Plantronics HUB versions 3.21 and below are affected by a privilege escalation vulnerability allowing any local unprivileged user to acquire elevated access rights and take full control of the system.
0a0d514bc21c085cf9e640ba4c34a7d7923f5353e8e1fcd3aceb4c3803713a71Red Hat Security Advisory 2021-1258-01 - 389 Directory Server is an LDAP version 3 compliant server. The base packages include the Lightweight Directory Access Protocol server and command-line utilities for server administration. Issues addressed include an information leakage vulnerability.
a51b3bc8d45292bb8860c6b3deb4fb6621f64b993c94fbb86d670bb82cd37702Red Hat Security Advisory 2021-1246-01 - The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Nettle is a cryptographic library that is designed to fit easily in almost any context: In crypto toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like LSH or GNUPG, or even in kernel space.
a6ed120c427bdf965416633946bf2c8c87af6e47ae6eeb335fa638330e7de30bRed Hat Security Advisory 2021-1245-01 - The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Nettle is a cryptographic library that is designed to fit easily in almost any context: In crypto toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like LSH or GNUPG, or even in kernel space.
03ae9d4d6c692462185f91ccac59efd11a557f501eca9ed834b624631545538dTrojan.Win32.Agent.hsm malware suffers from an insecure permissions vulnerability.
ffccfe6f1b156fb84d9539bb329f4f5739fa1cc457862971094dbfa69fd714cfThis Metasploit module exploits CVE-2020-5791, an OS command injection vulnerability on Nagios XI versions 5.6.0 through 5.7.3 in admin/mibs.php that enables an authenticated user with admin privileges to achieve remote code execution as either the apache user or the www-data user.
5f3ec659fe836f33c81a4956f9541aeece789fd3ec657e3f2f83dc70252319dcThis is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
c3e6e4da1621762c850d03b47eed1e48dff4cc9608ddeb547202a234df8ed7aeFaraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.
c7c8fcb87b1c35b994d1352604fd69ed0e74f60f0cc8a5aade6f9c8620df536cxscreensaver suffers from a raw socket leak vulnerability. Proof of concept exploit demonstrates running tcpdump via this issue.
a74cc45ea68b70f270c15c99358f40c1fcb59221f47186a18d8ffa318f810cf8Red Hat Security Advisory 2021-1240-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Issues addressed include a code execution vulnerability.
82e7534d6b138ea0551ad8c3ad4d919c56251c5f1ca106cd3650fcee74f1f47bWordPress Photo Gallery plugin versions 1.5.69 and below suffer from multiple reflective cross site scripting vulnerabilities.
f5cee129a211aee4e8107180c84597f0d60b54808dacf0f7a05afefadeaa5233Red Hat Security Advisory 2021-1239-01 - The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space.
fab2e016e0ffa5f5cbc50bba638ba3ffb984d3563ec8c19ebb3161c6f81e34f8Red Hat Security Advisory 2021-1242-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Issues addressed include a code execution vulnerability.
d7758dc8e3d783be1c8a7b39f80d225a7e19cd967a4f8a7c8dbaefe86a828040Trojan.Win32.Bayrob.dtrg malware suffers from an insecure permissions vulnerability.
dabe627666ca86b8d7571732e12647d26bad74e576d1467c5dcd8b60f172e194Red Hat Security Advisory 2021-1241-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. Issues addressed include a code execution vulnerability.
e7584d96f209dd1531f6b98ad0418f21987ed917bece65ebc83484c614ccdc0dRed Hat Security Advisory 2021-1243-01 - Red Hat Directory Server is an LDAPv3-compliant directory server. The suite of packages includes the Lightweight Directory Access Protocol server, as well as command-line utilities and Web UI packages for server administration. Issues addressed include an information leakage vulnerability.
511df68d053268aa50d01f9dbad45911210355b2ec8e36feab357cde6c591affTrojan-Dropper.Win32.Agent.bjtzcp malware suffers from an insecure permissions vulnerability.
3ceab877bd430e06597715e1613fc4aefc064af608cf9e9de23f7025a83c0321Trojan.Win32.NanoBot.onh malware suffers from an insecure permissions vulnerability.
70d8baa84c4d05aedd47d8415b8528f966a394bec9fe2cdfaff96fa4262f019cTrojan.Win32.Agentb.iofv malware suffers from an insecure permissions vulnerability.
43b802437fe917ed1f8fa0605fd1b2d5b4ddc045edc16ca6cb7e37004b78dd70
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed