what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 10 of 10 RSS Feed

Files Date: 2014-03-21

Ubuntu Security Notice USN-2151-1
Posted Mar 21, 2014
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2151-1 - Benoit Jacob, Olli Pettay, Jan Varga, Jan de Mooij, Jesse Ruderman, Dan Gohman and Christoph Diehl discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message with scripting enabled, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Thunderbird. Atte Kettunen discovered an out-of-bounds read during WAV file decoding. If a user had enabled audio, an attacker could potentially exploit this to cause a denial of service via application crash. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2014-1493, CVE-2014-1497, CVE-2014-1505, CVE-2014-1508, CVE-2014-1509, CVE-2014-1510, CVE-2014-1511, CVE-2014-1512, CVE-2014-1513, CVE-2014-1514
SHA-256 | b9c5d05796f3964f78637e76f8a8bd653489461cb18c7c6f49a37f26b22188a3
Nessus 5.2.1 Local Privilege Escalation
Posted Mar 21, 2014
Authored by Neil Jones | Site nccgroup.com

An authenticated Nessus scan of a target machine may result in local privilege escalation on that target machine if scanned with the Malicious Process Detection plugin (Plugin ID 59275). The Malicious Process Detection plugin created a service which ran as SYSTEM however this binary could be modified by a low level user allowing for privilege escalation. Nessus appliance engine version 5.2.1 the plugin set 201402092115 is affected.

tags | advisory, local
SHA-256 | 8648f4d711efe44b31bdee0acb14cb37b88fd4f1a78ae2f87ff9765acf082452
STAR57 6.20.090330 Remote Command Execution
Posted Mar 21, 2014
Authored by Felipe Andrian Peixoto

STAR57 version 6.20.090330 suffers from a remote command execution vulnerability.

tags | exploit, remote
SHA-256 | 433eba217ae3e6257289bddd815eaf98f552a7c8d6d092e667f2d8aa0c9d3f23
innoEDIT 6.2 Remote Command Execution
Posted Mar 21, 2014
Authored by Felipe Andrian Peixoto

innoEDIT version 6.2 suffers from a remote command execution vulnerability.

tags | exploit, remote
SHA-256 | a84ae0a9198c45f8c61093d04e2ace4490cd15507d7a8f10f9f4446e77bcd88e
Lynis Auditing Tool 1.4.7
Posted Mar 21, 2014
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: This released adds a new group property for the report. Additionally, it has two new AIDE configuration tests, adds grep to the list of binaries, and shows a suggestion when using NIS/NIS+.
tags | tool, scanner
systems | unix
SHA-256 | 634569923deb4852e20d6122ff4c30d976bb45da41677eac0dcd3125c233ef4d
An Address To The Secret Society Of PoC || GTFO
Posted Mar 21, 2014
Authored by pocgtfo

This is the fourth issue of PoC || GTFO.

tags | magazine
SHA-256 | 7094f5c6a3936e0d0b8f5e42b4d1940413f568e9a3617be0d7d6dc73cb3420e1
Children's Bible Coloring Book Of PoC || GTFO Issue 0x02
Posted Mar 21, 2014
Authored by pocgtfo

This is the third issue of PoC || GTFO.

tags | magazine
SHA-256 | f427e8d95c0ac15abe61d96fb75cfb55df1fd5ac9e713cf968f3602267ca155e
Proceeding Of The Society Of PoC || GTFO Issue 0x01
Posted Mar 21, 2014
Authored by pocgtfo

This is the second issue of PoC || GTFO.

tags | magazine
SHA-256 | a0f93a265d38257a06fd7fd210f73ea9c55a94ac1305c65c0510ada236c2cc88
International Journal Of PoC || GTFO Issue 0x00
Posted Mar 21, 2014
Authored by pocgtfo

This is the first issue of the International Journal of PoC || GTFO.

tags | magazine
SHA-256 | c4d1d1091187b98a9bb28452bc6564a1e8c0ce10d20ba2b4a20f8b7798f7ab64
SkypeFreak Forensic Tool
Posted Mar 21, 2014
Authored by Osanda Malith

This tool can be used to enumerate Skype users profiles, contacts, messages, and calls from the main.db file. This is automated easy to use application in which to perform forensic spelunking of Skype data.

tags | tool, forensics
SHA-256 | c5eb5f2d1fcead4e96207e4b85959a611b231d00883e83e72cbcb504f8e2d96d
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close