Red Hat Security Advisory 2016-2607-02 - The powerpc-utils-python packages provide Python-based utilities for maintaining and servicing PowerPC systems. Security Fix: It was found that the amsvis command of the powerpc-utils-python package did not verify unpickled data before processing it. This could allow an attacker who can connect to an amsvis server process to execute arbitrary code as the user running the amsvis process.
42734b94a97f96ab29d833ab3e067f25e1500d07ddcba151874b6ad9a1beb326Red Hat Security Advisory 2016-2598-02 - PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix: A flaw was found in the way certain error conditions were handled by bzread() function in PHP. An attacker could use this flaw to upload a specially crafted bz2 archive which, when parsed via the vulnerable function, could cause the application to crash or execute arbitrary code with the permissions of the user running the PHP application.
0ac1d44bc1b4ff934ac63b7a99f65417137a7c3af28173760451af2b834039d0Red Hat Security Advisory 2016-2595-02 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a newer upstream version: mariadb. Security Fix: It was discovered that the MariaDB logging functionality allowed writing to MariaDB configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server.
efc7657ab9526bfaa4bd2c527a331957fcb2307eb0c4160a005c123a071b5353Red Hat Security Advisory 2016-2594-02 - 389 Directory Server is an LDAP version 3 compliant server. The base packages include the Lightweight Directory Access Protocol server and command-line utilities for server administration. The following packages have been upgraded to a newer upstream version: 389-ds-base. Security Fix: It was found that 389 Directory Server was vulnerable to a flaw in which the default ACI could be read by an anonymous user. This could lead to leakage of sensitive information.
3d0e10e7baa1064356ace51447bb911d82632d542ca3fc87ae68a14d67977807Red Hat Security Advisory 2016-2605-02 - The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Security Fix: It was found that util-linux's libblkid library did not properly handle Extended Boot Record partitions when reading MS-DOS partition tables. An attacker with physical USB access to a protected machine could insert a storage device with a specially crafted partition table that could, for example, trigger an infinite loop in systemd-udevd, resulting in a denial of service on that machine.
1fcb8de7f19c21558e7cdb6b71d883d89c9dd5303f898d0d12d468747c811c65Red Hat Security Advisory 2016-2601-02 - Fontconfig is designed to locate fonts within the system and select them according to requirements specified by applications. Security Fix: It was found that cache files were insufficiently validated in fontconfig. A local attacker could create a specially crafted cache file to trigger arbitrary free() calls, which in turn could lead to arbitrary code execution.
9d2c5d6b48829b4cb2ef89e0dcd3c25440b3d24cf293906edf4fbff231cd0e6bRed Hat Security Advisory 2016-2593-02 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fix: It was discovered that the default sudo configuration preserved the value of INPUTRC from the user's environment, which could lead to information disclosure. A local user with sudo access to a restricted program that uses readline could use this flaw to read content from specially formatted files with elevated privileges provided by sudo.
5d53b5f28e963cfcd9859130bc8eb6735c3296fd05a892d5a9a6ee40e0d9f25aRed Hat Security Advisory 2016-2604-02 - RESTEasy contains a JBoss project that provides frameworks to help build RESTful Web Services and RESTful Java applications. It is a fully certified and portable implementation of the JAX-RS specification. Security Fix: It was discovered that under certain conditions RESTEasy could be forced to parse a request with SerializableProvider, resulting in deserialization of potentially untrusted data. An attacker could possibly use this flaw to execute arbitrary code with the permissions of the application using RESTEasy.
48451af7caaa119323e82444f61e2954d4f68a3c93f2c65105856137352df955Red Hat Security Advisory 2016-2592-02 - The subscription-manager packages provide programs and libraries to allow users to manage subscriptions and yum repositories from the Red Hat entitlement platform. The subscription-manager-migration-data package provides certificates for migrating a system from the legacy Red Hat Network Classic to Red Hat Subscription Management. The python-rhsm packages provide a library for communicating with the representational state transfer interface of a Red Hat Unified Entitlement Platform. The Subscription Management tools use this interface to manage system entitlements, certificates, and access to content.
56dcb018837ef2fb963ad4bc10d59eb10b8eda07c8dbcb1228df07fe988d9d99Red Hat Security Advisory 2016-2602-02 - The mod_nss module provides strong cryptography for the Apache HTTP Server via the Secure Sockets Layer and Transport Layer Security protocols, using the Network Security Services security library. The following packages have been upgraded to a newer upstream version: mod_nss. Security Fix: A flaw was found in the way mod_nss parsed certain OpenSSL-style cipher strings. As a result, mod_nss could potentially use ciphers that were not intended to be enabled.
c38b7748b1b65f04a2a6e8b64f8cab13574ffbbe8e7fab5b91480c0eef80db1dRed Hat Security Advisory 2016-2597-02 - firewalld is a firewall service daemon that provides a dynamic customizable firewall with a D-Bus interface. The following packages have been upgraded to a newer upstream version: firewalld. Security Fix: A flaw was found in the way firewalld allowed certain firewall configurations to be modified by unauthenticated users. Any locally logged in user could use this flaw to tamper or change firewall settings.
213aac5a933855847a9ef188fc18eff872c59bb9800d976017882927dcf934a4Red Hat Security Advisory 2016-2596-02 - The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. The following packages have been upgraded to a newer upstream version: pcs. Security Fix: A Cross-Site Request Forgery flaw was found in the pcsd web UI. A remote attacker could provide a specially crafted web page that, when visited by a user with a valid pcsd session, would allow the attacker to trigger requests on behalf of the user, for example removing resources or restarting/removing nodes.
ee6db79aa4017e91f3a7ea14ddbd2ccca51f992fedb4ce54eb455bdf109331cfRed Hat Security Advisory 2016-2591-02 - Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center. The following packages have been upgraded to a newer upstream version: krb5. Multiple security issues have been addressed.
3febdbded730de61eaab962040f2ad1b781745b31932ddf6136c6ea17054f22cRed Hat Security Advisory 2016-2590-02 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Security Fix: A resource-consumption flaw was discovered in the DHCP server. dhcpd did not restrict the number of open connections to OMAPI and failover ports. A remote attacker able to establish TCP connections to one of these ports could use this flaw to cause dhcpd to exit unexpectedly, stop responding requests, or exhaust system sockets.
cfb474006c647556760192872b3a36a511d0e196613ecae628a7e928d757d409Microsoft Windows Server AD LDAP RootDSE Netlogon (CLDAP "AD Ping") query reflection denial of service proof of concept exploit.
fd13733c886474c28d4cb1051b620bdfe6ff808ee27e89d220108f9ddab1fdeeThis exploit takes advantage of known issues with debugging functions within the AIX linker library. It takes advantage of known functionality, and focuses on badly coded SUID binaries which do not adhere to proper security checks prior to seteuid/open/writes.
d21d10df2cfdef2edda230cf874c57b4ad9963ec7cc4c0c55f438103a6d3725cFreefloat FTP server version 1.0 SITE ZONE command buffer overflow exploit.
de7cb3d2ae3f1178602b88bf6b9d9dc83456a63bacd6b23ad9eaaed93d269534PCMan FTP Server version 2.0.7 SITE CHMOD command buffer overflow exploit.
d575991d525bcfdf89c2cb2f600a22c46c2bc57140ab8c8a67c3379eacd88d1cAIX versions 6.1, 7.1, and 7.2.0.2 lsmcode local root exploit.
bf3e83aa09cc8aa3291c39d62e561c7bce0ae117171ff19a6b828b29da6e7d8dBolinTech DreamFTP version 1.02 RETR command buffer overflow exploit.
23d2f68463014c2760fb147044db34b8a7f075964029fa3fccbe886b65eb96a5This proof of concept is an LDAP Distributed Reflective Denial of Service/Bandwidth Amplification Attack, similar to DNS and NTP amplification attacks where the target of the DoS is spoofed as the source IP in a request to the reflectors(In this case, LDAP servers). The reflectors then respond to the spoofed target IP with a bigger answer than the original question, resulting in the target experiencing what appears to be a distributed denial of service attack, even though there may only be one true source. suffers from a denial of service vulnerability.
2d0188ea5dfc88ba53477d4affef50c7d2694d8f6c6ee1be7ce0517a277d71fbMicrosoft Internet Explorer 10 suffers from a MSHTML CElement::GetPlainTextInScope out-of-bounds read vulnerability.
c58c107031dbf172676c012967abab15f19261829cb6779e0fff3c4b540a12bePCMan FTP server version 2.0.7 PORT command buffer overflow exploit.
c1d49a689801689485b2d5263588b70f5bc55acdf4f26fad9d0fe90691d604a9Redaxo CMS version 5.2 suffers from a cross site request forgery vulnerability.
3ee6562e7dfcc80392799d8dbb62b5472a1e400e2e1cabfcd35a6109ec49486cPCMan FTP server version 2.0.7 NLST command buffer overflow exploit.
9b90275ab351a1f6ae6661cbd98973ca0d10142fde384efe8bbbcfb8b9828f70
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed