ac9fab0c42Ubuntu Security Notice 5091-2 - Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF verifier in the Linux kernel missed possible mispredicted branches due to type confusion, allowing a side-channel attack. An attacker could use this to expose sensitive information. It was discovered that the tracing subsystem in the Linux kernel did not properly keep track of per-cpu ring buffer state. A privileged attacker could use this to cause a denial of service. Various other issues were also addressed.
8a8a2e75ddbcda95809cae2b0daa43ffa458f1fb2f6eba2572ac767c9100c9b1Drupal MiniorangeSAML module version 8.x-2.22 suffers from a privilege escalation vulnerability via XML Signature Wrapping.
5b4fcdfda30915b9fdd670fc45af40c13ea1073e96dcd0c5fa42dee6b047b2f6178 bytes small Windows/x86 shellcode that pops calc.exe. The shellcode uses the PEB method to locate the baseAddress of the required module and the Export Directory Table to locate symbols. It also uses a hash function to dynamically gather the required symbols without worry about the length. Finally, the shellcode pops the calc.exe using WinExec and exits gracefully using TerminateProcess.
9b19277190c962885d3585247da068c374f5db74bbb693ce9cb6fe906a1118a8Red Hat Security Advisory 2021-3703-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include buffer overflow, integer overflow, null pointer, out of bounds access, and out of bounds read vulnerabilities.
068ff65f70859525d3b455fd8772ae5c3f403368b8f4d1aad2358e1d98469674Exam Form Submission System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
c5221066b8b48cf8c517a4d2f33c2666c08d435d12e5a9e54444c8a06d167b76Vehicle Service Management System version 1.0 suffers from a remote shell upload vulnerability.
ea20560ef0ba9c5356c6ef159b3c8704e237461fabdcfa4e03534ac3e469640eCMSimple_XH version 1.7.4 remote command execution exploit.
9a204cd68fcab96b3fa95acfa0a331437c6c63aa3ad64cc954092cb1b4d477f6
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed