Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
221a413d0954cf6378ce29e549e7de0c9a04592d9421e844d46dfd1b59d13a8cMobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.
3a8266ae401d355298c31567df9ddb852a88a6a4a046df54bb7ff50e1cacccafBugzilla Security Advisory - Bugzilla versions 3.7.1 to 4.0.13, 4.1.1 to 4.2.9, 4.3.1 to 4.4.4, and 4.5.1 to 4.5.4 suffer from a cross site request forgery vulnerability.
cd0337a3196b87e65a4382c3d46665e5a07957324bbe8fa092ed144b51893ab0Debian Linux Security Advisory 2989-1 - Several security issues were found in the Apache HTTP server.
6a2e0fe2e7dd2939b32d62124cbffac15ed98b20d36d18e10fd6076278bcd60cDebian Linux Security Advisory 2988-1 - Ben Hawkes discovered that incorrect handling of peer messages in the Transmission bittorrent client could result in denial of service or the execution of arbitrary code.
9cd5b0aa71fa0a9673cbbc99e208e5bb93e7fd049bfa2868f05da44789369498Netgear DGN2200 with firmware version 1.0.0.29_1.7.29_HotS suffers from a password disclosure vulnerability.
fe3616ab9fc7139749487df4bffe5aaae99e953e9bed6452c87d511fe27628fbMoodle version 2.7 suffers from a persistent cross site scripting vulnerability.
959eea10516335cfd227b085fe290db6e24c09b51b65eae621a5fba7876d90e6Zenoss Monitoring System version 4.2.5-2108 64-bit suffers from a persistent cross site scripting vulnerability.
b6b364b0ca0afa7eba0ab172d073556261e1df677443861f1f420ec11a947851Easy File Sharing webserver suffers from a persistent cross site scripting vulnerability in the forum messages.
5fc2edb57adb417649cbb0813d961bc52ba43a0b6708d698727e55ceb5ae4c10A vulnerability within the MQAC.sys module allows an attacker to overwrite an arbitrary location in kernel memory. This Metasploit module will elevate itself to SYSTEM, then inject the payload into another SYSTEM process.
c3dce854c36c28e545304c300892721f5fed0a84228f0ce24204cc34d072d2a6BulletProof FTP Client 2010 suffers from a buffer overflow vulnerability.
a3e7475d74bd6f99e53fd8483d4127bbad6e74912100255cd47b89d09a52540dUbiquiti AirVision Controller version 2.1.3 suffers from an overly permissive default crossdomain.xml file.
6318c6697c238ece9eeaeec23969f86bf02a5ced36a26fc6cec3e4b648f18ab6Ubiquiti UniFi Controller version 2.4.6 discloses the administrative password hash via syslog messages.
597a700074a9e5cd6247e5ed9af269ba563e594e93c3abd71b128f81eabf405ePligg versions 2.0.1 and below suffer from remote SQL injection, path disclosure, and remote command execution vulnerabilities.
1106d40e63dfda0f4c08b105daf37ddbcff5e05e6e778d344963e51577050f2aParallels Plesk Panel version 9.5 with Sitebuilder 4.5 suffers from bypass, file download, shell upload, and cross site scripting vulnerabilities.
83b4cbbdfd10cf94646d23defcb68ffc78fee068d10cb70d6204e6c4c6d7f949Make version 3.81 heap overflow proof of concept exploit.
14b0b140bd73a1914aa006a6dd5d4e0cde53830c36bf9682c1ad8162aa589d61
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed