Debian Linux Security Advisory 4711-1 - Several vulnerabilities were discovered in coturn, a TURN and STUN server for VoIP.
94e74ee6e965430d2e69c9021feb0e95c097ca0170c9498a6756dfe99f8b5ed7
Debian Linux Security Advisory 4712-1 - Handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or potentially the execution of arbitrary code if malformed image files are processed.
b442fec96018f2e85386811aa674d59a7d8358e77e88772714fbddc8ec4b1f1d
Windscribe version 1.83 suffers from an unquoted service path vulnerability.
3a69097c69131501de9a2d82ddd6f5a72a10ad74914c97973bbec4417c602330
OpenEMR version 5.0.1 suffers from a remote code execution vulnerability.
30c2dce13c4d30c1351faa3934ffc815807ae3f57ed30e9c09176e6fe07bef30
KiteService version 1.2020.618.0 suffers from an unquoted service path vulnerability.
9f1969c9c40c04b042621ad8bb3cb88b82b11330fa83a1668a4726b74582010c
Fire Web Server Pre-Alpha version suffers from a denial of service vulnerability.
e57467b419ce3fa77ec60d1ede7a8ea90d39c83b42464e2cde3fa519c3fe4149
Ubuntu Security Notice 4404-1 - Thomas E. Carroll discovered that the NVIDIA Cuda graphics driver did not properly perform access control when performing IPC. An attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the UVM driver in the NVIDIA graphics driver contained a race condition. A local attacker could use this to cause a denial of service. Various other issues were also addressed.
253907a293c3559c28ca018709778bb82587a57c67788cee94708031dbbedb71
Ubuntu Security Notice 4404-2 - USN-4404-1 fixed vulnerabilities in the NVIDIA graphics drivers. This update provides the corresponding updates for the NVIDIA Linux DKMS kernel modules. Thomas E. Carroll discovered that the NVIDIA Cuda graphics driver did not properly perform access control when performing IPC. An attacker could use this to cause a denial of service or possibly execute arbitrary code. Various other issues were also addressed.
bdd8d190651c895026843c3791261be2715e80d62047c893bb820713ccf006d7
This Metasploit module exploits a Java deserialization vulnerability in the Inductive Automation Ignition SCADA product, versions 8.0.0 to (and including) 8.0.7. This exploit was tested on versions 8.0.0 and 8.0.7 on both Linux and Windows. The default configuration is exploitable by an unauthenticated attacker, which can achieve remote code execution as SYSTEM on a Windows installation and root on Linux. The vulnerability was discovered and exploited at Pwn2Own Miami 2020 by the Flashback team (Pedro Ribeiro + Radek Domanski).
9d49478c9a416ef64a062b712cd22c68e5b37e2e0f0dbc80fc3655a1c2e3d686
iOS and macOS suffered from a wifi proximity kernel double-free vulnerability in AWDL BSS Steering.
185ed329e279974bff794995bb28d911a3d0487fe537cf5e9f91c71beea77fb6
Red Hat Security Advisory 2020-2755-01 - libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 protocol in C. Issues addressed include a denial of service vulnerability.
d11adf3d805faf3dbef817e9ef58c4c6f4cd13bf9ad3634b2d52a78080852383
This Metasploit module exploits a cross site request forgery vulnerability in Online Student Enrollment System version 1.0 to perform a shell upload.
b6366584b46649d37ada0b665f649825e40650ad568620f751b7363d7e66995e
FHEM version 6.0 suffers from a local file inclusion vulnerability.
5160e3d33cbb28402cdd7c05ddca7fa56063505199fb9e026f19326dc0072f10
Whitepaper called Exploit Command Injection Router via reverse firmware technique.
52e2f44996fd104e80355da0a4c50a392a577914c8465b2dd09f44548afeaad0
This is a proof of concept exploit that takes advantage of a privilege escalation vulnerability in the Windows Print Spooler.
10cd5282101291a6752965e7e18cbc4e13658d0643547dbb3204e8fd764b8c3a
ASUS Aura Sync version 1.07.71 ene.sys privilege escalation kernel exploit.
e7ab712703b5aec8283763947cace886385e933263c2aec57c840e86c46387e6
Red Hat Security Advisory 2020-2751-01 - AMQ Broker is a high-performance messaging implementation based on ActiveMQ Artemis. It uses an asynchronous journal for fast message persistence, and supports multiple languages, protocols, and platforms. This release of Red Hat AMQ Broker 7.7.0 serves as a replacement for Red Hat AMQ Broker 7.6.0, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.
86afa8e16589220829347dd236016a327498a1d6af106f5931992adf9a788c30
The installer component of Cisco AnyConnect Secure Mobility Client for Windows prior to version 4.8.02042 is vulnerable to path traversal and allows local attackers to create/overwrite files in arbitrary locations with system level privileges. The attack consists in sending a specially crafted IPC request to the TCP port 62522 on the loopback device, which is exposed by the Cisco AnyConnect Secure Mobility Agent service. This service will then launch the vulnerable installer component (vpndownloader), which copies itself to an arbitrary location before being executed with system privileges. Since vpndownloader is also vulnerable to DLL hijacking, a specially crafted DLL (dbghelp.dll) is created at the same location vpndownloader will be copied to get code execution with system privileges. This exploit has been successfully tested against Cisco AnyConnect Secure Mobility Client versions 4.5.04029, 4.5.05030 and 4.7.04056 on Windows 10 version 1909 (x64) and Windows 7 SP1 (x86).
b6d44c2b494378ff342fef57be9d4be4564327103eadabb01ff166ae6dae9bff
This document describes a stack overflow vulnerability that was found in October, 2019 and presented in the Pwn2Own Mobile 2019 competition in November 2019. The vulnerability is present in the UPNP daemon (/usr/sbin/upnpd), running on NETGEAR R6700v3 router with firmware versions V1.0.4.82_10.0.57 and V1.0.4.84_10.0.58. It allows for an unauthenticated reset of the root password and then spawns a telnetd to remotely access the account.
3ccd57c2afc9c37bec7729262aa2b172845c46c639bdb363b6009f40ca166d05
BSA Radar version 1.6.7234.24750 suffers from a persistent cross site scripting vulnerability.
0a6d9ae3213d039a6276115d9acee975c7246ffd2f7f8ad53860f3603aea7410
Ubuntu Security Notice 4403-1 - It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this issue to enable MITM attacks. This update also address a regression caused in the last update USN-4401-1. It only affected Ubuntu 12.04 ESM, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 19.10.
c2829c8ace96da1563a94a14a265cddbae8d0b73a1a4830bb6d026629b1912a1
Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the source code release.
e8e70f2a5a608a4e224ccf847ad2b8e4d68286900296afe00eb514d8c9ec1285
Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the binary release.
869c0622696108589cab876c5ec25b9b4787ba0af9554fad6f9e2366d128eff1
Red Hat Security Advisory 2020-2740-01 - Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
4b0d5adcf78b80d6122bf092c1d7a7e09a56194e14a0fd16b79d0df7686a7e3d
Ubuntu Security Notice 4402-1 - Marek Szlagor, Gregory Jefferis and Jeroen Ooms discovered that curl incorrectly handled certain credentials. An attacker could possibly use this issue to expose sensitive information. This issue only affected Ubuntu 19.10 and Ubuntu 20.04 LTS. It was discovered that curl incorrectly handled certain parameters. An attacker could possibly use this issue to overwrite a local file. Various other issues were also addressed.
7ad6be029b3ae23be7701aa1b9dde82d54233beeaddc75b7a387cc28e8118870