what you don't know can hurt you
Showing 76 - 100 of 396 RSS Feed

Files Date: 2018-11-01 to 2018-11-30

Gentoo Linux Security Advisory 201811-11
Posted Nov 24, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-11 - Multiple vulnerabilities have been found in Asterisk, the worst of which could result in a Denial of Service condition. Versions less than 13.23.1 are affected.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2017-16671, CVE-2017-16672, CVE-2017-17850, CVE-2018-12227, CVE-2018-17281
MD5 | a2021f8e6c449d50f4e1d02b2054578a
Gentoo Linux Security Advisory 201811-13
Posted Nov 24, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-13 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could lead to the execution of arbitrary code. Versions less than 60.3.0 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-16541, CVE-2018-12359, CVE-2018-12360, CVE-2018-12361, CVE-2018-12362, CVE-2018-12363, CVE-2018-12364, CVE-2018-12365, CVE-2018-12366, CVE-2018-12367, CVE-2018-12371, CVE-2018-12372, CVE-2018-12373, CVE-2018-12374, CVE-2018-12376, CVE-2018-12377, CVE-2018-12378, CVE-2018-12379, CVE-2018-12383, CVE-2018-12385, CVE-2018-12389, CVE-2018-12390, CVE-2018-12391, CVE-2018-12392, CVE-2018-12393, CVE-2018-5125
MD5 | cb3a08958b6999e989e4f477c4399834
Gentoo Linux Security Advisory 201811-12
Posted Nov 24, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-12 - Multiple vulnerabilities have been found in GPL Ghostscript, the worst of which could result in the execution of arbitrary code. Versions prior to 9.26 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-11714, CVE-2017-7948, CVE-2017-9610, CVE-2017-9611, CVE-2017-9612, CVE-2017-9618, CVE-2017-9619, CVE-2017-9620, CVE-2017-9726, CVE-2017-9727, CVE-2017-9739, CVE-2017-9740, CVE-2017-9835, CVE-2018-10194, CVE-2018-15908, CVE-2018-15909, CVE-2018-15910, CVE-2018-15911, CVE-2018-16509, CVE-2018-16510, CVE-2018-16511, CVE-2018-16513, CVE-2018-16539, CVE-2018-16540, CVE-2018-16541, CVE-2018-16542, CVE-2018-16543
MD5 | f0a3d2703790af5e30aed7740e306f75
Ubuntu Security Notice USN-3801-2
Posted Nov 23, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3801-2 - USN-3801-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problems. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, bypass CSP restrictions, spoof the protocol registration notification bar, leak SameSite cookies, bypass mixed content warnings, or execute arbitrary code. Multiple security issues were discovered with WebExtensions in Firefox. If a user were tricked in to installing a specially crafted extension, an attacker could potentially exploit these to bypass domain restrictions, gain additional privileges, or run content scripts in local pages without permission. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, local, spoof, vulnerability, protocol
systems | linux, ubuntu
advisories | CVE-2018-12398, CVE-2018-12403
MD5 | 811a5ef0a3ce8b51d96d4535e884c045
Gentoo Linux Security Advisory 201811-10
Posted Nov 23, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-10 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which allows remote attackers to execute arbitrary code. Versions less than 70.0.3538.67 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2018-16065, CVE-2018-16066, CVE-2018-16067, CVE-2018-16068, CVE-2018-16069, CVE-2018-16070, CVE-2018-16071, CVE-2018-16072, CVE-2018-16073, CVE-2018-16074, CVE-2018-16075, CVE-2018-16076, CVE-2018-16077, CVE-2018-16078, CVE-2018-16079, CVE-2018-16080, CVE-2018-16081, CVE-2018-16082, CVE-2018-16083, CVE-2018-16084, CVE-2018-16085, CVE-2018-16086, CVE-2018-16087, CVE-2018-16088, CVE-2018-17462, CVE-2018-17463
MD5 | 00c4f95e347d6f0a2bd371ca23b08e9b
Slackware Security Advisory - openssl Updates
Posted Nov 22, 2018
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New openssl packages are available for Slackware 14.2 and -current to fix security issues.

tags | advisory
systems | linux, slackware
advisories | CVE-2018-0734, CVE-2018-5407
MD5 | f0a7c35b757cd5d75ba3b9e4276c97fd
Ubuntu Security Notice USN-3825-2
Posted Nov 22, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3825-2 - USN-3825-1 fixed a vulnerability in mod_perl. This update provides the corresponding update for Ubuntu 12.04 ESM. Jan Ingvoldstad discovered that mod_perl incorrectly handled configuration options to disable being used by unprivileged users, contrary to the documentation. A local attacker could possibly use this issue to execute arbitrary Perl code. Various other issues were also addressed.

tags | advisory, arbitrary, local, perl
systems | linux, ubuntu
advisories | CVE-2011-2767
MD5 | a6a5736b83ce90265a6ec06acf1c20e8
Oracle Secure Global Desktop Administration Console 4.4 Cross Site Scripting
Posted Nov 22, 2018
Authored by Rafael Pedrero

Oracle Secure Global Desktop Administration Console version 4.4 build 20080807152602 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2018-19439
MD5 | a5443f6a608013f6471a48f2e19d1862
VMware Security Advisory 2018-0030
Posted Nov 22, 2018
Authored by VMware | Site vmware.com

VMware Security Advisory 2018-0030 - VMware Workstation and Fusion updates address an integer overflow issue.

tags | advisory, overflow
advisories | CVE-2018-6983
MD5 | a36afe863a7a331ed9de526f59017e6c
WordPress Universal Post Manager 1.5.0 Database Disclosure
Posted Nov 22, 2018
Authored by KingSkrupellos

WordPress Universal Post Manager plugin version 1.5.0 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | e945bb02c54181d99b22a50a53b38e4b
Consona Password Reset Security Bypass
Posted Nov 22, 2018
Authored by Rafael Pedrero

Multiple Consona products suffered from a password reset security bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2010-1910
MD5 | 1532c6d765c58cd1bc4debe9a52538dd
WordPress Absolutely Glamorous Custom Admin 6.4.1 Database Disclosure
Posted Nov 22, 2018
Authored by KingSkrupellos

WordPress Absolutely Glamorous Custom Admin plugin version 6.4.1 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | afba620051aab1d8fc5a9b455aa7adaf
Cory Support 1.0 SQL Injection
Posted Nov 22, 2018
Authored by Socket_0x03

Cory Support version 1.0 suffers from a remote time-based SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e049d30baeca6bd3b20e625c427140dd
WordPress Pods 2.7.9 Database Disclosure
Posted Nov 22, 2018
Authored by KingSkrupellos

WordPress Pods plugin version 2.7.9 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | cf6b7063621e6cc90dde1ba78830d5b5
WebKitGTK+ / WPE WebKit Code Execution / Cross Site Scripting
Posted Nov 22, 2018
Authored by WebKitGTK+ Team

WebKitGTK+ and WPE WebKit suffer from code execution, cross site scripting, and various other vulnerabilities.

tags | advisory, vulnerability, code execution, xss
advisories | CVE-2018-4345, CVE-2018-4372, CVE-2018-4373, CVE-2018-4375, CVE-2018-4376, CVE-2018-4378, CVE-2018-4382, CVE-2018-4386, CVE-2018-4392, CVE-2018-4416
MD5 | 4c0dbc848117ab6a612ba029815f2d9f
Debian Security Advisory 4339-2
Posted Nov 22, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4339-2 - The update for ceph issued as DSA-4339-1 caused a build regression for the i386 builds. Updated packages are now available to address this issue.

tags | advisory
systems | linux, debian
MD5 | 1bc141ce23b515cfc492a8a92b1f010b
Joomla MacGallery Database Disclosure
Posted Nov 22, 2018
Authored by KingSkrupellos

The Joomla com_macgallery component suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | a672fe2dc119bba2b4c9a59fc2cd5b7f
Joomla Admin 3.7.4 Database Disclosure
Posted Nov 22, 2018
Authored by KingSkrupellos

Joomla com_admin component versions 2.5.4 through 3.7.4 suffer from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | e3c7af83f4e760aa4085c3ddbb3d3b7a
Ubuntu Security Notice USN-3825-1
Posted Nov 21, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3825-1 - Jan Ingvoldstad discovered that mod_perl incorrectly handled configuration options to disable being used by unprivileged users, contrary to the documentation. A local attacker could possibly use this issue to execute arbitrary Perl code.

tags | advisory, arbitrary, local, perl
systems | linux, ubuntu
advisories | CVE-2011-2767
MD5 | 9d677f50c922e8159d80dbba054a65ad
Governikus Autent SDK 3.8.1 Signature Bypass
Posted Nov 21, 2018
Authored by Wolfgang Ettlinger | Site sec-consult.com

Governikus Autent SDK versions 3.8.1 and below suffer from a signature bypass vulnerability. This vulnerability could allow an attacker to impersonate any German citizen on a vulnerable web application.

tags | exploit, web, bypass
MD5 | 66a2046d90ce6dc8fd56bd9619e0ad54
Miss Marple Enterprise Edition File Upload / Hardcoded AES Key
Posted Nov 21, 2018
Authored by Marius Schwarz | Site sec-consult.com

Miss Marple Enterprise Edition versions prior to 2.0 suffer from arbitrary file upload, hardcoded AES key, validation bypass, and other vulnerabilities.

tags | advisory, arbitrary, vulnerability, file upload
advisories | CVE-2018-19233, CVE-2018-19234
MD5 | 5fc5d23b1a1b5d01c8a5758c57afca63
Red Hat Security Advisory 2018-2906-01
Posted Nov 21, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2906-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.7.72. Issues addressed include a crash.

tags | advisory
systems | linux, redhat
advisories | CVE-2018-14632
MD5 | 7c5f3d2ebd28827eb7f1c629273ce56b
Microsoft Skype 2015 / 2016 Denial Of Service
Posted Nov 21, 2018
Authored by Sabine Degen | Site sec-consult.com

A large number of emojis received in one message by the Skype For Business client freezes the program for a few seconds. This can be exploited to perform denial of service attacks against Skype for Business users and compromises the availability of the program. Affected includes Skype for Business 2015 (Lync 2013) before version 15.0.5075.1000 and Skype for Business 2016 before version 16.0.4756.1000.

tags | exploit, denial of service
advisories | CVE-2018-8546
MD5 | 0134e3427becbd4819ebcaa8bc17eb55
WebOfisi E-Ticaret 4 SQL Injection
Posted Nov 21, 2018
Authored by Ozkan Mustafa Akkus

WebOfisi E-Ticaret version 4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | afba2bd1b71b62520bd6453e5e195a60
WordPress CherryFramework Themes 3.1.4 Backup File Download
Posted Nov 21, 2018
Authored by b1p0l4r

WordPress CherryFramework Themes version 3.1.4 suffers from a backup file download vulnerability.

tags | exploit, info disclosure
MD5 | 9df16ac2c1bc683bcca82958108b2bb9
Page 4 of 16
Back23456Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    12 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close