AIEngine is a packet inspection engine with capabilities of learning without any human intervention. It helps network/security professionals to identify traffic and develop signatures for use them on NIDS, Firewalls, Traffic classifiers and so on.
ea9ff3fb24e8583466771348051186ca6b2ef4082149fe5e8d15e38b320506e5The Microsoft MsMpEng mpengine x86 emulator suffers from a heap corruption vulnerability in VFS API.
46362a2418387131b284b6f99ffbd92b63a52b28cf6850b31bc0119ebc171b9fMicrosoft Edge suffers from a type confusion vulnerability in CssParser::RecordProperty.
1aa785f1fd6f0eb74b2354c469073d303a744ebbead37d6b9b3783902311bdfbAdobe Flash suffers from a heap corruption vulnerability in the ATF parser.
aa2b6fd4f44a098e6ecba7504988e0d89a5e75e3bc29a11c164bf7ac741679b8Adobe Flash suffers from an image decoding out-of-bounds read vulnerability.
ed9044e4b79f06703ef40af5da53a9e9a388c8c9448c95d856dc28954cdd4c1aAdobe Flash suffers from an avc edge processing out-of-bounds read vulnerability.
d111143f959eac16a5ac31bce6622f40e6dd0f4a712d9c78aedc9111f504fb20This Metasploit module exploits a POST buffer overflow in the Easy File Sharing FTP Server 7.2 software.
4a93277c80577e51f05d3a867109d74d266c265a7afc0d44a519a77e90b3dcd1This Metasploit module exploits the command injection vulnerability of Symantec Messaging Gateway product. An authenticated user can execute a terminal command under the context of the web server user which is root. backupNow.do endpoint takes several user inputs and then pass them to the internal service which is responsible for executing operating system command. One of the user input is being passed to the service without proper validation. That cause an command injection vulnerability. But given parameters, such a SSH ip address, port and credentials are validated before executing terminal command. Thus, you need to configure your own SSH service and set the required parameter during module usage. This Metasploit module was tested against Symantec Messaging Gateway 10.6.2-7.
65388a1ffa6f7c2c3a870b20d908b020bed384530b6eb97b4dccaaf421a58506This Metasploit module exploits a command injection vulnerability in NETGEAR DGN2200v1/v2/v3/v4 routers by sending a specially crafted post request with valid login details.
1fec4e5211012852df5a0c5522fb686d79ac9dee14476e919180c9eb884159d8Eltek SmartPack has backdoor accounts that are disclosed via some json files.
35314e73b316d0100a38a94bd56fbfe77f2b0f17b9eae437dbc56ea636f9b4efThis whitepaper gives an introduction to honeypots. Written in Arabic.
358326e486f7f83b93ee8d5c46ee9b94fcfa15682c2ad182d0a826b620d3b182
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed