Linux has an issue with systemd where overlong input to fgets() during reexec state injection can lead to line splitting.
440ee81db71b86c228b05c447f6dbf1f3757cd7acd272aee23964553ff0bf0b2Debian Linux Security Advisory 4325-1 - It was discovered that mosquitto, an MQTT broker, was vulnerable to remote denial-of-service attacks that could be mounted using various vectors.
0f100333bf1ce543fb60983b712949394c78b5bf83433e662e0029116ef371cfDebian Linux Security Advisory 4324-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could result in the execution of arbitrary code, privilege escalation or information disclosure.
1482c2a868a3a226457b9a48ae252f72677cae5cfb4f4f174c2f98c16cf35579xorg-x11-server versions prior to 1.20.3 local root exploit.
04fb5107a3446c9f4277d7db1e505e471ef5b483f8fd1dad9ec5583b8566c268xorg-x11-server versions prior to 1.20.3 local privilege escalation exploit.
f3cd2959f68332bfa2c323ef0adaf0aa7a1128133e424075a042a879dc030265MPS Box version 0.1.8.0 suffers from a remote SQL injection vulnerability.
36b8d0c720c11772ea4a72c8e54524075f2339700ea64fc60d65e0d41fd0b935BORGChat version 1.0.0 build 438 denial of service proof of concept exploit.
1ed0c6f48a7508eea132065f5f36fe5922b77df59f6745c97bf22a608db8479cRed Hat Security Advisory 2018-3003-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 8 to version 8 Update 191. Issues addressed include a denial of service vulnerability.
5447f8952aedcb2d337763f62e18f2145788a864124e4750f0454593b92cc5c4Red Hat Security Advisory 2018-3004-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 70.0.3538.67. Issues addressed include buffer overflow and code execution vulnerabilities.
a62da74222a6deb430950a3191ab187b2c3fa28cab9bc58b56e098e0ed3bb36cRed Hat Security Advisory 2018-3002-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 8 to version 8 Update 191. Issues addressed include a denial of service vulnerability.
5d9984f2fd90f05ca4904633a50f693fe5a0204e290fcc2a58560a1f62acf8d3Red Hat Security Advisory 2018-3005-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.3.0 ESR. Issues addressed include a bypass vulnerability.
cbe0092b4ab4c017536af033dc254c363296b218182c1c9eb5d24dfe63da335eRed Hat Security Advisory 2018-3001-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 7 to version 7 Update 201. Issues addressed include a denial of service vulnerability.
2b9e0d849414ac1735748156b8aeef8010cdedd81520dc5984bc4140314c2b4aRed Hat Security Advisory 2018-3000-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 7 to version 7 Update 201. Issues addressed include a denial of service vulnerability.
a93e5b26d50e155dc32b2882cda85debfbb400f15d4356fc4191e5b93331aa7bRed Hat Security Advisory 2018-3006-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.3.0 ESR. Issues addressed include a bypass vulnerability.
f0049252ccdb1467288167b83d6220b93438abe9b208d230f5cb0c480f6e3c7eRed Hat Security Advisory 2018-3008-01 - Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 6 to version 6 Update 211. Issues addressed include a denial of service vulnerability.
bc94839eae2c0fb885dcffdcdbb3ac18844d51bb390562a58eb2019851d39498Red Hat Security Advisory 2018-3007-01 - Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 6 to version 6 Update 211. Issues addressed include a denial of service vulnerability.
d33ed9274586089907ca6e62f732423aa29e755c29fb58b663334ceabcab53a2This Metasploit module uses a valid username and password of any level (or password hash) to execute an arbitrary payload. This Metasploit module is similar to the "psexec" module, except allows any non-guest account by default.
62064773ec9a35ea65bfaad94997ca19e3bcbb3be2deb552ff222d7fe63317a4This Metasploit module exploits a flaw in the 'webexservice' Windows service, which runs as SYSTEM, can be used to run arbitrary commands locally, and can be started by limited users in default installations.
5fd5f73708b7741614718b8a1cece16b9de49b88d3267e6f1549bbe34dc56a0aPolycom VVX 500 / VVX 601 versions 5.8.0.12848 and below suffer from an information exposure vulnerability.
3946095174c52f0117914befe41f9b683f9acdfb9bf275dc1ae13b547ebad25bUbuntu Security Notice 3801-1 - Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, bypass CSP restrictions, spoof the protocol registration notification bar, leak SameSite cookies, bypass mixed content warnings, or execute arbitrary code. Various other issues were also addressed.
070751dac62d0e36aedbaaf6e004869962630cbbfb0a6e6921710868df00e0daPolycom VVX 500 / VVX 601 versions 5.8.0.12848 and below suffer from a man-in-the-middle vulnerability.
7b5fbf76b7eba76a71529c6ea57d610f4fcc5779b2d7571076b77a2832b5f4dbUbuntu Security Notice 3800-1 - It was discovered that audiofile incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service. It was discovered that audiofile incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code.
a7e5c0f782761dfd9cc3c0d7985146da741cb8594d5d1afb7b7c0913ff432b73AudioCodes 440HD / 450HD IP Phone versions 3.1.2.89 and below suffer from a man-in-the-middle vulnerability.
60e19e61a99c7d9dabb6688f443d8a862df2c3e07135d755e7dfeaf5d3b99db3Fifa Master XLS version 2.3.2 suffers from a remote SQL injection vulnerability.
125e9c25a3fa2ae176e044edf7920e8e3adf0c78a058ae7c6c3045e654036b7fAxioscloud Sissiweb Registro Elettronico version 7.0.0 suffers from a cross site scripting vulnerability.
3c10863d0e2abd4f243f81f66ecbdb173b4bda14b1de618998cf91e3b4670490
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed