seeing is believing
Showing 1 - 16 of 16 RSS Feed

Files Date: 2017-10-02 to 2017-10-03

Dnsmasq 2-Byte Heap-Based Overflow
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from a 2-byte heap-based overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2017-14491
MD5 | 7f7b30c40ec43e2c6088f3634ef820da
Dnsmasq Heap-Based Overflow
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffers from a heap-based overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2017-14492
MD5 | 46a85c167631a1d3b5493ddac07f46f9
Ubuntu Security Notice USN-3433-1
Posted Oct 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3433-1 - It was discovered that Poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial service. This issue only affected Ubuntu 17.04. It was discovered that Poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2017-14517, CVE-2017-14519
MD5 | cea2834c151e30ed8a921d5e042f7e9d
Ubuntu Security Notice USN-3431-1
Posted Oct 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3431-1 - Martin Thomson discovered that NSS incorrectly generated handshake hashes. A remote attacker could use this issue to cause NSS to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-7805
MD5 | 8f8be439f72fe2d27d22a1686e47b5c5
Ubuntu Security Notice USN-3430-1
Posted Oct 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3430-1 - Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled IPv6 router advertisements. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496
MD5 | 8d00c140a9e7867ed8bd2d24d3864259
Red Hat Security Advisory 2017-2837-01
Posted Oct 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2837-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Security Fix: A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one of these options: enable-ra, ra-only, slaac, ra-names, ra-advrouter, or ra-stateless.

tags | advisory, overflow, arbitrary, local
systems | linux, redhat
advisories | CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494
MD5 | 54ae2ec79e9d861ebd6b12e28e0058fb
Dnsmasq Stack-Based Overflow
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from a stack-based overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2017-14493
MD5 | 138a60587b925ad21496085365fbf1f5
Ubuntu Security Notice USN-3432-1
Posted Oct 2, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3432-1 - The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 20170717 package.

tags | advisory
systems | linux, ubuntu
MD5 | b7d5ab6f067b916cb34bce1375f2a523
Red Hat Security Advisory 2017-2840-01
Posted Oct 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2840-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Security Fix: A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, redhat
advisories | CVE-2017-14491
MD5 | fddaa560df7e4b596c1d5f86f114103d
Red Hat Security Advisory 2017-2841-01
Posted Oct 2, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2841-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Security Fix: A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, redhat
advisories | CVE-2017-14491
MD5 | e6a0f6b719626626a93e18fbaf6b8039
Dnsmasq Information Leak
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from an information leak vulnerability.

tags | exploit, info disclosure
advisories | CVE-2017-14494
MD5 | 27e0bfbcfd058c332efb5ebfa06b6de6
Dnsmasq Lack Of Free() Denial Of Service
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from a lack of free() denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2017-14495
MD5 | 06824c537d94cdb6ff1ffc106131a97e
NPM-V (Network Power Manager) 2.4.1 Password Reset
Posted Oct 2, 2017
Authored by Saeed reza Zamanian

NPM-V (Network Power Manager) versions 2.4.1 and below suffer from a password reset vulnerability.

tags | exploit
MD5 | ac6a7713d5beb8f33ed71a0dfd9a46a8
Dnsmasq Integer Underflow
Posted Oct 2, 2017
Authored by Google Security Research

Dnsmasq versions prior to 2.78 suffer from an integer underflow vulnerability.

tags | exploit
advisories | CVE-2017-14496
MD5 | 80164acc90c0204d97c9658b23bb2a92
Linux Kernel 4-14-rc1 Denial Of Service
Posted Oct 2, 2017
Authored by Wang Chenyu

Linux kernel versions prior to 4-14-rc3 suffer from a local denial of service vulnerability.

tags | exploit, denial of service, kernel, local
systems | linux
advisories | CVE-2017-14489
MD5 | 987188817ef93d6bea672713c4730cdd
Broadcom ICMPv6 Information Leak
Posted Oct 2, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from an information leak vulnerability in ICMPv6 router advertisement offloading.

tags | advisory
advisories | CVE-2017-11122
MD5 | aeacfa2846109e67de9614fdd20990e3
Page 1 of 1
Back1Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    14 Files
  • 19
    Oct 19th
    8 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close