Zeek is a powerful network analysis framework that is much different from the typical IDS you may know. While focusing on network security monitoring, Zeek provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber-infrastructure. Zeek's user community includes major universities, research labs, supercomputing centers, and open-science communities.
af3ee5635140a54d305667983d38ea28f36457c9f2f8727e90ea3ef00b22c44f
Ubuntu Security Notice 4454-2 - USN-4454-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Martin von Wittich and Wilko Meyer discovered that Samba incorrectly handled certain empty UDP packets when being used as a AD DC NBT server. A remote attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service. Various other issues were also addressed.
113ab2f64b0fb02bdde59a5d23d991cdb9f82d85a2fd26164a620e2b030af04b
Ubuntu Security Notice 4455-1 - It was discovered that NSS incorrectly handled certain signatures. An attacker could possibly use this issue to expose sensitive information.
cfae90bde1032d5ad8537ed17322b2899520135a02709ba32e911a05eb073962
Red Hat Security Advisory 2020-3387-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP70. Issues addressed include bypass and information leakage vulnerabilities.
8c2ad965488b25391baf6588fb39389283b41839c5682db72fbd42562d215f7a
Red Hat Security Advisory 2020-3388-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP70. Issues addressed include bypass and information leakage vulnerabilities.
73a87136fe023e4839d289e37ab15921e40b1cf535b1fbfbc6963e20bfa6a117
Ubuntu Security Notice 4454-1 - Martin von Wittich and Wilko Meyer discovered that Samba incorrectly handled certain empty UDP packets when being used as a AD DC NBT server. A remote attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service.
35d0283a24cb4d861e2191d597f6e9cd041aa7cda3233d7f76da6fbd4f2158e1
ManageEngine ADSelfService Plus 6000 unauthenticated remote code execution exploit.
fa384c7e23223ad88e958b30f63828edb593906fd8b96943cad069ac163c70e2
Two denial of service exploits for Cisco 7937G versions SIP-1-4-5-7 and below.
6329ae271427ebdd4aca842b16c5bf3f67949255d490ea35dafca48866d48d98
Cisco 7947G versions SIP-1-4-5-7 and below privilege escalation exploit.
34708347a6cf94b31172406fb4db70445cf77dffd562fe392a73bb2f32ce2da0
This exploit is an all-in-one tool that leverages vulnerabilities described in CVE-2020-16139, CVE-2020-16138, and CVE-2020-16137 against Cisco 7937G devices versions SIP-1-4-5-7 and below.
7724dcf86fe3eda058a8dbe264a07cb05296015350554358dc98f2cdd4cc6be1
Red Hat Security Advisory 2020-3386-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6-FP15. Issues addressed include bypass and information leakage vulnerabilities.
bf60fb5b86f6dce8368e1768fe677f8af37f1dcd3e42c65e2aed79642ac5c27c
Warehouse Inventory System version 1.0 suffers from a cross site request forgery vulnerability.
9259a5dd56037ce00a387f69f7055e6c55dbde1233f6394e2f390ff750bc8b9b
Tailor MS version 1.0 reflected cross site scripting key logger exploit.
24220cad535f63bbf6ab9fb8609e3780a5eb9b381a139bf42293242409ed5b05
BarracudaDrive version 6.5 suffers from a privilege escalation vulnerability.
bd93725c180cdafc139079c727d570922f7d871548126bc0ba7bf1843d4f7cb3
House Rental version 1.0 SQL injection exploit that changes the administrative password. Written in python.
03add875cfdb342001765974b146763270038bf46f6fe406f0e48df2834e06a7
BarcodeOCR version 19.3.6 suffers from an unquoted service path vulnerability.
85eed3d140dd92db0817be829bab7352465a92089c165b56f25562f4aa768e3d
Red Hat Security Advisory 2020-3385-01 - LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Issues addressed include a buffer overflow vulnerability.
fd4f48df7a85f4ef84e9a1f20f961b4f76aa5b5d13d940a45f63b050a06b3268
Red Hat Security Advisory 2020-3383-01 - Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server. This asynchronous patch is an update for JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 5, 6, and 7. All users of Red Hat JBoss Enterprise Application Platform 6.4 are advised to upgrade to this updated package. Issues addressed include a denial of service vulnerability.
6e92f908851dba70ff5d8509445fb1f507d2177284ba22391cfb9cd01731a8d4
Red Hat Security Advisory 2020-3382-01 - Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server. This asynchronous patch is an update for JBoss Enterprise Application Platform 6.4. All users of Red Hat JBoss Enterprise Application Platform 6.4 are advised to upgrade to these updated packages. Issues addressed include a denial of service vulnerability.
33450aaf35d62927bdd60a4eacae6b6668aaea613c8b5495b9b390f2101cc22b
Red Hat Security Advisory 2020-3379-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly.
62f55f5dc4b23f7d6240f8e34a967935fbfd154bf33844b52aeb5c14727bdc6d
Red Hat Security Advisory 2020-3378-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly.
dc1ee1527a1d2a7f98f85f3049c4127e428f0b01cc4876cd907aa8db66d80a2b
Red Hat Security Advisory 2020-3377-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 84.0.4147.105. Issues addressed include buffer overflow, bypass, information leakage, out of bounds write, and use-after-free vulnerabilities.
7c97a1d44e03cbe6956658d288db0cd7a556ba1523e497884d0f0ebdfa34f117
Gentoo Linux Security Advisory 202008-5 - A buffer overflow in gThumb might allow remote attacker(s) to execute arbitrary code. Versions less than 3.10.0 are affected.
baf9b9fdfc087d792c18f2abcd45820dff1ca1265219556ebee7f53eedfc61d3
Gentoo Linux Security Advisory 202008-6 - A use-after-free was found in iproute2, possibly allowing a Denial of Service condition. Versions less than 5.1.0 are affected.
444a402eb0eea56a0efbe159b02b3f82a1b66b56a5a4cf1a74e978921d3ce2d9
Gentoo Linux Security Advisory 202008-4 - Multiple vulnerabilities have been found in Apache, the worst of which could result in the arbitrary execution of code. Versions less than 2.4.46 are affected.
f25ca354f03759bc2fecf8bdadfd483603e62658174fc6f7b80b99e8e8ebca71