This Metasploit module exploits a vulnerability found in Apple Quicktime. The flaw is triggered when Quicktime fails to properly handle the data length for certain atoms such as 'rdrf' or 'dref' in the Alis record, which may result a buffer overflow by loading a specially crafted .mov file, and allows arbitrary code execution under the context of the user.
15145b2469bd29030e19b5448ca2e224d6efff120fdd50fb770f210db2a4b736This Metasploit module exploits an arbitrary file upload vulnerability on HP Managed Printing Administration 2.6.3 (and before). The vulnerability exists in the UploadFiles() function from the MPAUploader.Uploader.1 control, loaded and used by the server. The function can be abused via directory traversal and null byte injection in order to achieve arbitrary file upload.
6b9c2fdb66e0b18c5c373af45ca8b8d1347dba271986c98d13999847c6f76701Debian Linux Security Advisory 2725-1 - Two security issues have been found in the Tomcat servlet and JSP engine.
76b85ff0d5e73cbb8122a1d6e4d0e53d836304cf9791d27b1dd78a04a28ceef8Symantec Workspace Virtualization version 6.4.1895.0 local kernel mode privilege escalation exploit.
f34f6ca8bbdca39830d0989067fe1fd85f518a6ff01379b69ea72a1c01e5f5b9HP Security Bulletin HPSBMU02900 - Potential security vulnerabilities have been identified with HP System Management Homepage (SMH) running on Linux and Windows. The vulnerabilities could be exploited remotely resulting in Local Denial of Service (DoS), remote Denial of Service (DoS), execution of arbitrary code, gain privileges, disclosure of information, unauthorized access, or XSS. Revision 1 of this advisory.
9864656a8c7f02f65287405b436e81a4bfb33db55bb9dbe7aea8240180e998a1HP Security Bulletin HPSBST02896 2 - A potential security vulnerability has been identified with the HP StoreVirtual Storage. This vulnerability could be remotely exploited to gain unauthorized access to the device. All HP StoreVirtual Storage systems are equipped with a mechanism that allows HP support to access the underlying operating system if permission and access is provided by the customer. This functionality cannot be disabled today. HP StoreVirtual products are storage appliances that use a custom operating system, LeftHand OS, which is not accessible to the end user. Limited access is available to the user via the HP StoreVirtual Command-Line Interface (CLiQ) however root access is blocked. Root access may be requested by HP Support in some cases to help customers resolve complex support issues. To facilitate these cases, a challenge-response-based one-time password utility is employed by HP Support to gain root access to systems when the customer has granted permission and network access to the system. The one-time password utility protects the root access by preventing repeated access to the system with the same pass phrase. Root access to the LeftHand OS does not provide access to the user data being stored on the system. Revision 2 of this advisory.
e39626a882fac82518af8405435038f5279f1f206d95e388f032ec3a0a67d197WordPress WooCommerce version 2.0.12 suffers from a persistent cross site scripting vulnerability.
57d7189e7893db13f998b57e482f7f386bd27a5aca10ffb821839d7f9bf89a5fDrupal Hostmaster third party module version 6.x suffers from an access bypass vulnerability.
029ae096eab1d32c2fdce40b827087a83a9a993ec8dd7ca249ba58232224eba4Cisco Security Advisory - Cisco Intrusion Prevention System (IPS) Software is affected by multiple denial of service vulnerabilities. Customers running a vulnerable version of the Cisco IDSM-2 Module should refer to the "Workarounds" section of this advisory for available mitigations. Workarounds that mitigate the Cisco IPS Software Fragmented Traffic Denial of Service Vulnerability and Cisco IDSM-2 Malformed TCP Packets Denial of Service Vulnerability are available.
8f827a747809b4b88d7227babf5e52be7838679b0e8ecb6655d3111b7dafa0a1Roundcube Webmail version 0.9.2 suffers from a cross site scripting vulnerability.
63d09fabc0afbeb3b88708f8ea18b1e43d41a4e9021017ca8052bcdb3521dec6Security Explorations has submitted a new vulnerability to Oracle that implements a classic attack against Java VM.
06b801519ec428ee719f86858e50021889fbd7008bbcfe62c1df7a749f41a4e1Dell PacketTrap PSA version 7.1 suffers from multiple cross site scripting vulnerabilities.
bf0b266ef4f6fd353ad738b5f63250382aa534a5a379b1fe6feb16487668febcDell PacketTrap MSP RMM version 6.6.x suffers from multiple cross site scripting vulnerabilities.
d7569efb8aa43b82a644349933caa33f4b87c6cc7b66ea35071108fd2c58c6deePhoto Transfer version 1.2.1 for iOS suffers from cross site scripting, denial of service, and command injection vulnerabilities.
b760dca188157850efec772c653425fb6915a3d91cdcb48fcb82b2b3a9dce9b4Barracuda CudaTel version 2.6.02.04 suffers from multiple cross site scripting vulnerabilities.
528d3becd6804f4959774acb5ff4bc799be6924cb3031d9c48849a865d6961b3Drupal MRBS third party module versions 6.x and 7.x suffer from cross site request forgery and remote SQL injection vulnerabilities.
b142181a17115a9d5fea3ecd0371961dc0b831c2b04c9cc9a0aa05db9b2f8020NanoSSH on Avaya Ethernet Routing switch (ERS) 5698 and 5698-PoE suffers from a remote denial of service vulnerability.
4ec9685eea0f9205acd2516ddd10ca2ebd352f49eb06fdac3f8ea83053652e25This is a brief write up that provides a shell script for passwording a shell bound with netcat.
cfc1acda80ec146d9ab2c3f0450fde46f259d590816a5459a6af88bcf081612eHP Security Bulletin HPSBHF02888 2 - Potential security vulnerabilities have been identified with HP Network Products including 3COM and H3C routers and switches. The vulnerabilities could be remotely exploited resulting in disclosure of information and execution of code. Revision 2 of this advisory.
5b2e403ecc8c93bc0c644e3fc1d4fec3fee8c718711c9b91ae6b9da7a7f835bbFlux Player version 3.1.0 for iOS suffers from local file inclusion and remote shell upload vulnerabilities.
465c1518ad65e7480d885d0a2f972364b3e3056cb6929a00c3d865700721eb31OpenCMS version 8.5.1 suffers from a cross site scripting vulnerability.
38b297dd1ab04c81707528c624dcbe14c157ef5ed3c0efec359d9e679dce13fbWiFly version 1.0 Pro for iOS suffers from local file inclusion and remote shell upload vulnerabilities.
9751e2310d25b8f3052a555036d3c6fb9a08e73ed5071f891c6994938f2c160dEMC Avamar version 7.0 suffers from improper authorization checks and cross frame scripting vulnerabilities.
2581fa5ef9d8d7bdf1d100067207d09b59c5cfcac21e72f041a71709dafd1897Cisco Security Advisory - Cisco Unified Communications Manager (Unified CM) contains multiple vulnerabilities that could be used together to allow an unauthenticated, remote attacker to gather user credentials, escalate privileges, and execute commands to gain full control of the vulnerable system. A successful attack could allow an unauthenticated attacker to access, create or modify information in Cisco Unified CM. Cisco has released a Cisco Options Package (COP) file that addresses three of the vulnerabilities documented in this advisory. Cisco is currently investigating the remaining vulnerabilities. Workarounds that mitigate these vulnerabilities are not available.
84003a42547734b89d56319bd564adac91c646bae378b2895d1a82abadfb3192
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed