Red Hat Security Advisory 2019-3916-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This is a text-only advisory for the machine-os-content container image, which includes RPM packages for Red Hat Enterprise Linux CoreOS. Issues addressed include bypass and denial of service vulnerabilities.
978f584f1d431ed8a1d60ccb27bcfaa551cac28f5ceeefe9395f3f27f7a4d33bMicrosoft Windows allows for the automatic loading of a profiling COM object during the launch of a CLR process based on certain environment variables ostensibly to monitor execution. In this case, the authors abuse the profiler by pointing to a payload DLL that will be launched as the profiling thread. This thread will run at the permission level of the calling process, so an auto-elevating process will launch the DLL with elevated permissions. In this case, they use gpedit.msc as the auto-elevated CLR process, but others would work, too.
dca3da70d2a2d1b66b1779e541ee7478df88bc4ec265fa33d2fffcb756920230Debian Linux Security Advisory 4573-1 - Multiple vulnerabilities have been found in the Symfony PHP framework which could lead to a timing attack/information leak, argument injection and code execution via unserialization.
649856298cb28fd4e777cfd64eb702d40e46dbe90be03da023d6599457196f3dRed Hat Security Advisory 2019-3908-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. An issue where Intel GPU blitter manipulation can allow for arbitrary kernel memory write was addressed.
771d899dfba8ebd1b2384f5d682f8e3b51f8f9527b9a63777c89611504fc2b77scadaApp for iOS version 1.1.4.0 suffers from a denial of service vulnerability.
7dfba40da62117bfe1ba269f5c9791fad3b57b8f6db3ed6f6774813cf9cb1549This tool enumerates hostnames from Bing.com for an IP address. Bing.com is Microsoft's search engine which has an IP: search parameter. Written in Bash for Linux. Requires wget.
f611e29ee74a4a212fca8367be3d4c75c49d90644e66e88ced166d6d554f433bCentova Cast version 3.2.12 denial of service proof of concept exploit.
dd2d2e1e1a6f265180c29c7206c8089d93b35695ad956aee5295170946d7f023Debian Linux Security Advisory 4572-1 - It was discovered in the Simple Linux Utility for Resource Management (SLURM), a cluster resource management and job scheduling system did not escape strings when importing an archive file into the accounting_storage/mysql backend, resulting in SQL injection.
e9226c014af9aa261f4daad658cd75a20880c2eabb13a35490a1760bf6a03212Studio 5000 Logix Designer version 30.01.00 suffers from an unquoted service path vulnerability.
d5c9a3aa2846731f4e0eb8e5d62991cf05802b071f53a98e372cb7a74f1237c1Red Hat Security Advisory 2019-3906-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Go has been updated to address unbounded memory growth issues.
6cec1cf1b3c2be7f0217de29590233329a58677333d62f79b78870c55bdcdcdbWhitepaper called Injecting .NET Ransomware into Unmanaged Process.
7e890c6dff5ae8156d98429f6fe186edb3369beed0fab15a6a007e3594801cf7Red Hat Security Advisory 2019-3905-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the atomic-openshift RPM package for Red Hat OpenShift Container Platform 3.11.154. Issues addressed include a denial of service vulnerability.
a9bd809aaee36d28d9ee4561f35bd9c9280a30448cc0f7c35d4ebdd1629e27d4XMedia Recode version 3.4.8.6 suffers from a denial of service vulnerability.
4bc66f64ad3d94d0e536e3d585ea77f6842378a09916d4c1cab24b94a346ae73Microsoft Windows 7 (x86) BlueKeep remote desktop protocol windows kernel use-after-free exploit.
6004557d41e57d6f8c6f1e069e636a6c4bd77559c9d558f5f217529403730a3eBartVPN version 1.2.2 suffers from a BartVPNService unquoted service path vulnerability.
57c2c206271247dd1c6b0e62a108d477be8fd98657639b3e338d6a2a3d0a4b34Whitepaper that appears to be authored by Phineas Fisher called HackBack - A DIY Guide To Rob Banks. Written in Spanish.
27c62be8c0f63cf1ea3399eb23af8641daf76da0da42c41d2bcd2bfc8fd2bdbeWhitepaper that appears to be authored by Phineas Fisher called HackBack - A DIY Guide To Rob Banks.
6f4bda574c8c9dd1977b94777b2459398ec711e90dcdc1ffba003ee3fe468b72
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed