Debian Linux Security Advisory 4504-1 - Multiple security issues were discovered in the VLC media player, which could result in the execution of arbitrary code or denial of service if a malformed file/stream is processed.
7b878d2f2aec294af8e8fb3e4880add79989359126d95f4c961652a73bc866aaFreeBSD Security Advisory - System calls operating on file descriptors obtain a reference to relevant struct file which due to a programming error was not always put back, which in turn could be used to overflow the counter of affected struct file. A local user can use this flaw to obtain access to files, directories, sockets, etc., opened by processes owned by other users. If obtained struct file represents a directory from outside of user's jail, it can be used to access files outside of the jail. If the user in question is a jailed root they can obtain root privileges on the host system.
b8976c51a157ffad5c715c1c5e8e3c4be69500c550b1d9f9a9862cd2b065c512FreeBSD Security Advisory - The kernel driver for /dev/midistat implements a handler for read(2). This handler is not thread-safe, and a multi-threaded program can exploit races in the handler to cause it to copy out kernel memory outside the boundaries of midistat's data buffer. The races allow a program to read kernel memory within a 4GB window centered at midistat's data buffer. The buffer is allocated each time the device is opened, so an attacker is not limited to a static 4GB region of memory. On 32-bit platforms, an attempt to trigger the race may cause a page fault in kernel mode, leading to a panic.
f3a37b5b4a8b054c0d5f798740e9983852e75de9e88318c41e4bfc0a3b6709bcFreeBSD Security Advisory - Due do a missing check in the code of m_pulldown(9) data returned may not be contiguous as requested by the caller. Extra checks in the IPv6 code catch the error condition and trigger a kernel panic leading to a remote DoS (denial-of-service) attack with certain Ethernet interfaces. At this point it is unknown if any other than the IPv6 code paths can trigger a similar condition.
1f311d34b4e8c453ffa41707ecfe3219803c47358a8d270ea06614aad0a80509Red Hat Security Advisory 2019-2534-01 - Red Hat 3scale API Management delivers centralized API management features through a distributed, cloud-hosted layer. It includes built-in features to help in building a more successful API program, including access control, rate limits, payment gateway integration, and developer experience tools. This release of Red Hat 3scale API Management 2.6.0 replaces Red Hat 3scale API Management 2.5.1.
c3af1080b6fbadf137c1b367cb86e0003b1af3b74f3abe3aeacfd59b57bc25c9This Metasploit module generates an ODT file with a dom loaded event that, when triggered, will execute arbitrary python code and the metasploit payload.
a9df52f5e153cebc58d4e4198c48942a2f9379eaa47f6d7466b46a1643fd0618Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
a864e0b605fb933fcc167bf242eed4233949e8a1bf23ac8e0381b106cd920425The No cON Name 2019 call for papers has been announced. It will be held in Barcelona, Spain, from November 14th and 15th, 2019.
0204aa96e645aae49c148a348532d9854d95de70929e412f851c93644cdd98c3Webmin version 1.920 remote root exploit.
24da0743c530b7cde50344fe79a0f147dea9975a51294a92407b1d5fe39f2f39CentOS-WebPanel.com Control Web Panel (CWP) version 0.9.8.851 allows an attacker to change arbitrary passwords.
4efb27420a227e97715e7d7be24416f052d4c5a363d45dce305d0340da388115CentOS-WebPanel.com Control Web Panel (CWP) version 0.9.8.851 suffers from an arbitrary database dropping vulnerability.
1d6d82560f3b4ba4f1c6c891801038a74f7372c46e8936527195f907db40fd4fUbuntu Security Notice 4107-1 - It was discovered that GIFLIB incorrectly handled certain GIF files. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 LTS. It was discovered that GIFLIB incorrectly handled certain GIF files. An attacker could possibly use this issue to cause a denial of service.
cf7a5ef0ff717dbe13fc3ebf22d058a7fb31928d477ed2707daecae9f2857ec8Ubuntu Security Notice 4106-1 - Mike Salvatore discovered that NLTK mishandled crafted ZIP archives during extraction. A remote attacker could use this vulnerability to write arbitrary files to the filesystem.
67c1fd94cc02ae15969151dfdc1c8669a70df4dbbdafd497a25c319b1b295ec0Ubuntu Security Notice 4105-1 - Stephan Zeisberg discovered that the CUPS SNMP backend incorrectly handled encoded ASN.1 inputs. A remote attacker could possibly use this issue to cause CUPS to crash by providing specially crafted network traffic. It was discovered that CUPS did not properly handle client disconnection events. A local attacker could possibly use this issue to cause a denial of service or disclose memory from the CUPS server. Various other issues were also addressed.
9ea594f876626482306d705e181fa2ea02fcf26088db28e67eff36a606a9e8fbUbuntu Security Notice 4104-1 - Donny Davis discovered that the Nova Compute service could return configuration or other information in response to a failed API request in some situations. A remote attacker could use this to expose sensitive information.
0de56693f6a858d5f3ca51f42b40d4048f402bcac915e827fe423582f6c1e88bUbuntu Security Notice 4103-2 - Jasiel Spelman discovered that a double free existed in the docker-credential- helpers dependency of Docker. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Jasiel Spelman discovered that a double free existed in docker-credential- helpers. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.
db04566acdcd349de4736a6dc34a44616333ad7993774ecb342b70490985c683Ubuntu Security Notice 4103-1 - Jasiel Spelman discovered that a double free existed in docker-credential- helpers. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.
e7e4bdf09b9ea9f7a49ec0c2f8ba123043c13dc59b323fc09ce4fe8af95f7f5dCentOS-WebPanel.com Control Web Panel (CWP) version 0.9.8.848 suffers from a user enumeration vulnerability.
cc0c55ccdb42fd51d11a4b01419284a4bc4b629d40b00b2b4ccebe57d7de4456haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
9ac75039584f5af216d1ce97fead75f2e852bf2d3665e58d66b3da184ace7debWordPress Add Mime Types plugin version 2.2.1 suffers from a cross site request forgery vulnerability.
f4c0f6639fc24795d7e517d3b9bdd3e1005bdf352efab5d6247928df33cd244f62 bytes small Linux/x86_64 AVX2 XOR decoder + execve("/bin/sh") shellcode.
7cb9d761cd9b8b15b5b19ef47abaab7bba25681d2245e26a498db53f19a910ddMicrosoft Office365 and ProPlus build 16.0.11901.20204 suffers from code execution and protection bypass vulnerabilities.
04367a5166a8e361792ca288053f674734b3a645cb58593c2565f53aef404364120 bytes small Linux/x86_64 reverse (127.0.0.1:4444/TCP) shell (/bin/sh) + password (pass) shellcode.
1c38c103a596fcb64ef48d59fd8c0f6942b90a78da6f307b1b22480e5eb523e5157 bytes small Linux/MIPS64 reverse (localhost:4444/TCP) shell shellcode.
0e371de6c42c802891f465341b83b23f73f24fea23abf8aa1e01af9d67db8681FortiOS versions 5.6.3 through 5.6.7 and 6.0.0 through 6.0.4 suffer from a credential disclosure vulnerability.
b2b3f4a059a819d179d1351df2449ee136c21fac4545ee3a69e597459c9fbae5
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed