the original cloud security
Showing 1 - 17 of 17 RSS Feed

Files Date: 2013-11-19 to 2013-11-20

FreeBSD Security Advisory - OpenSSH AES-GCM Memory Corruption
Posted Nov 19, 2013
Site security.freebsd.org

FreeBSD Security Advisory - A memory corruption vulnerability exists in the post-authentication sshd process when an AES-GCM cipher (aes128-gcm@openssh.com or aes256-gcm@openssh.com) is selected during key exchange. If exploited, this vulnerability might permit code execution with the privileges of the authenticated user, thereby allowing a malicious user with valid credentials to bypass shell or command restrictions placed on their account.

tags | advisory, shell, code execution
systems | freebsd
advisories | CVE-2013-4548
MD5 | be5fb2c09b6120b0052c92ecaa398aad
Mandriva Linux Security Advisory 2013-267
Posted Nov 19, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-267 - Updated java-1.7.0-openjdk packages fix security vulnerabilities. Multiple input checking flaws were found in the 2D component native image parsing code. Multiple improper permission check issues were discovered in the 2D, CORBA, JNDI, and Libraries components in OpenJDK. Various other issues have also been addressed.

tags | advisory, java, vulnerability
systems | linux, mandriva
advisories | CVE-2013-3829, CVE-2013-4002, CVE-2013-5772, CVE-2013-5774, CVE-2013-5778, CVE-2013-5780, CVE-2013-5782, CVE-2013-5783, CVE-2013-5784, CVE-2013-5790, CVE-2013-5797, CVE-2013-5800, CVE-2013-5802, CVE-2013-5803, CVE-2013-5804, CVE-2013-5809, CVE-2013-5814, CVE-2013-5817, CVE-2013-5820, CVE-2013-5823, CVE-2013-5825, CVE-2013-5829, CVE-2013-5830, CVE-2013-5838, CVE-2013-5840, CVE-2013-5842, CVE-2013-5849, CVE-2013-5850
MD5 | 1c3195af7343a1b6e7d61c7a5f6ae6fe
EMC Document Sciences xPression XSS / CSRF / Redirect / SQL Injection
Posted Nov 19, 2013
Authored by Sertan Kolat, Omer Coskun | Site emc.com

EMC Document Sciences xPression suffers from cross site request forgery, cross site scripting, remote SQL injection, open redirect, and directory traversal vulnerabilities.

tags | advisory, remote, vulnerability, xss, sql injection, csrf
advisories | CVE-2013-6173, CVE-2013-6174, CVE-2013-6175, CVE-2013-6176, CVE-2013-6177
MD5 | 0a49d2f99ab85e57aa2dc834cd6b2bc3
Slackware Security Advisory - seamonkey Updates
Posted Nov 19, 2013
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues.

tags | advisory
systems | linux, slackware
MD5 | 6631656cc62cc429e7673954b9eaa372
Slackware Security Advisory - samba Updates
Posted Nov 19, 2013
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New samba packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Related CVE Numbers: CVE-2013-4475,CVE-2013-4476.

tags | advisory
systems | linux, slackware
advisories | CVE-2013-4475, CVE-2013-4476
MD5 | 4ade0a898a8a0f9a467aed9a539059ab
Kartoo Search Engine XSS / Remote File Inclusion
Posted Nov 19, 2013
Authored by Juan Carlos Garcia

Kartoo Search Engine suffers from information disclosure, cross site scripting, and remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, file inclusion, info disclosure
MD5 | c9325ada48e1316422b4cdb703895fe3
PineApp MailSecure Command Execution
Posted Nov 19, 2013
Authored by Ruben Garrote Garcia

PineApp MailSecure suffers from remote command execution and privilege escalation vulnerabilities. Versions 5099SK and below are affected.

tags | exploit, remote, vulnerability
MD5 | a4a7ef27cb508501b12888b7818b66e7
Appologics AirBeam 1.9.2 Code Execution / XSS
Posted Nov 19, 2013
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Appologics AirBeam version 1.9.2 suffers from remote command execution and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss
MD5 | 4bf25c0c5621a6e4894b2b9f3cce75c9
Mandriva Linux Security Advisory 2013-266
Posted Nov 19, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-266 - Updated java-1.6.0-openjdk packages fix security vulnerabilities. Multiple input checking flaws were found in the 2D component native image parsing code. Multiple improper permission check issues were discovered in the 2D, CORBA, JNDI, and Libraries components in OpenJDK. Various other issues were also addressed.

tags | advisory, java, vulnerability
systems | linux, mandriva
advisories | CVE-2013-3829, CVE-2013-4002, CVE-2013-5772, CVE-2013-5774, CVE-2013-5778, CVE-2013-5780, CVE-2013-5782, CVE-2013-5783, CVE-2013-5784, CVE-2013-5790, CVE-2013-5797, CVE-2013-5802, CVE-2013-5803, CVE-2013-5804, CVE-2013-5809, CVE-2013-5814, CVE-2013-5817, CVE-2013-5820, CVE-2013-5823, CVE-2013-5825, CVE-2013-5829, CVE-2013-5830, CVE-2013-5840, CVE-2013-5842, CVE-2013-5849, CVE-2013-5850
MD5 | 83ef3597ac83f451414601ec21afe607
Skidata RFID Freemotion.Gate Remote Command Execution
Posted Nov 19, 2013
Authored by Dennis Kelly

Skidata RFID Freemotion.Gate suffers from having an unauthenticated web service that allows for arbitrary remote command execution. Version 4.1.3.5 is affected. Earlier versions may also be affected.

tags | exploit, remote, web, arbitrary
MD5 | 5a3b1ef5297bc0f19336a949729234a3
Slackware Security Advisory - openssh Updates
Posted Nov 19, 2013
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New openssh packages are available for Slackware 14.1 and -current to fix a security issue. Related CVE Numbers: CVE-2013-4548.

tags | advisory
systems | linux, slackware
advisories | CVE-2013-4548
MD5 | d50a4ef90f06ddff1353a518c876e7a0
Slackware Security Advisory - mozilla-firefox Updates
Posted Nov 19, 2013
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New mozilla-firefox packages are available for Slackware 13.37, 14.0, 14.1, and -current to fix security issues.

tags | advisory
systems | linux, slackware
MD5 | 4c5304f9db6e9ebbc1e709c240f33655
Gentoo Linux Security Advisory 201311-10
Posted Nov 19, 2013
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201311-10 - Multiple vulnerabilities have been found in GraphicsMagick, allowing remote attackers to execute arbitrary code or cause a Denial of Service condition. Versions prior to 1.3.18 are affected.

tags | advisory, remote, denial of service, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2008-1097, CVE-2009-1882, CVE-2009-3736, CVE-2013-4589
MD5 | b6e5599c69d8ea7fa92e32079ed9015a
PayPal GP+ Cross Site Scripting
Posted Nov 19, 2013
Authored by Ibrahim El-Sayed | Site vulnerability-lab.com

PayPal GP+ suffered from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 08ab0162744537aa808ca29a8c4bef5a
PayPal Billsafe Cross Site Scripting
Posted Nov 19, 2013
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Persistent script injection vulnerabilities were discovered in the PayPal Billsafe offering.

tags | exploit, vulnerability
MD5 | 83ab86318faa5c4e73770ffeddb0ae6d
PayPal China Malicious Redirect
Posted Nov 19, 2013
Site vulnerability-lab.com

Remote attackers could influence a redirect in PayPal's www.paypal-biz.com site.

tags | exploit, remote
MD5 | 1a905ee88ab6380da485da765be1b46a
pyClamd 0.3.4
Posted Nov 19, 2013
Authored by Alexandre Norman | Site xael.org

pyClamd is a python interface to Clamd (Clamav daemon). By using pyClamd, you can add virus detection capabilities to your python software in an efficient and easy way. Instead of pyClamav which uses libclamav, pyClamd may be used by a closed source product.

Changes: Bug correction in scan_stream. Other bug corrections. ClamdUnixSocket is now able to get the Unix socket name from /etc/clamav/clamd.conf.
tags | tool, virus, python
systems | unix
MD5 | 1725c5f3a22d4fdb04de25a978787d5b
Page 1 of 1
Back1Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close