what you don't know can hurt you
Showing 1 - 10 of 10 RSS Feed

Files Date: 2021-10-29

Ubuntu Security Notice USN-5126-2
Posted Oct 29, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5126-2 - USN-5126-1 fixed a vulnerability in Bind. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Kishore Kumar Kothapalli discovered that Bind incorrectly handled the lame cache when processing responses. A remote attacker could possibly use this issue to cause Bind to consume resources, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2021-25219
SHA-256 | 84bfe5f035a07b28c524d5511207a27c943a510340e420ed5c2d0481add22b33
Ubuntu Security Notice USN-5126-1
Posted Oct 29, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5126-1 - Kishore Kumar Kothapalli discovered that Bind incorrectly handled the lame cache when processing responses. A remote attacker could possibly use this issue to cause Bind to consume resources, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2021-25219
SHA-256 | e833f7be44ded6cc531922bda9b1bff7df784334df711599764ef0c073a52ab0
GRAudit Grep Auditing Tool 3.2
Posted Oct 29, 2021
Authored by Wireghoul | Site justanotherhacker.com

Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible.

Changes: Fixed a compatibility bug in misc/serializephp.sh. Updated PHP rules. Updated Java rules. Updated fruit rules. Updated secret rules. Updated default. Updated android rules. Updated dotnet rules. Changed misc/gitlog.sh to an interactive format. Added *.map to files that are ignored unless -A is used. Fixed line endings in some rule files. Altered some error handling slightly.
tags | tool
systems | unix
SHA-256 | 4bb85b35f11fb5501d5516eb52ee5d5fa72738aae93f70b43b6f9fe6e15ffb24
WebCTRL OEM 6.5 Cross Site Scripting
Posted Oct 29, 2021
Authored by 3ndG4me

WebCTRL OEM version 6.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-31682
SHA-256 | b213132aebbf39e3ca67659abd1d952d0a1b8c21607a2b98818cdd628295ab9f
WordPress NextScripts: Social Networks Auto-Poster 4.3.20 XSS
Posted Oct 29, 2021
Authored by Ramuel Gall, Wordfence | Site wordfence.com

WordPress NextScripts: Social Networks Auto-Poster plugin versions 4.3.20 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-38356
SHA-256 | 3b243357482f55615e13c6f86d3c5f7e5661b3bdb1e7d084a3489717be01ceda
Movable Type 7 r.5002 XMLRPC API Remote Command Injection
Posted Oct 29, 2021
Authored by Etienne Gervais, Charl-Alexandre Le Brun | Site metasploit.com

This Metasploit module exploits an XML-RPC API OS command injection vulnerability in Movable Type 7 version r.5002.

tags | exploit
advisories | CVE-2021-20837
SHA-256 | 9c1d6d041399f21f06d09819aa8fd5bedc69705e7ec269c952276194f3e11c65
Android NFC Type Confusion
Posted Oct 29, 2021
Authored by Google Security Research, nedwill

Android NFC suffers from a type confusion vulnerability due to a race condition during a tag type change.

tags | exploit
advisories | CVE-2021-0870
SHA-256 | 08fb25b7d8382b17929eba513aa143b8803817300bc39c7324b97c461ec1858e
Red Hat Security Advisory 2021-3915-01
Posted Oct 29, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-3915-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-8557
SHA-256 | e4718c4e2ab8095b9dab2857e483cb87aff14977a4e27f91a4bd3aa401c80711
Mini-XML 3.2 Heap Overflow
Posted Oct 29, 2021
Authored by LIWEI

Mini-XML version 3.2 suffers from a heap overflow vulnerability.

tags | exploit, overflow
SHA-256 | b37fee5b647ea11aa9620e901d553c7936b8122204082ec9a384dff855e860d8
Umbraco 8.14.1 Server-Side Request Forgery
Posted Oct 29, 2021
Authored by NgoAnhDuc

Umbraco version 8.14.1 suffers from a server-side request forgery vulnerability.

tags | exploit
SHA-256 | b6a417c2e4696d3a232a182e939111a6bc9672483416f989f2c1b1c01909b5cc
Page 1 of 1
Back1Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close