Red Hat Security Advisory 2020-0515-01 - KornShell is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard. A code injection vulnerability has been addressed.
f0227d20c5796614746307fea644d248Whitepaper called Web Application Firewall Bypass via Bluecoat Device.
8188e75fa2146b581bd080778464328cRed Hat Security Advisory 2020-0512-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.5.0 ESR.
7bc206f7897d80d394bdd7a66de4a510Microsoft Windows 10 suffers from an MSI package symbolic link processing privilege escalation vulnerability.
01308f650ad12ded84c934561c16173cRed Hat Security Advisory 2020-0514-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 80.0.3987.87. Issues addressed include information leakage, null pointer, and out of bounds write vulnerabilities.
674d9ff97b1fed31431ddce21fa5117eAvaya Aura Communication Manager version 5.2 remote code execution exploit.
ea2996a2c2cc319474541ffba3ebaa1dRed Hat Security Advisory 2020-0513-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update upgrades Flash Player to version 32.0.0.330. Issues addressed include a code execution vulnerability.
1153d0b2471a214029968bab6fb67f6eWordPress Strong Testimonials plugin version 2.40.1 suffers from a persistent cross site scripting vulnerability.
a289901950eb0957ccbad03ca05b7823FTPShell Server version 6.85 add account buffer overflow exploit.
97c2d7a5b9d9ca5921f9cfd923fcd4a4Easy File Sharing Web Server version 7.2 POST Email unauthenticated remote buffer overflow exploit.
5687d495efb38e1b287888d190b243abSlackware Security Advisory - New libarchive packages are available for Slackware 14.1, 14.2, and -current to fix security issues.
13798e11d6d2736c9b716a4eacc6b1adDebian Linux Security Advisory 4621-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, resulting in denial of service, incorrect implementation of Kerberos GSSAPI and TGS requests or incorrect TLS handshakes.
d8f6fe82a3da5926a5bf6c7c66327ba9Debian Linux Security Advisory 4620-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.
d9a2df00a62678f88476cd4b590a48f2Cuckoo Clock version 5.0 suffers from a buffer overflow vulnerability.
3d62228e122b5d1549d4b1b911bd017cTFTP Turbo version 4.6.1273 suffers from an unquoted service path vulnerability.
2a97a21b6458e0bab69dc678bb3975cfDHCP Turbo version 4.61298 suffers from an unquoted service path vulnerability.
e97056a4ea71aa8297958efabadc837cBOOTP Turbo version 2.0.1214 suffers from an unquoted service path vulnerability.
3118dbfa9a699c44f6ba29f1dbe4fe0aWebKitGTK+ and WPE WebKit suffer from denial of service, logic, and code execution vulnerabilities. Versions affected include WebKitGTK before 2.26.4 and WPE WebKit before 2.26.4.
63296e037dbca3224fc4f826a24e45daVX Search Enterprise version 12.4.16 suffers from an unquoted service path vulnerability.
bad007ee33d3f73b00330e852cb7c1bcThe Kaspersky parsing engine supports the ZIP archive format. The parsing engine can be bypassed by specifically manipulating an ZIP Archive (File Name length Field) so that it can be accessed by an end-user but not the Anti-Virus software. The AV engine is unable to scan the container and gives the file a "clean" rating.
823c4edc758b7da4ee2da02a741a9952Easy Chat Server version 3.1 suffers from an unquoted service path vulnerability.
042bf934b7a24f04654a740edef44dd7Whitepaper called Collecting the Data from Volatile Memory in Digital Forensics.
1f11de719ced61b37f246d41edf92fcaDiskBoss Enterprise version 11.0.24 suffers from an unquoted service path vulnerability.
ec24873709c63823ffcfa18ae06310a3Ice HRM version 26.2.0 suffers from a cross site request forgery vulnerability.
c9c7de717b84a3e0b8c7d689a8e4bcb8Disk Pulse Enterprise version 12.4.18 suffers from an unquoted service path vulnerability.
7d6f87a21f3ae1844ad2c05be34dbdf5
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed