< Back to JetLib.com

jetlib.sec

« Expand/Collapse

Recent items

Skip to page: 1 2 3 4 ... 847

November 13, 2018
0:00
Vuln: Adobe Flash Player Out-Of-Bounds Read CVE-2018-15978 Information Disclosure Vulnerability
» ‎ SecurityFocus Vulnerabilities

Adobe Flash Player Out-Of-Bounds Read CVE-2018-15978 Information Disclosure Vulnerability
Tags:
0:00
Vuln: SAP Disclosure Management CVE-2018-2487 Arbitrary File Overwrite Vulnerability
» ‎ SecurityFocus Vulnerabilities

SAP Disclosure Management CVE-2018-2487 Arbitrary File Overwrite Vulnerability
Tags:
0:00
Vuln: Microsoft Team Foundation Server CVE-2018-8529 Remote Code Execution Vulnerability
» ‎ SecurityFocus Vulnerabilities

Microsoft Team Foundation Server CVE-2018-8529 Remote Code Execution Vulnerability
Tags:
0:00
Vuln: SAP Fiori Client CVE-2018-2485 Multiple Unspecified Security Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

SAP Fiori Client CVE-2018-2485 Multiple Unspecified Security Vulnerabilities
Tags:
0:00
Vuln: TIBCO DataSynapse GridServer Manager CVE-2018-12416 Cross Site Request Forgery Vulnerability
» ‎ SecurityFocus Vulnerabilities

TIBCO DataSynapse GridServer Manager CVE-2018-12416 Cross Site Request Forgery Vulnerability
Tags:

November 12, 2018
22:00
Advent Calendar Tracks The Days Until Christmas
» ‎ Hack a Day

What’s a hacker to do when Halloween’s over and a new source of ideas is needed for more hacks? Make something for Christmas of course. That’s what [Dario Breitenstein] did when he made his Advent calendar both as a decoration and to help instill some Christmas spirit.

Designed in SketchUp, it’s a WS2812 LED strip mounted in a clean looking walnut enclosure. The light diffuses through 3D-printed PETG lids with vinyl over them to outline the days. Naturally, it had to be Internet-connected and so an ESP8266 based WEMOS D1 mini board fetches the date and time from an NTP …read more

Tags: clock hacks

20:44
XAMPP Control Panel 3.2.2 Buffer Overflow
» ‎ Packet Storm Security Exploits

XAMPP Control Panel version 3.2.2 SEH unicode buffer overflow exploit.
Tags:

20:44
XAMPP Control Panel 3.2.2 Buffer Overflow
» ‎ Packet Storm Security Recent Files

XAMPP Control Panel version 3.2.2 SEH unicode buffer overflow exploit.
Tags:

20:44
XAMPP Control Panel 3.2.2 Buffer Overflow
» ‎ Packet Storm Security Misc. Files

XAMPP Control Panel version 3.2.2 SEH unicode buffer overflow exploit.
Tags:

19:15
Cisco Prime Infrastructure Unauthenticated Remote Code Execution
» ‎ Packet Storm Security Exploits

Cisco Prime Infrastructure (CPI) contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege escalation to root by bypassing execution restrictions in a SUID binary. This Metasploit module exploits these vulnerabilities to achieve unauthenticated remote code execution as root on the CPI default installation. This Metasploit module has been tested with CPI 3.2.0.0.258 and 3.4.0.0.348. Earlier and later versions might also be affected, although 3.4.0.0.348 is the latest at the time of writing. The file upload vulnerability should have been fixed in versions 3.4.1 and 3.3.1 Update 02.
Tags:

19:15
Cisco Prime Infrastructure Unauthenticated Remote Code Execution
» ‎ Packet Storm Security Recent Files

Cisco Prime Infrastructure (CPI) contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege escalation to root by bypassing execution restrictions in a SUID binary. This Metasploit module exploits these vulnerabilities to achieve unauthenticated remote code execution as root on the CPI default installation. This Metasploit module has been tested with CPI 3.2.0.0.258 and 3.4.0.0.348. Earlier and later versions might also be affected, although 3.4.0.0.348 is the latest at the time of writing. The file upload vulnerability should have been fixed in versions 3.4.1 and 3.3.1 Update 02.
Tags:

19:15
Cisco Prime Infrastructure Unauthenticated Remote Code Execution
» ‎ Packet Storm Security Misc. Files

Cisco Prime Infrastructure (CPI) contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege escalation to root by bypassing execution restrictions in a SUID binary. This Metasploit module exploits these vulnerabilities to achieve unauthenticated remote code execution as root on the CPI default installation. This Metasploit module has been tested with CPI 3.2.0.0.258 and 3.4.0.0.348. Earlier and later versions might also be affected, although 3.4.0.0.348 is the latest at the time of writing. The file upload vulnerability should have been fixed in versions 3.4.1 and 3.3.1 Update 02.
Tags:

19:06
Ubuntu Security Notice USN-3816-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 3816-1 - Jann Horn discovered that unit_deserialize incorrectly handled status messages above a certain length. A local attacker could potentially exploit this via NotifyAccess to inject arbitrary state across re-execution and obtain root privileges. Jann Horn discovered a race condition in chown_one. A local attacker could potentially exploit this by setting arbitrary permissions on certain files to obtain root privileges. This issue only affected Ubuntu 18.04 LTS and Ubuntu 18.10. Various other issues were also addressed.
Tags:

19:06
Ubuntu Security Notice USN-3816-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 3816-1 - Jann Horn discovered that unit_deserialize incorrectly handled status messages above a certain length. A local attacker could potentially exploit this via NotifyAccess to inject arbitrary state across re-execution and obtain root privileges. Jann Horn discovered a race condition in chown_one. A local attacker could potentially exploit this by setting arbitrary permissions on certain files to obtain root privileges. This issue only affected Ubuntu 18.04 LTS and Ubuntu 18.10. Various other issues were also addressed.
Tags:

19:06
Ubuntu Security Notice USN-3816-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 3816-1 - Jann Horn discovered that unit_deserialize incorrectly handled status messages above a certain length. A local attacker could potentially exploit this via NotifyAccess to inject arbitrary state across re-execution and obtain root privileges. Jann Horn discovered a race condition in chown_one. A local attacker could potentially exploit this by setting arbitrary permissions on certain files to obtain root privileges. This issue only affected Ubuntu 18.04 LTS and Ubuntu 18.10. Various other issues were also addressed.
Tags:

19:05
Android RSSI Broadcast Information Disclosure
» ‎ Packet Storm Security Exploits

Android OS suffers from a sensitive data exposure vulnerability in its RSSI broadcasts.
Tags:

19:05
Android RSSI Broadcast Information Disclosure
» ‎ Packet Storm Security Recent Files

Android OS suffers from a sensitive data exposure vulnerability in its RSSI broadcasts.
Tags:

19:05
Android RSSI Broadcast Information Disclosure
» ‎ Packet Storm Security Misc. Files

Android OS suffers from a sensitive data exposure vulnerability in its RSSI broadcasts.
Tags:

19:02
Android 5.0 Battery Information Broadcast Information Disclosure
» ‎ Packet Storm Security Exploits

Android OS version 5.0 suffers from a sensitive data exposure vulnerability in its battery information broadcasts.
Tags:

19:02
Android 5.0 Battery Information Broadcast Information Disclosure
» ‎ Packet Storm Security Recent Files

Android OS version 5.0 suffers from a sensitive data exposure vulnerability in its battery information broadcasts.
Tags:

19:02
Android 5.0 Battery Information Broadcast Information Disclosure
» ‎ Packet Storm Security Misc. Files

Android OS version 5.0 suffers from a sensitive data exposure vulnerability in its battery information broadcasts.
Tags:

19:00
Hacked Heating Instruments for the DIY Biology Lab
» ‎ Hack a Day

[Justin] from The Thought Emporium takes on a common molecular biology problem with these homebrew heating instruments for the DIY biology lab.

The action at the molecular biology bench boils down to a few simple tasks: suck stuff, spit stuff, cool stuff, and heat stuff. Pipettes take care of the sucking and spitting, while ice buckets and refrigerators do the cooling. The heating, however, can be problematic; vessels of various sizes need to be accommodated at different, carefully controlled temperatures. It’s not uncommon to see dozens of different incubators, heat blocks, heat plates, and even walk-in environmental chambers in the …read more

Tags: chemistry hacks
16:00
Arduino Provides Hands-Free Focus for Digital Inspection Scope
» ‎ Hack a Day

With surface-mount technology pushing the size of components ever smaller, even the most eagle-eyed among us needs some kind of optical assistance to do PCB work. Lots of microscopes have digital cameras too, which can be a big help – unless the camera fights you.

Faced with a camera whose idea of autofocus targets on didn’t quite coincide with his, [Scott M. Baker] took matters into his own hands – foot, actually – by replacing mouse inputs to the camera with an outboard controller. His particular camera’s autofocus can be turned off, but only via mouse clicks on the camera’s …read more

Tags: tool hacks

16:00
[shellcode] Linux/x86 - execve /bin/nc -lp 99999 -e /bin/bash Shellcode (58 bytes)
» ‎ Exploit-DB

Linux/x86 - Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode (58 bytes)
Tags:
16:00
[webapps] Alienor Web Libre 2.0 - SQL Injection
» ‎ Exploit-DB

Alienor Web Libre 2.0 - SQL Injection
Tags:
16:00
[webapps] Surreal ToDo 0.6.1.2 - Local File Inclusion
» ‎ Exploit-DB

Surreal ToDo 0.6.1.2 - Local File Inclusion
Tags:
16:00
[webapps] Surreal ToDo 0.6.1.2 - SQL Injection
» ‎ Exploit-DB

Surreal ToDo 0.6.1.2 - SQL Injection
Tags:
16:00
[dos] Evince 3.24.0 - Command Injection
» ‎ Exploit-DB

Evince 3.24.0 - Command Injection
Tags:
16:00
[dos] CuteFTP Mac 3.1 - Denial of Service (PoC)
» ‎ Exploit-DB

CuteFTP Mac 3.1 - Denial of Service (PoC)
Tags:
16:00
[webapps] CentOS Web Panel 0.9.8.740 - Cross-Site Request Forgery / Cross-Site Scripting
» ‎ Exploit-DB

CentOS Web Panel 0.9.8.740 - Cross-Site Request Forgery / Cross-Site Scripting
Tags:
16:00
[webapps] Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin)
» ‎ Exploit-DB

Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin)
Tags:
16:00
[webapps] Musicco 2.0.0 - Arbitrary Directory Download
» ‎ Exploit-DB

Musicco 2.0.0 - Arbitrary Directory Download
Tags:
16:00
[dos] Cisco Immunet < 6.2.0 / Cisco AMP For Endpoints 6.2.0 - Denial of Service
» ‎ Exploit-DB

Cisco Immunet
Tags:
16:00
[local] XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode)
» ‎ Exploit-DB

XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode)
Tags:
16:00
[webapps] Tina4 Stack 1.0.3 - Cross-Site Request Forgery (Update Admin)
» ‎ Exploit-DB

Tina4 Stack 1.0.3 - Cross-Site Request Forgery (Update Admin)
Tags:
16:00
[webapps] Tina4 Stack 1.0.3 - SQL Injection / Database File Download
» ‎ Exploit-DB

Tina4 Stack 1.0.3 - SQL Injection / Database File Download
Tags:
16:00
[local] xorg-x11-server < 1.20.1 - Local Privilege Escalation
» ‎ Exploit-DB

xorg-x11-server
Tags:
16:00
[webapps] Easyndexer 1.0 - Arbitrary File Download
» ‎ Exploit-DB

Easyndexer 1.0 - Arbitrary File Download
Tags:
16:00
[webapps] Gumbo CMS 0.99 - SQL Injection
» ‎ Exploit-DB

Gumbo CMS 0.99 - SQL Injection
Tags:
16:00
[webapps] ABC ERP 0.6.4 - Cross-Site Request Forgery (Update Admin)
» ‎ Exploit-DB

ABC ERP 0.6.4 - Cross-Site Request Forgery (Update Admin)
Tags:
16:00
[webapps] Silurus Classifieds Script 2.0 - 'wcategory' SQL Injection
» ‎ Exploit-DB

Silurus Classifieds Script 2.0 - 'wcategory' SQL Injection
Tags:
16:00
[webapps] Alive Parish 2.0.4 - SQL Injection / Arbitrary File Upload
» ‎ Exploit-DB

Alive Parish 2.0.4 - SQL Injection / Arbitrary File Upload
Tags:
16:00
[webapps] ClipperCMS 1.3.3 - Cross-Site Request Forgery (File Upload)
» ‎ Exploit-DB

ClipperCMS 1.3.3 - Cross-Site Request Forgery (File Upload)
Tags:
16:00
[webapps] Webiness Inventory 2.3 - SQL Injection
» ‎ Exploit-DB

Webiness Inventory 2.3 - SQL Injection
Tags:
16:00
[webapps] Webiness Inventory 2.3 - Arbitrary File Upload / Cross-Site Request Forgery (Add Admin)
» ‎ Exploit-DB

Webiness Inventory 2.3 - Arbitrary File Upload / Cross-Site Request Forgery (Add Admin)
Tags:
16:00
[webapps] Maitra Mail Tracking System 1.7.2 - SQL Injection / Database File Download
» ‎ Exploit-DB

Maitra Mail Tracking System 1.7.2 - SQL Injection / Database File Download
Tags:
16:00
[webapps] SIPve 0.0.2-R19 - SQL Injection
» ‎ Exploit-DB

SIPve 0.0.2-R19 - SQL Injection
Tags:

13:00
Fail of the Week: Leaf Blowers Can’t Fly
» ‎ Hack a Day

Leaf blowers, the main instrument of the suburban Saturday symphony, are one of the most useful nuisances. It doesn’t take much work with a rake to convince even the most noise-averse homeowner to head to the Big Box Store to pick one up to speed lawn chores. Once you do buy one, and feel the thrust produced by these handheld banshees, you might wonder, If I let go of this thing, would it fly?

[Peter Sripol] had that very thought and set about building a couple of leaf blower powered planes to answer the question. It’s probably not a spoiler …read more

Tags: drone hacks
11:30
Lego Tardis Spins Through the Void
» ‎ Hack a Day

Using LEGO Technic gears and rods seems like a great way of bringing animation to your regular LEGO creation. Using gears and crank shafts you can animate models from your favorite TV show or movie like LEGO kinetic sculpture maker, [Josh DaVid] has done when he created a spinning TARDIS. Crank the handle and the sculpture spins through space and time.

The large gear stays in place. The hidden gears, turned by the crank, rotate a shaft from below that goes through the large gear making the TARDIS rotate around the main axis. Connected to the TARDIS model is a …read more

Tags: toy hacks
10:01
Sprite_TM’s Magic Paintbrush
» ‎ Hack a Day

When it comes to hackers we love, there’s no better example than Jeroen Domburg, a.k.a. Sprite_TM. Sprite’s now working for Espressif, makers of the fantastic ESP8266 and ESP32, where he created a miniature Game Boy and turned this PocketSprite into a real product. He’s installed Linux on a hard drive, and created a Matrix of virtualized Tamagotchis. In short, if you’re looking for someone who’s building the coolest, most technical thing of sometimes questionable utility, you need look no further than Sprite_tm.

Sprite was back at this year’s Superconference, and again he’s bringing out the big guns with awesome hardware …read more

Tags: art

9:54
#0daytoday #Nominas 0.27 - username SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Nominas 0.27 - username SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:54
#0daytoday #ServerZilla 1.0 - email SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #ServerZilla 1.0 - email SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:54
#0daytoday #GPS Tracking System 2.12 - username SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #GPS Tracking System 2.12 - username SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:54
#0daytoday #Facturation System 1.0 - modid SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Facturation System 1.0 - modid SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:54
#0daytoday #The Don 1.0.1 - login SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #The Don 1.0.1 - login SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:54
#0daytoday #Paroiciel 11.20 - tRecIdListe SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Paroiciel 11.20 - tRecIdListe SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:54
#0daytoday #Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin) Vulnerability [#0day #Exploit]
Tags:
9:42
#0daytoday #Vignette Content Management 6 Security Bypass Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Vignette Content Management 6 Security Bypass Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:41
#0daytoday #Advanced Comment System 1.0 SQL Injection Vulnerability CVE-2018-18619 [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Advanced Comment System 1.0 SQL Injection Vulnerability CVE-2018-18619 [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:38
#0daytoday #Netscape Enterprise 3.63 Cross Site Scripting Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Netscape Enterprise 3.63 Cross Site Scripting Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
9:31
#0daytoday #Mongoose Web Server 6.9 - Denial of Service Exploit [dos #exploits #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Mongoose Web Server 6.9 - Denial of Service Exploit [dos #exploits #0day #Exploit]
Tags:
9:31
#0daytoday #CuteFTP 9.3.0.3 - Denial of Service Exploit [dos #exploits #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #CuteFTP 9.3.0.3 - Denial of Service Exploit [dos #exploits #0day #Exploit]
Tags:

9:26
TufinOS 2.1.7 Build 1193 XML Injection
» ‎ Packet Storm Security Exploits

TufinOS version 2.1.7 build 1193 suffers from an XML external entity injection vulnerability.
Tags:

9:26
TufinOS 2.1.7 Build 1193 XML Injection
» ‎ Packet Storm Security Recent Files

TufinOS version 2.1.7 build 1193 suffers from an XML external entity injection vulnerability.
Tags:

9:26
TufinOS 2.1.7 Build 1193 XML Injection
» ‎ Packet Storm Security Misc. Files

TufinOS version 2.1.7 build 1193 suffers from an XML external entity injection vulnerability.
Tags:

9:21
The Don 1.0.1 SQL Injection
» ‎ Packet Storm Security Exploits

The Don version 1.0.1 suffers from a remote SQL injection vulnerability.
Tags:

9:21
The Don 1.0.1 SQL Injection
» ‎ Packet Storm Security Recent Files

The Don version 1.0.1 suffers from a remote SQL injection vulnerability.
Tags:

9:21
The Don 1.0.1 SQL Injection
» ‎ Packet Storm Security Misc. Files

The Don version 1.0.1 suffers from a remote SQL injection vulnerability.
Tags:

9:19
Mongoose Web Server 6.9 Denial Of Service
» ‎ Packet Storm Security Exploits

Mongoose Web Server version 6.9 suffers from a denial of service vulnerability.
Tags:

9:19
Mongoose Web Server 6.9 Denial Of Service
» ‎ Packet Storm Security Recent Files

Mongoose Web Server version 6.9 suffers from a denial of service vulnerability.
Tags:

9:19
Mongoose Web Server 6.9 Denial Of Service
» ‎ Packet Storm Security Misc. Files

Mongoose Web Server version 6.9 suffers from a denial of service vulnerability.
Tags:

9:18
Nominas 0.27 SQL Injection
» ‎ Packet Storm Security Exploits

Nominas version 0.27 suffers from a remote SQL injection vulnerability.
Tags:

9:18
Nominas 0.27 SQL Injection
» ‎ Packet Storm Security Recent Files

Nominas version 0.27 suffers from a remote SQL injection vulnerability.
Tags:

9:18
Nominas 0.27 SQL Injection
» ‎ Packet Storm Security Misc. Files

Nominas version 0.27 suffers from a remote SQL injection vulnerability.
Tags:

9:18
ServerZilla 1.0 SQL Injection
» ‎ Packet Storm Security Exploits

ServerZilla version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

9:18
ServerZilla 1.0 SQL Injection
» ‎ Packet Storm Security Recent Files

ServerZilla version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

9:18
ServerZilla 1.0 SQL Injection
» ‎ Packet Storm Security Misc. Files

ServerZilla version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

9:17
GPS Tracking System 2.12 SQL Injection
» ‎ Packet Storm Security Exploits

GPS Tracking System version 2.12 suffers from a remote SQL injection vulnerability.
Tags:

9:17
GPS Tracking System 2.12 SQL Injection
» ‎ Packet Storm Security Recent Files

GPS Tracking System version 2.12 suffers from a remote SQL injection vulnerability.
Tags:

9:17
GPS Tracking System 2.12 SQL Injection
» ‎ Packet Storm Security Misc. Files

GPS Tracking System version 2.12 suffers from a remote SQL injection vulnerability.
Tags:

9:16
Easyndexer 1.0 Cross Site Request Forgery
» ‎ Packet Storm Security Exploits

Easyndexer version 1.0 suffers from a cross site request forgery vulnerability.
Tags:

9:16
Easyndexer 1.0 Cross Site Request Forgery
» ‎ Packet Storm Security Recent Files

Easyndexer version 1.0 suffers from a cross site request forgery vulnerability.
Tags:

9:16
Easyndexer 1.0 Cross Site Request Forgery
» ‎ Packet Storm Security Misc. Files

Easyndexer version 1.0 suffers from a cross site request forgery vulnerability.
Tags:

9:16
Facturation System 1.0 SQL Injection
» ‎ Packet Storm Security Exploits

Facturation System version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

9:16
Facturation System 1.0 SQL Injection
» ‎ Packet Storm Security Recent Files

Facturation System version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

9:16
Facturation System 1.0 SQL Injection
» ‎ Packet Storm Security Misc. Files

Facturation System version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

9:15
Paroiciel 11.20 SQL Injection
» ‎ Packet Storm Security Exploits

Paroiciel version 11.20 suffers from a remote SQL injection vulnerability.
Tags:

9:15
Paroiciel 11.20 SQL Injection
» ‎ Packet Storm Security Recent Files

Paroiciel version 11.20 suffers from a remote SQL injection vulnerability.
Tags:

9:15
Paroiciel 11.20 SQL Injection
» ‎ Packet Storm Security Misc. Files

Paroiciel version 11.20 suffers from a remote SQL injection vulnerability.
Tags:

9:14
Data Center Audit 2.6.2 SQL Injection
» ‎ Packet Storm Security Exploits

Data Center Audit version 2.6.2 suffers from a remote SQL injection vulnerability.
Tags:

9:14
Data Center Audit 2.6.2 SQL Injection
» ‎ Packet Storm Security Recent Files

Data Center Audit version 2.6.2 suffers from a remote SQL injection vulnerability.
Tags:

9:14
Data Center Audit 2.6.2 SQL Injection
» ‎ Packet Storm Security Misc. Files

Data Center Audit version 2.6.2 suffers from a remote SQL injection vulnerability.
Tags:

9:13
#0daytoday #TP-Link Archer C50 Wireless Router 171227 - CSRF (Configuration File Disclosure) Vulner [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #TP-Link Archer C50 Wireless Router 171227 - CSRF (Configuration File Disclosure) Vulner [#0day #Exploit]
Tags:

9:11
RSA BSAFE Micro Edition Suite Key Management Error
» ‎ Packet Storm Security Advisories

RSA BSAFE Micro Edition Suite contains a fix for a key management error that could potentially be exploited by malicious users to compromise the affected system. RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and RSA BSAFE Micro Edition Suite versions prior to 4.1.6.2 (in 4.1.x series) are affected.
Tags:

9:11
RSA BSAFE Micro Edition Suite Key Management Error
» ‎ Packet Storm Security Recent Files

RSA BSAFE Micro Edition Suite contains a fix for a key management error that could potentially be exploited by malicious users to compromise the affected system. RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and RSA BSAFE Micro Edition Suite versions prior to 4.1.6.2 (in 4.1.x series) are affected.
Tags:

9:11
RSA BSAFE Micro Edition Suite Key Management Error
» ‎ Packet Storm Security Misc. Files

RSA BSAFE Micro Edition Suite contains a fix for a key management error that could potentially be exploited by malicious users to compromise the affected system. RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and RSA BSAFE Micro Edition Suite versions prior to 4.1.6.2 (in 4.1.x series) are affected.
Tags:

9:10
WordPress PeepSo 1.11.2 Cross Site Scripting
» ‎ Packet Storm Security Exploits

WordPress PeepSo plugin version 1.11.2 suffers from a cross site scripting vulnerability.
Tags:

9:10
WordPress PeepSo 1.11.2 Cross Site Scripting
» ‎ Packet Storm Security Recent Files

WordPress PeepSo plugin version 1.11.2 suffers from a cross site scripting vulnerability.
Tags:

9:10
WordPress PeepSo 1.11.2 Cross Site Scripting
» ‎ Packet Storm Security Misc. Files

WordPress PeepSo plugin version 1.11.2 suffers from a cross site scripting vulnerability.
Tags:

9:09
WordPress PeepSo 1.11.2 SQL Injection
» ‎ Packet Storm Security Exploits

WordPress PeepSo plugin version 1.11.2 suffers from a remote time-based SQL injection vulnerability.
Tags:

9:09
WordPress PeepSo 1.11.2 SQL Injection
» ‎ Packet Storm Security Recent Files

WordPress PeepSo plugin version 1.11.2 suffers from a remote time-based SQL injection vulnerability.
Tags:

9:09
WordPress PeepSo 1.11.2 SQL Injection
» ‎ Packet Storm Security Misc. Files

WordPress PeepSo plugin version 1.11.2 suffers from a remote time-based SQL injection vulnerability.
Tags:

9:07
WordPress WP User Manager 2.0.8 SQL Injection
» ‎ Packet Storm Security Exploits

WordPress WP User Manager plugin version 2.0.8 suffers from a remote time-based SQL injection vulnerability.
Tags:

9:07
WordPress WP User Manager 2.0.8 SQL Injection
» ‎ Packet Storm Security Recent Files

WordPress WP User Manager plugin version 2.0.8 suffers from a remote time-based SQL injection vulnerability.
Tags:

9:07
WordPress WP User Manager 2.0.8 SQL Injection
» ‎ Packet Storm Security Misc. Files

WordPress WP User Manager plugin version 2.0.8 suffers from a remote time-based SQL injection vulnerability.
Tags:

9:05
Dell EMC RecoverPoint Information Disclosure / Resource Consumption
» ‎ Packet Storm Security Advisories

Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an information disclosure vulnerability. A malicious boxmgmt user may potentially be able to determine the existence of any system file via Boxmgmt CLI. Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an uncontrolled resource consumption vulnerability. A malicious boxmgmt user may potentially be able to consume large amount of CPU bandwidth to make the system slow or to determine the existence of any system file via Boxmgmt CLI.
Tags:

9:05
Dell EMC RecoverPoint Information Disclosure / Resource Consumption
» ‎ Packet Storm Security Recent Files

Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an information disclosure vulnerability. A malicious boxmgmt user may potentially be able to determine the existence of any system file via Boxmgmt CLI. Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an uncontrolled resource consumption vulnerability. A malicious boxmgmt user may potentially be able to consume large amount of CPU bandwidth to make the system slow or to determine the existence of any system file via Boxmgmt CLI.
Tags:

9:05
Dell EMC RecoverPoint Information Disclosure / Resource Consumption
» ‎ Packet Storm Security Misc. Files

Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an information disclosure vulnerability. A malicious boxmgmt user may potentially be able to determine the existence of any system file via Boxmgmt CLI. Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an uncontrolled resource consumption vulnerability. A malicious boxmgmt user may potentially be able to consume large amount of CPU bandwidth to make the system slow or to determine the existence of any system file via Boxmgmt CLI.
Tags:

9:03
Vignette Content Management 6 Security Bypass
» ‎ Packet Storm Security Exploits

Vignette Content Management version 6 suffers from a security bypass vulnerability.
Tags:

9:03
Vignette Content Management 6 Security Bypass
» ‎ Packet Storm Security Recent Files

Vignette Content Management version 6 suffers from a security bypass vulnerability.
Tags:

9:03
Vignette Content Management 6 Security Bypass
» ‎ Packet Storm Security Misc. Files

Vignette Content Management version 6 suffers from a security bypass vulnerability.
Tags:

9:02
Netscape Enterprise 3.63 Cross Site Scripting
» ‎ Packet Storm Security Exploits

Netscape Enterprise 3.63 suffers from a cross site scripting vulnerability in the default SnoopServlet servlet.
Tags:

9:02
Netscape Enterprise 3.63 Cross Site Scripting
» ‎ Packet Storm Security Recent Files

Netscape Enterprise 3.63 suffers from a cross site scripting vulnerability in the default SnoopServlet servlet.
Tags:

9:02
Netscape Enterprise 3.63 Cross Site Scripting
» ‎ Packet Storm Security Misc. Files

Netscape Enterprise 3.63 suffers from a cross site scripting vulnerability in the default SnoopServlet servlet.
Tags:

9:01
Advanced Comment System 1.0 SQL Injection
» ‎ Packet Storm Security Exploits

Advanced Comment System version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

9:01
Advanced Comment System 1.0 SQL Injection
» ‎ Packet Storm Security Recent Files

Advanced Comment System version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

9:01
Advanced Comment System 1.0 SQL Injection
» ‎ Packet Storm Security Misc. Files

Advanced Comment System version 1.0 suffers from a remote SQL injection vulnerability.
Tags:

8:59
Ubuntu Security Notice USN-3815-2
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 3815-2 - USN-3815-1 fixed a vulnerability in gettext. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that gettext incorrectly handled certain messages. An attacker could possibly use this issue to execute arbitrary code.
Tags:

8:59
Ubuntu Security Notice USN-3815-2
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 3815-2 - USN-3815-1 fixed a vulnerability in gettext. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that gettext incorrectly handled certain messages. An attacker could possibly use this issue to execute arbitrary code.
Tags:

8:59
Ubuntu Security Notice USN-3815-2
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 3815-2 - USN-3815-1 fixed a vulnerability in gettext. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that gettext incorrectly handled certain messages. An attacker could possibly use this issue to execute arbitrary code.
Tags:

8:58
Ubuntu Security Notice USN-3815-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 3815-1 - It was discovered that gettext incorrectly handled certain messages. An attacker could possibly use this issue to execute arbitrary code.
Tags:

8:58
Ubuntu Security Notice USN-3815-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 3815-1 - It was discovered that gettext incorrectly handled certain messages. An attacker could possibly use this issue to execute arbitrary code.
Tags:

8:58
Ubuntu Security Notice USN-3815-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 3815-1 - It was discovered that gettext incorrectly handled certain messages. An attacker could possibly use this issue to execute arbitrary code.
Tags:

8:58
Ubuntu Security Notice USN-3814-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 3814-1 - It was discovered libmspack incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service.
Tags:

8:58
Ubuntu Security Notice USN-3814-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 3814-1 - It was discovered libmspack incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service.
Tags:

8:58
Ubuntu Security Notice USN-3814-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 3814-1 - It was discovered libmspack incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service.
Tags:

8:58
Red Hat Security Advisory 2018-3541-01
» ‎ Packet Storm Security Advisories

Red Hat Security Advisory 2018-3541-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection. Issues addressed include a code execution vulnerability.
Tags:

8:58
Red Hat Security Advisory 2018-3541-01
» ‎ Packet Storm Security Recent Files

Red Hat Security Advisory 2018-3541-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection. Issues addressed include a code execution vulnerability.
Tags:

8:58
Red Hat Security Advisory 2018-3541-01
» ‎ Packet Storm Security Misc. Files

Red Hat Security Advisory 2018-3541-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection. Issues addressed include a code execution vulnerability.
Tags:

8:58
Debian Security Advisory 4338-1
» ‎ Packet Storm Security Advisories

Debian Linux Security Advisory 4338-1 - Integer overflows in the processing of packets in network cards emulated by QEMU, a fast processor emulator, could result in denial of service.
Tags:

8:58
Debian Security Advisory 4338-1
» ‎ Packet Storm Security Recent Files

Debian Linux Security Advisory 4338-1 - Integer overflows in the processing of packets in network cards emulated by QEMU, a fast processor emulator, could result in denial of service.
Tags:

8:58
Debian Security Advisory 4338-1
» ‎ Packet Storm Security Misc. Files

Debian Linux Security Advisory 4338-1 - Integer overflows in the processing of packets in network cards emulated by QEMU, a fast processor emulator, could result in denial of service.
Tags:

8:58
Debian Security Advisory 4337-1
» ‎ Packet Storm Security Advisories

Debian Linux Security Advisory 4337-1 - safety errors may lead to the execution of arbitrary code or denial of service.
Tags:

8:58
Debian Security Advisory 4337-1
» ‎ Packet Storm Security Recent Files

Debian Linux Security Advisory 4337-1 - safety errors may lead to the execution of arbitrary code or denial of service.
Tags:

8:58
Debian Security Advisory 4337-1
» ‎ Packet Storm Security Misc. Files

Debian Linux Security Advisory 4337-1 - safety errors may lead to the execution of arbitrary code or denial of service.
Tags:

8:58
Debian Security Advisory 4336-1
» ‎ Packet Storm Security Advisories

Debian Linux Security Advisory 4336-1 - Several vulnerabilities were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service, disclosure of existence and size of arbitrary files, or the execution of arbitrary code if a malformed Postscript file is processed (despite the dSAFER sandbox being enabled).
Tags:

8:58
Debian Security Advisory 4336-1
» ‎ Packet Storm Security Recent Files

Debian Linux Security Advisory 4336-1 - Several vulnerabilities were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service, disclosure of existence and size of arbitrary files, or the execution of arbitrary code if a malformed Postscript file is processed (despite the dSAFER sandbox being enabled).
Tags:

8:58
Debian Security Advisory 4336-1
» ‎ Packet Storm Security Misc. Files

Debian Linux Security Advisory 4336-1 - Several vulnerabilities were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service, disclosure of existence and size of arbitrary files, or the execution of arbitrary code if a malformed Postscript file is processed (despite the dSAFER sandbox being enabled).
Tags:

8:57
Debian Security Advisory 4335-1
» ‎ Packet Storm Security Advisories

Debian Linux Security Advisory 4335-1 - Three vulnerabilities were discovered in Nginx, a high-performance web and reverse proxy server, which could in denial of service in processing HTTP/2 (via excessive memory/CPU usage) or server memory disclosure in the ngx_http_mp4_module module (used for server-side MP4 streaming).
Tags:
8:57
Red Hat Security Advisory 2018-2709-01
» ‎ Packet Storm Security Advisories

Red Hat Security Advisory 2018-2709-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.10.66. Issues addressed include a crash.
Tags:
8:56
Gentoo Linux Security Advisory 201811-09
» ‎ Packet Storm Security Advisories

Gentoo Linux Security Advisory 201811-9 - A vulnerability in Icecast might allow remote attackers to execute arbitrary code. Versions less than 2.4.4 are affected.
Tags:

8:47
#0daytoday #WordPress WP User Manager 2.0.8 SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #WordPress WP User Manager 2.0.8 SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
8:47
#0daytoday #WordPress PeepSo 1.11.2 XSS / SQL Injection Vulnerabilities [webapps #exploits #Vulnerabilities #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #WordPress PeepSo 1.11.2 XSS / SQL Injection Vulnerabilities [webapps #exploits #Vulnerabilities #0day #Exploit]
Tags:

8:30
An Apollo Guidance Computer Laid Bare
» ‎ Hack a Day

An Apollo Guidance Computer probably isn’t a machine that’s likely to come the way of most Hackaday readers. The device that played such a vital role in taking astronauts to the Moon and bringing them home again is hardly a common find, even if it is one of the most iconic machines of its type and era.

[Carl Claunch] was approached to assist in the restoration of an AGC, and while he can’t reveal any information about its owner he is at liberty to document his progress. The result is a fascinating in-depth technical examination of the device over multiple …read more

Tags: classic hacks

7:50
The Motherboard Guide To Not Getting Hacked
» ‎ Packet Storm Security Headlines

The Motherboard Guide To Not Getting Hacked
Tags:
7:50
Irony Meter Explodes As WordPress GDPR Plugin Used To Takeover Sites
» ‎ Packet Storm Security Headlines

Irony Meter Explodes As WordPress GDPR Plugin Used To Takeover Sites
Tags: headlinehackergovernmentdata lossflawwordpress
7:50
Steam Bug Allowed Unlimited Free Downloads
» ‎ Packet Storm Security Headlines

Steam Bug Allowed Unlimited Free Downloads
Tags: headlinehackerflaw
7:50
Hacking Team Hacker Phineas Fisher Has Gotten Away With It
» ‎ Packet Storm Security Headlines

Hacking Team Hacker Phineas Fisher Has Gotten Away With It
Tags: headlinehackerprivacydata lossitaly

7:01
Hello, And Please Don’t Hang Up: The Scourge of Robocalls
» ‎ Hack a Day

Over the last few months, I’ve noticed extra calls coming in from local numbers, and if you live in the US, I suspect maybe you have too. These calls are either just dead air, or recordings that start with “Please don’t hang up.” Out of curiosity, I’ve called back on the number the call claims to be from. Each time, the message is that this number has been disconnected and is no longer in service. This sounds like the plot of a budget horror movie, how am I being called from a disconnected number? Rather than a phantom in the …read more

Tags: current Events

6:44
WordPress Media File Manager 1.4.2 Directory Traversal
» ‎ Packet Storm Security Exploits

WordPress Media File Manager plugin version 1.4.2 suffers from a directory traversal vulnerability.
Tags:

5:22
Poppler 0.62.0-2ubuntu2.2 Null Pointer Dereference
» ‎ Packet Storm Security Advisories

Poppler version 0.62.0-2ubuntu2.2 suffers from a null pointer dereference vulnerability.
Tags:

4:00
New Part Day: A $6 Linux Computer You Might Be Able To Write Code For
» ‎ Hack a Day

The latest news from the world of cheap electronics is a single board computer running Linux. It costs six dollars, and you can buy it right now. You might even be able to compile code for it, too.

The C-Sky Linux development board is listed on Taobao as an ‘OrangePi NanoPi Raspberry Pi Linux Development Board” and despite some flagrant misappropriation of trademarks, this is indeed a computer running Linux, available for seven American dollars.

This board is based on a NationalChip GX6605S SoC, a unique chip with an ISA that isn’t ARM, x86, RISC-V, MIPS, or anything else that …read more

Tags: hackaday Columns

2:43
TP-Link Archer C50 Wireless Router 171227 CSRF
» ‎ Packet Storm Security Exploits

TP-Link Archer C50 Wireless Router 171227 suffers from a cross site request forgery vulnerability.
Tags:

1:33
#0daytoday #Wordpress Media File Manager 1.4.2 Plugin - Directory Traversal Vulnerability [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Wordpress Media File Manager 1.4.2 Plugin - Directory Traversal Vulnerability [#0day #Exploit]
Tags:
1:33
#0daytoday #TufinOS 2.17 Build 1193 - XML External Entity Injection Vulnerability [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #TufinOS 2.17 Build 1193 - XML External Entity Injection Vulnerability [#0day #Exploit]
Tags:
1:33
#0daytoday #Data Center Audit 2.6.2 - username SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Data Center Audit 2.6.2 - username SQL Injection Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Tags:
1:33
#0daytoday #HeidiSQL 9.5.0.5196 - Denial of Service Exploit [dos #exploits #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #HeidiSQL 9.5.0.5196 - Denial of Service Exploit [dos #exploits #0day #Exploit]
Tags:

1:00
How To Evolve A Radio
» ‎ Hack a Day

Evolutionary algorithms are an interesting topic of study. Rather then relying on human ingenuity and investigation to create new designs, instead, an algorithm is given a target to achieve, and creates “offspring”, iterating in an evolutionary manner to create offspring that get closer to the target with each generation.

This method can be applied to the design of electronic circuits, and is sometimes referred to as “hardware evolution”. A team from Duke University attempted exactly this, aiming to produce an oscillator using evolutionary techniques.

The team used a platform called the “evolvable motherboard”, or EM. The EM is a platform …read more

Tags: classic hacks

0:00
Vuln: Google Chrome V8 Out of Bounds Memory Access Vulnerability
» ‎ SecurityFocus Vulnerabilities

Google Chrome V8 Out of Bounds Memory Access Vulnerability
Tags:
0:00
Vuln: FreeBSD TCP Reassembly CVE-2018-6922 Denial Of Service Vulnerability
» ‎ SecurityFocus Vulnerabilities

FreeBSD TCP Reassembly CVE-2018-6922 Denial Of Service Vulnerability
Tags:
0:00
Vuln: IBM DB2 Multiple Privilege Escalation Vulnerabilities
» ‎ SecurityFocus Vulnerabilities

IBM DB2 Multiple Privilege Escalation Vulnerabilities
Tags:

November 11, 2018
22:42
DSA-2018-198: RSA® BSAFE® Micro Edition Suite Key Management Error Vulnerability
» ‎ Full Disclosure

Posted by secure on Nov 11
DSA-2018-198: RSA® BSAFE® Micro Edition Suite Key Management Error Vulnerability

Dell EMC Identifier: DSA-2018-198

CVE Identifier: CVE-2018-15769

Severity: Medium

Severity Rating: CVSS v3 Base Score: 5.3 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products:

RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series)
RSA BSAFE Micro Edition Suite versions prior to 4.1.6.2 (in 4.1.x series)

Summary:

RSA BSAFE Micro Edition...

Tags:
22:42
Sensitive Data Exposure via RSSI Broadcasts in Android OS [CVE-2018-9581]
» ‎ Full Disclosure

Posted by Nightwatch Cybersecurity Research on Nov 11
[Blog post here:
https://wwws.nightwatchcybersecurity.com/2018/11/11/cve-2018-9581/]

[NOTE: This bug is part of a series of three related Android bugs with
the same root cause: CVE-2018-9489, CVE-2018-9581 and CVE-2018-15835.
A presentation covering all three bugs was given at BSides DE in the
fall of 2018.]

SUMMARY

System broadcasts by the Android operating system expose WiFi signal
strength information (RSSI). Any application on the device...

Tags:
22:42
Sensitive Data Exposure via Battery Information Broadcasts in Android OS [CVE-2018-15835]
» ‎ Full Disclosure

Posted by Nightwatch Cybersecurity Research on Nov 11
[NOTE: This bug is part of a series of three related Android bugs with
the same root cause: CVE-2018-9489, CVE-2018-9581 and CVE-2018-15835.
A presentation covering all three bugs was given at BSides DE in the
fall of 2018.]

SUMMARY

System broadcasts by the Android operating system expose detailed
information about the battery. Prior research has demonstrated that
the same charging information - when exposed via browser battery
status API - can...

Tags:

22:34
[SECURITY] [DSA 4338-1] qemu security update
» ‎ Bugtraq

Posted by Moritz Muehlenhoff on Nov 11
-------------------------------------------------------------------------
Debian Security Advisory DSA-4338-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
November 11, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : qemu
CVE ID : CVE-2018-10839 CVE-2018-17962...

Tags:
22:33
[SECURITY] [DSA 4337-1] thunderbird security update
» ‎ Bugtraq

Posted by Moritz Muehlenhoff on Nov 11
-------------------------------------------------------------------------
Debian Security Advisory DSA-4337-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
November 10, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : thunderbird
CVE ID : CVE-2018-12389 CVE-2018-12390...

Tags:
22:28
[SECURITY] [DSA 4336-1] ghostscript security update
» ‎ Bugtraq

Posted by Salvatore Bonaccorso on Nov 11
-------------------------------------------------------------------------
Debian Security Advisory DSA-4336-1 security () debian org
https://www.debian.org/security/ Salvatore Bonaccorso
November 10, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : ghostscript
CVE ID : CVE-2018-11645 CVE-2018-17961...

Tags:
22:26
PeepSo v1.11.2 (WordPress Plugin) - XSS Vulnerability in Members
» ‎ Bugtraq

Posted by Socket_0x03 on Nov 11
===================================================================================
PeepSo v1.11.2 (WordPress Plugin) - Cross-Site Scripting Vulnerability in Members"
===================================================================================

Tags:
22:22
PeepSo v1.11.2 - Time-Based SQL Injection
» ‎ Bugtraq

Posted by Socket_0x03 on Nov 11
============================================================
PeepSo v1.11.2 (WordPress Plugin) - Time-Based SQL Injection
============================================================

Tags:
22:19
NEW VMSA-2018-0027 VMware ESXi, Workstation, and Fusion updates address uninitialized stack memory usage
» ‎ Bugtraq

Posted by VMware Security Response Center on Nov 11
-----------------------------------------------------------------------

VMware Security Advisory

Advisory ID: VMSA-2018-0027
Severity: Critical
Synopsis: VMware ESXi, Workstation, and Fusion updates address
uninitialized stack memory usage
Issue date: 2018-11-09
Updated on: 2018-11-09 (Initial Advisory)
CVE number: CVE-2018-6981, CVE-2018-6982

1. Summary

VMware ESXi, Workstation, and...

Tags:
22:17
WP User Manager v2.0.8 - Time-Based SQL Injection
» ‎ Bugtraq

Posted by Socket_0x03 on Nov 11
====================================================================
WP User Manager v2.0.8 (WordPress Plugin) - Time-Based SQL Injection
====================================================================

Tags:
22:14
[SECURITY] [DSA 4335-1] nginx security update
» ‎ Bugtraq

Posted by Moritz Muehlenhoff on Nov 11
-------------------------------------------------------------------------
Debian Security Advisory DSA-4335-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
November 08, 2018 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : nginx
CVE ID : CVE-2018-16843 CVE-2018-16844...

Tags:

22:00
A Daylight-Readable Bar Graph Display in the 70s Wasn’t Cheap
» ‎ Hack a Day

LEDs weren’t always an easy solution to displays and indicators. The fine folks at [Industrial Alchemy] shared pictures of a device that shows what kind of effort and cost went into making a high brightness bar graph display in the 70s, back when LEDs were both expensive and not particularly bright. There are no strange materials or methods involved in making the display daylight-readable, but it’s a peek at how solving problems we take for granted today sometimes took a lot of expense and effort.

The display is a row of 28 small incandescent bulbs, mounted in a PCB and …read more

Tags: Hardware

20:44
HeidiSQL 9.5.0.5196 Denial Of Service
» ‎ Packet Storm Security Exploits

HeidiSQL version 9.5.0.5196 suffers from a denial of service vulnerability.
Tags:
19:33
CuteFTP 9.3.0.3 Denial Of Service
» ‎ Packet Storm Security Exploits

CuteFTP version 9.3.0.3 suffers from a denial of service vulnerability.
Tags:

19:00
The Naughty AIs That Gamed The System
» ‎ Hack a Day

Artificial intelligence (AI) is undergoing somewhat of a renaissance in the last few years. There’s been plenty of research into neural networks and other technologies, often based around teaching an AI system to achieve certain goals or targets. However, this method of training is fraught with danger, because just like in the movies – the computer doesn’t always play fair.

It’s often very much a case of the AI doing exactly what it’s told, rather than exactly what you intended. Like a devious child who will gladly go to bed in the literal sense, but will not actually sleep, …read more

Tags: classic hacks
16:00
Hackaday Links: The Eleventh Day Of The Eleventh Month, 2018
» ‎ Hack a Day

For the better part of the last five years, the Great War Channel on YouTube has been covering the events of the Great War, week by week, exactly 100 years later. It’s hundreds of episodes designed for history buffs, and quite literally one of the most educational channels on YouTube. It’s the eleventh day of the eleventh month of the eighteenth year, which means the folks behind the Great War Channel are probably taking a well-deserved vacation. If you haven’t heard of this channel, it might be a good time to check it out.

Ikea is now selling NFC locks. …read more

Tags: hackaday Columns

16:00
[webapps] TufinOS 2.17 Build 1193 - XML External Entity Injection
» ‎ Exploit-DB

TufinOS 2.17 Build 1193 - XML External Entity Injection
Tags:
16:00
[webapps] Data Center Audit 2.6.2 - 'username' SQL Injection
» ‎ Exploit-DB

Data Center Audit 2.6.2 - 'username' SQL Injection
Tags:
16:00
[dos] HeidiSQL 9.5.0.5196 - Denial of Service (PoC)
» ‎ Exploit-DB

HeidiSQL 9.5.0.5196 - Denial of Service (PoC)
Tags:
16:00
[webapps] The Don 1.0.1 - 'login' SQL Injection
» ‎ Exploit-DB

The Don 1.0.1 - 'login' SQL Injection
Tags:
16:00
[webapps] TP-Link Archer C50 Wireless Router 171227 - Cross-Site Request Forgery (Configuration File Disclosure)
» ‎ Exploit-DB

TP-Link Archer C50 Wireless Router 171227 - Cross-Site Request Forgery (Configuration File Disclosure)
Tags:
16:00
[webapps] Paroiciel 11.20 - 'tRecIdListe' SQL Injection
» ‎ Exploit-DB

Paroiciel 11.20 - 'tRecIdListe' SQL Injection
Tags:
16:00
[webapps] Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal
» ‎ Exploit-DB

Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal / Cross-Site Scripting
Tags:
16:00
[webapps] Facturation System 1.0 - 'modid' SQL Injection
» ‎ Exploit-DB

Facturation System 1.0 - 'modid' SQL Injection
Tags:
16:00
[dos] CuteFTP 9.3.0.3 - Denial of Service (PoC)
» ‎ Exploit-DB

CuteFTP 9.3.0.3 - Denial of Service (PoC)
Tags:
16:00
[webapps] Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin)
» ‎ Exploit-DB

Easyndexer 1.0 - Cross-Site Request Forgery (Add Admin)
Tags:
16:00
[webapps] GPS Tracking System 2.12 - 'username' SQL Injection
» ‎ Exploit-DB

GPS Tracking System 2.12 - 'username' SQL Injection
Tags:
16:00
[webapps] ServerZilla 1.0 - 'email' SQL Injection
» ‎ Exploit-DB

ServerZilla 1.0 - 'email' SQL Injection
Tags:
16:00
[webapps] D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery
» ‎ Exploit-DB

D-LINK Central WifiManager CWM-100 - Server-Side Request Forgery
Tags:
16:00
[webapps] Nominas 0.27 - 'username' SQL Injection
» ‎ Exploit-DB

Nominas 0.27 - 'username' SQL Injection
Tags:
16:00
[dos] Mongoose Web Server 6.9 - Denial of Service (PoC)
» ‎ Exploit-DB

Mongoose Web Server 6.9 - Denial of Service (PoC)
Tags:

13:00
Belt Up With A Redundant Car Part
» ‎ Hack a Day

The toothed belt that turns the camshaft in synchronization with the crankshaft on many motor vehicle engines is something of an under-appreciated component. Unless you are unlucky enough to ave had one fail and destroy your engine, it’s probably something you’ve never given a second thought to outside of periodic service intervals.

For something to perform such a task over so many thousands of miles of motoring it must be made of pretty strong stuff. Even when a belt is life-expired it is still in good physical shape, and [Crispyjones] saw the potential in a used Subaru belt to make …read more

Tags: car hacks
10:00
3D-Printer Extrudes Paper Pulp Instead of Plastic
» ‎ Hack a Day

We’ve seen all sorts of 3D-printers on these pages before. From the small to the large, Cartesians and deltas, and printers that can squeeze out plastic, metal, and even concrete. But this appears to be the first time we’ve ever featured a paper-pulp extruding 3D-printer.

It’s fair to ask why the world would need such a thing, and its creator, [Beer Holthuis], has an obvious answer: the world has a lot of waste paper. Like 80 kg per person per year. Thankfully at least some of that is recycled, but that still leaves a lot of raw material that [Beer] …read more

Tags: printer hacks
7:00
Kinect Visualizer Demo Gives Winamp a Run for Its Money
» ‎ Hack a Day

Winamp eat your heart out, because thanks to the Microsoft Kinect in the hands of [Samarth] there’s a new way to make your screen dance along with you. He created a music visualizer demo that takes advantage of the 3D depth camera on Kinect by outputting a fun pixelated silhouette and color changing strobe. When there are big high-hat hits or bass thumps the camera feed reacts accordingly (as any good visualizer would). He even uploaded his code for the project just in case anyone would like to take a look at it.

The visualizer utilizes the OpenKinect-Processing library which …read more

Tags: peripherals hacks

4:15
Gentoo Linux Security Advisory 201811-08
» ‎ Packet Storm Security Advisories

Gentoo Linux Security Advisory 201811-8 - Okular is vulnerable to a directory traversal attack. Versions less than 18.04.3-r1 are affected.
Tags:
4:12
Gentoo Linux Security Advisory 201811-07
» ‎ Packet Storm Security Advisories

Gentoo Linux Security Advisory 201811-7 - A vulnerability in Pango could result in a Denial of Service condition. Versions less than 1.42.4 are affected.
Tags:

4:00
A Fleet of Pressure Washers Powers This Interactive Public Fountain
» ‎ Hack a Day

Public art installations can be cool. Adding in audience interactivity bumps up the coolness factor a bit. Throw civic pride, dancing jets of water, music, and lights into the project, and you get this very cool pressure washer powered musical fountain.

The exhibit that [Niklas Roy] came up with is called Wasserorgel, or “water organ”, an apt name for the creation. Built as part of a celebration of industry in Germany, the display was built in the small town of Winnenden, home to Kärcher, a cleaning equipment company best known for their line of pressure washers in the distinctive …read more

Tags: misc hacks
1:00
Robot Never Misses Leg Day
» ‎ Hack a Day

We have heard bipedal walking referred to as a series of controlled falls, or one continuous fall where we repeatedly catch ourselves, and it is a long way to fall at 9.8m/s². Some of us are more graceful than others, but most grade-schoolers have gained superior proficiency in comparison to our most advanced bipedal robots. Legs involve all kinds of tricky joints which bend and twist and don’t get us started on knees. Folks at the Keio University and the University of Tokyo steered toward a robot which does not ride on wheels, treads, walk or tumble. The …read more

Tags: news
November 10, 2018
22:00
A $4 Ultrasonic Theremin Looks Cheesy on Purpose
» ‎ Hack a Day

We don’t think [bleepbit] will take offense when we say the “poor man’s theremin” looks cheesy — after all, it was built in a cheese container. Actually, it isn’t a bad case for a simple device, as you can see in the picture and the video below. Unlike a traditional theremin, the device uses ultrasonics to detect how far away your hand is and modifies the sound based on that.

There are also two buttons — one to turn the sound off and another to cycle through some effects. We liked how it looked like a retro cassette, though. The …read more

Tags: arduino hacks

21:27
#0daytoday #Windows/x86 - Messagebox #shellcode (358 bytes) [shellcode #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Windows/x86 - Messagebox #shellcode (358 bytes) [shellcode #0day #Exploit]
Tags:
21:27
#0daytoday #Windows/x86 - Messagebox Shellcode 358 bytes [shellcode #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Windows/x86 - Messagebox Shellcode 358 bytes [shellcode #0day #Exploit]
Tags:

19:00
Arduino Gets a Command Line Interface
» ‎ Hack a Day

When using an Arduino, at least once you’ve made it past blinking LEDs, you might start making use of the serial connection to send and receive information from the microcontroller. Communicating with the board while it’s interacting with its environment is a crucial way to get information in real-time. Usually, that’s as far as it goes, but [Pieter] wanted to take it a step farther than that with his command line interpreter (CLI) for the Arduino.

The CLI allows the user to run Unix-like commands directly on the Arduino. This means control of GPIO and the rest of the features …read more

Tags: microcontrollers
16:00
Single Board Computer Plays Nice with NVIDIA GPU
» ‎ Hack a Day

It’s about convenience when it comes to single board computers. The trade-off of raw compute power for size means the bulk of them end up being ARM based, but there are a few exceptions like the x86 based Udoo Ultra. The embedded Intel 405 GPU on the Udoo Ultra is better than most in the category, but that won’t begin to play much of anything outside of a browser window. Not satisfied with “standard” [Matteo] put together his build combining an Udoo x86 Ultra with a NVIDIA 1060 GPU. It seems ridiculous to have an expansion card almost three times …read more

Tags: tech hacks
13:00
What’s Inside that New Mac Mini Anyway?
» ‎ Hack a Day

It’s been four long years since Apple has refreshed their entry-level desktop line. Those that have been waiting for a redesign of the Mac Mini can now collectively exhale as the Late 2018 edition has officially been released. Thanks to [iFixit] we have a clearer view of what’s changed in the new model as they posted a complete teardown of the Mac Mini over on their website.

One of the most welcomed changes is that the DDR4 RAM is actually user upgradeable this time around. Previously RAM was soldered directly to the motherboard, and there were no SO-DIMM slots to …read more

Tags: teardown
10:00
Back to School Online
» ‎ Hack a Day

In 1961, FCC Commissioner [Newt Minow] famously described TV as a “vast wasteland.” But TV can do great things; educational programming, news coverage, and great performances do appear, just not all that often. You can draw the same parallels to the Internet. Sure, it’s mostly cat pictures, snarky comments, and posts of what your friends had for dinner. But it can also be a powerful tool, especially for education. Recently, top-name schools and other institutions have posted courses online for everything from Python to Quantum Mechanics to Dutch. The problems are finding these classes and figuring out which ones are …read more

Tags: internet hacks
7:00
What Good Are Counterfeit Parts? Believe It Or Not, Maybe A Refund
» ‎ Hack a Day

[Charles Ouweland] purchased some parts off Aliexpress and noticed that the Texas Instruments logo on some of his parts wasn’t the Texas Instruments logo at all, it was just some kind of abstract shape that vaguely resembled the logo. Suspicious and a little curious, he decided to take a closer look at the MCP1702 3.3v LDO regulators he ordered as well. Testing revealed that they were counterfeits with poor performance.

Looking at the packages, there were some superficial differences in the markings of the counterfeit MCP1702 versus genuine parts from Microchip, but nothing obviously out of place. To conclusively test …read more

Tags: Hardware

4:13
Gentoo Linux Security Advisory 201811-06
» ‎ Packet Storm Security Advisories

Gentoo Linux Security Advisory 201811-6 - Multiple vulnerabilities have been found in libde265, the worst of which allows remote attackers to execute arbitrary code. Versions less than 1.0.3 are affected.
Tags:
4:12
Gentoo Linux Security Advisory 201811-05
» ‎ Packet Storm Security Advisories

Gentoo Linux Security Advisory 201811-5 - Multiple vulnerabilities have been found in PHProjekt due to embedded Zend Framework, the worst of which could allow attackers to remotely execute arbitrary commands. Versions less than or equal to 6.1.2 are affected.
Tags:

4:00
Making Colored Smoke Devices, The Right Way
» ‎ Hack a Day

Pyrotechnics are fun, and, with the proper precautions taken, safe enough to play with at home (usually). While it’s typical to purchase fireworks and smoke devices off the shelf, it’s actually possible to brew these up in a properly stocked home lab. [Tech Ingredients] is here to share the techniques behind producing your own super vibrant colored smoke devices at home.

Producing colored smoke requires a slightly different tack than making a simpler white smoke device. Colored smokes use dyes that are temperature sensitive, and thus the reaction temperature must be controlled carefully. This is achieved by choosing a potassium …read more

Tags: chemistry hacks
1:00
E-Mail Service Claims it Doesn’t Store Your Mail
» ‎ Hack a Day

There have been many news stories lately about companies misusing your data, including your e-mails. What’s more, these giant repositories of data are favorite targets for hackers. Even if you trust the big corporations, you are also betting on their security. Criptext claims they have (possibly) the most private e-mail service ever. It uses the open Signal protocol and stores private keys and encrypted mail only on your device. All the applications to access your mail are open source, so presumably, someone would eventually spot any backdoors or open holes.

At the moment the service is free and the company …read more

Tags: security hacks
November 09, 2018
22:00
An Englishman’s Home Is His (Drone-Defended) Castle
» ‎ Hack a Day

Retiring to the garden for a few reflective puffs on the meerschaum and a quick shufti through the Racing Post, and the peace of the afternoon is shattered by the buzz of a drone in the old airspace,what! What’s a chap to do, let loose with both barrels of the finest birdshot from the trusty twelve-bore? Or build a missile battery cunningly concealed in a dovecote? The latter is what [secretbatcave] did to protect his little slice of England, and while we’re not sure of its efficacy we’re still pretty taken with it. After all, who wouldn’t want a …read more

Tags: drone hacks
17:01
Raspberry Pi PoE Redux
» ‎ Hack a Day

[Martin Rowan] was lucky enough to get his hands on the revised Power Over Ethernet (PoE) hat for the Raspberry Pi. Lucky for us, he wrote it up for our benefit, including inspection of the new hat, it’s circuit, and electrical testing to compare to the original hardware.

You may remember the original release of the PoE hat for the Raspberry Pi, as well as the subsequent recall due to over-current issues. In testing the revised board, [Martin] powered a test load off the USB ports, and pulled over an amp — The first iteration of the PoE hat would …read more

Tags: Hardware
16:00
Using E-Paper Displays for an Electronic Etch A Sketch
» ‎ Hack a Day

Electronic things are often most successful when they duplicate some non-electronic thing. Most screens, then, are poor replacements for paper. Except, of course, for E-paper. These displays have high contrast even in sunlight and they hold their image even with no power. When [smbakeryt] was looking at his daughter’s Etch-a-Sketch, he decided duplicating its operation would be a great way to learn about these paper-like displays.

You can see a video of his results and his findings below. He bought several displays and shows them all, including some three-color units which add a single spot color. The one thing you’ll …read more

Tags: raspberry
13:00
Pixy2 is Super Vision for Arduino or Raspberry Pi
» ‎ Hack a Day

A Raspberry Pi with a camera is nothing new. But the Pixy2 camera can interface with a variety of microcontrollers and has enough smarts to detect objects, follow lines, or even read barcodes without help from the host computer. [DroneBot Workshop] has a review of the device and he’s very enthused about the camera. You can see the video below.

When you watch the video, you might wonder how much this camera will cost. Turns out it is about $60 which isn’t cheap but for the capabilities it offers it isn’t that much, either. The camera can detect lines, intersections, …read more

Tags: arduino hacks

12:00
Cradlepoint vulnerabilities
» ‎ Full Disclosure

Posted by Todd Kelly via Fulldisclosure on Nov 09
Hi,
This is a response to the Cradlepoint vulnerabilities posting by Crazy Owl on Nov 5th.
We appreciate that CrazyOwl brought to our attention these vulnerabilities and a coordinated disclosure that allowed us
to address these issues and communicate with our customers prior to public disclosure. We take security very seriously,
and took action as soon as we were notified. The specific steps we’ve taken are:

1. Confirmed the...

Tags:
11:53
DSA-2018-205: Dell EMC RecoverPoint Multiple Vulnerabilities
» ‎ Full Disclosure

Posted by secure on Nov 09
Hash: SHA256

DSA-2018-205: Dell EMC RecoverPoint Multiple Vulnerabilities

Dell EMC Identifier: DSA-2018-205

CVE Identifier: CVE-2018-15771, CVE-2018-15772

Severity: Low

Severity Rating: See below for CVSSv3 Scores

Affected products:

Dell EMC RecoverPoint versions prior to 5.1.2.1

Dell EMC RecoverPoint Virtual Machine (VM) versions prior to 5.2.0.2

Summary:

Dell EMC RecoverPoint contains fixes to multiple security vulnerabilities which...

Tags:
11:53
[CVE-2018-18941] Security Vulnerability in Vignette Content Management version 6
» ‎ Full Disclosure

Posted by Rafael Pedrero on Nov 09
Some time ago I discovered some vulnerabilities and did not report them
over 2003 to 2010, the time came, better late than never :-D

<!--
# Exploit Title: Security Bypass Vulnerability in Vignette Content
Management version 6
# Date: 05-11-2018
# Exploit Author: Rafael Pedrero
# Vendor Homepage: http://www.vignette.com/
# Software Link: http://www.vignette.com/
# Version: Vignette Content Management version 6
# Tested on: all
# CVE :...

Tags:
11:53
[CVE-2018-18940] Cross Site Scripting in default SnoopServlet servlet Netscape Enterprise 3.63
» ‎ Full Disclosure

Posted by Rafael Pedrero on Nov 09
Some time ago I discovered some vulnerabilities and did not report them
over 2003 to 2010, the time came, better late than never :-D

<!--
# Exploit Title: Cross Site Scripting in default SnoopServlet servlet
Netscape Enterprise 3.63
# Date: 05-11-2018
# Exploit Author: Rafael Pedrero
# Vendor Homepage: https://en.wikipedia.org/wiki/Netscape
# Software Link: https://en.wikipedia.org/wiki/Netscape
# Version: Netscape Enterprise 3.63
# Tested...

Tags:
11:53
[CVE-2018-18619] SQL injection in Advanced comment system v1.0
» ‎ Full Disclosure

Posted by Rafael Pedrero on Nov 09
Some time ago I discovered some vulnerabilities and did not report them
over 2003 to 2010, the time came, better late than never :-D

<!--
# Exploit Title: SQL injection in Advanced comment system v1.0
# Date: 29-10-2018
# Exploit Author: Rafael Pedrero
# Vendor Homepage: http://www.plohni.com
# Software Link:
http://www.plohni.com/wb/content/php/download/Advanced_comment_system_1-0.zip,...

Tags:
11:40
CVE-2018-15515 / D-LINK Central WifiManager CWM-100 / Trojan File SYSTEM Privilege Escalation
» ‎ Full Disclosure

Posted by hyp3rlinx on Nov 09
[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/DLINK-CENTRAL-WIFI-MANAGER-CWM-100-SYSTEM-PRIVILEGE-ESCALATION.txt
[+] ISR: ApparitionSec

***Greetz: indoushka | Eduardo B.***

[Vendor]
us.dlink.com

[Product]
D-LINK Central WifiManager (CWM 100)
Version 1.03 r0098
http://us.dlink.com/products/business-solutions/central-wifimanager-software-controller/

D-Link’s...

Tags:
11:40
CVE-2018-15517 / D-LINK Central WifiManager CWM-100 / Server Side Request Forgery
» ‎ Full Disclosure

Posted by hyp3rlinx on Nov 09
[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/DLINK-CENTRAL-WIFI-MANAGER-CWM-100-SERVER-SIDE-REQUEST-FORGERY.txt
[+] ISR: ApparitionSec

***Greetz: indoushka | Eduardo B.***

[Vendor]
us.dlink.com

[Product]
D-LINK Central WifiManager (CWM 100)
Version 1.03 r0098
http://us.dlink.com/products/business-solutions/central-wifimanager-software-controller/

D-Link’s...

Tags:
11:40
CVE-2018-15516 / D- LINK Central WifiManager CWM-100 / FTP Server PORT Bounce Scan
» ‎ Full Disclosure

Posted by hyp3rlinx on Nov 09
[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/DLINK-CENTRAL-WIFI-MANAGER-CWM-100-FTP-SERVER-PORT-BOUNCE-SCAN.txt
[+] ISR: ApparitionSec

***Greetz: indoushka | Eduardo B.***

[Vendor]
us.dlink.com

[Product]
D-LINK Central WifiManager (CWM 100)
Version 1.03 r0098
http://us.dlink.com/products/business-solutions/central-wifimanager-software-controller/

D-Link’s...

Tags:
11:40
CVE-2018-15437 / Cisco Immunet and Cisco AMP for Endpoints / System Scan Denial of Service
» ‎ Full Disclosure

Posted by hyp3rlinx on Nov 09
[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/CISCO-IMMUNET-AND-CISCO-AMP-FOR-ENDPOINTS-SYSTEM-SCAN-DENIAL-OF-SERVICE.txt
[+] ISR: ApparitionSec

***Greetz: indoushka | Eduardo B.***

[Vendor]
www.cisco.com

[Multiple Products]
Cisco Immunet < v6.2.0 and Cisco AMP For Endpoints v6.2.0

Cisco Immunet is a free, cloud-based, community-driven antivirus...

Tags:

11:30
The How and Why of Laser Cutter Aiming
» ‎ Hack a Day

Laser aficionado [Martin Raynsford] has built up experience with various laser cutters over the years and felt he should write up a blog post detailing his first-hand findings with an often overlooked aspect of the machines: aiming them. Cheap diode laser cutters and engravers operate in the visible part of the spectrum, but when you get into more powerful carbon dioxide lasers such as the one used in the popular K40 machines, the infrared beam is invisible to the naked eye. A secondary low-power laser helps to visualize the main laser’s alignment without actually cutting the target. There are a …read more

Tags: laser hacks

10:11
#0daytoday #Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass) Exploit [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass) Exploit [#0day #Exploit]
Tags:
10:11
#0daytoday #Cisco Immunet / Cisco AMP For Endpoints Scanning Denial Of Service Exploit [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #Cisco Immunet / Cisco AMP For Endpoints Scanning Denial Of Service Exploit [#0day #Exploit]
Tags:
10:11
#0daytoday #D-LINK Central WifiManager (CWM 100) 1.03 r0098 Man-In-The-Middle Vulnerability [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #D-LINK Central WifiManager (CWM 100) 1.03 r0098 Man-In-The-Middle Vulnerability [#0day #Exploit]
Tags:
10:11
#0daytoday #D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery Vulnerabili [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery Vulnerabili [#0day #Exploit]
Tags:
10:11
#0daytoday #D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking Exploit [#0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking Exploit [#0day #Exploit]
Tags:
10:11
#0daytoday #OpenSLP 2.0.0 - Multiple Vulnerabilities CVE-2016-7567 [remote #exploits #Vulnerabilities #0day #Exploit]
» ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)

#0daytoday #OpenSLP 2.0.0 - Multiple Vulnerabilities CVE-2016-7567 [remote #exploits #Vulnerabilities #0day #Exploit]
Tags:

10:02
Packet Fence 8.2.0
» ‎ Packet Storm Security Recent Files

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
Tags:

10:02
Packet Fence 8.2.0
» ‎ Packet Storm Security Tools

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
Tags:

10:02
Packet Fence 8.2.0
» ‎ Packet Storm Security Misc. Files

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
Tags:

10:01
X-Ray Vision for FPGAs: Using Verifla
» ‎ Hack a Day

Last time I talked about how I took the open source Verifla logic analyzer and modified it to have some extra features. As promised, this time I want to show it in action, so you can incorporate it into your own designs. The original code didn’t actually capture your data. Instead, it created a Verilog simulation that would produce identical outputs to your FPGA. If you were trying to do some black box simulation, that probably makes sense. I just wanted to view data, so I created a simple C program that generates a VCD file you can read with …read more

Tags: fpga

9:59
Web-Based Firewall Logging Tool 1.1.1
» ‎ Packet Storm Security Recent Files

Webfwlog is a Web-based firewall log reporting and analysis tool. It allows users to design reports to use on logged firewall data in whatever configuration they desire. Included are sample reports as a starting point. Reports can be sorted with a single click, or "drilled-down" all the way to the packet level, and saved for later use. Supported log formats are netfilter, ipfilter, ipfw, ipchains, and Windows XP. Netfilter support includes ulogd MySQL or PostgreSQL database logs using the iptables ULOG target.
Tags:

9:59
Web-Based Firewall Logging Tool 1.1.1
» ‎ Packet Storm Security Tools

Webfwlog is a Web-based firewall log reporting and analysis tool. It allows users to design reports to use on logged firewall data in whatever configuration they desire. Included are sample reports as a starting point. Reports can be sorted with a single click, or "drilled-down" all the way to the packet level, and saved for later use. Supported log formats are netfilter, ipfilter, ipfw, ipchains, and Windows XP. Netfilter support includes ulogd MySQL or PostgreSQL database logs using the iptables ULOG target.
Tags:

9:59
Web-Based Firewall Logging Tool 1.1.1
» ‎ Packet Storm Security Misc. Files

Webfwlog is a Web-based firewall log reporting and analysis tool. It allows users to design reports to use on logged firewall data in whatever configuration they desire. Included are sample reports as a starting point. Reports can be sorted with a single click, or "drilled-down" all the way to the packet level, and saved for later use. Supported log formats are netfilter, ipfilter, ipfw, ipchains, and Windows XP. Netfilter support includes ulogd MySQL or PostgreSQL database logs using the iptables ULOG target.
Tags:

9:55
D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking
» ‎ Packet Storm Security Exploits

D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices will load a trojan horse "quserex.dll" and will create a new thread running with SYSTEM integrity.
Tags:

9:55
D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking
» ‎ Packet Storm Security Recent Files

D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices will load a trojan horse "quserex.dll" and will create a new thread running with SYSTEM integrity.
Tags:

9:55
D-LINK Central WifiManager (CWM 100) 1.03 r0098 DLL Hijacking
» ‎ Packet Storm Security Misc. Files

D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices will load a trojan horse "quserex.dll" and will create a new thread running with SYSTEM integrity.
Tags:

9:53
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery
» ‎ Packet Storm Security Exploits

Using a web browser or script server-side request forgery (SSRF) can be initiated against internal/external systems to conduct port scans by leveraging D-LINK's MailConnect component. The MailConnect feature on D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port on any IP address, leading to SSRF, as demonstrated by an index.php/System/MailConnect/host/127.0.0.1/port/22/secure/ URI. This can undermine accountability of where scan or connections actually came from and or bypass the FW etc. This can be automated via script or using Web Browser.
Tags:

9:53
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery
» ‎ Packet Storm Security Recent Files

Using a web browser or script server-side request forgery (SSRF) can be initiated against internal/external systems to conduct port scans by leveraging D-LINK's MailConnect component. The MailConnect feature on D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port on any IP address, leading to SSRF, as demonstrated by an index.php/System/MailConnect/host/127.0.0.1/port/22/secure/ URI. This can undermine accountability of where scan or connections actually came from and or bypass the FW etc. This can be automated via script or using Web Browser.
Tags:

9:53
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Server-Side Request Forgery
» ‎ Packet Storm Security Misc. Files

Using a web browser or script server-side request forgery (SSRF) can be initiated against internal/external systems to conduct port scans by leveraging D-LINK's MailConnect component. The MailConnect feature on D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port on any IP address, leading to SSRF, as demonstrated by an index.php/System/MailConnect/host/127.0.0.1/port/22/secure/ URI. This can undermine accountability of where scan or connections actually came from and or bypass the FW etc. This can be automated via script or using Web Browser.
Tags:

9:52
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Man-In-The-Middle
» ‎ Packet Storm Security Exploits

The FTP Server component of the D-LINK Central WifiManager can be used as a man-in-the-middle machine allowing PORT Command bounce scan attacks. This vulnerability allows remote attackers to abuse your network and discreetly conduct network port scanning. Victims will then think these scans are originating from the D-LINK network running the afflicted FTP Server and not you. Version 1.03 r0098 is affected.
Tags:

9:52
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Man-In-The-Middle
» ‎ Packet Storm Security Recent Files

The FTP Server component of the D-LINK Central WifiManager can be used as a man-in-the-middle machine allowing PORT Command bounce scan attacks. This vulnerability allows remote attackers to abuse your network and discreetly conduct network port scanning. Victims will then think these scans are originating from the D-LINK network running the afflicted FTP Server and not you. Version 1.03 r0098 is affected.
Tags:

9:52
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Man-In-The-Middle
» ‎ Packet Storm Security Misc. Files

The FTP Server component of the D-LINK Central WifiManager can be used as a man-in-the-middle machine allowing PORT Command bounce scan attacks. This vulnerability allows remote attackers to abuse your network and discreetly conduct network port scanning. Victims will then think these scans are originating from the D-LINK network running the afflicted FTP Server and not you. Version 1.03 r0098 is affected.
Tags:

9:49
Cisco Immunet / Cisco AMP For Endpoints Scanning Denial Of Service
» ‎ Packet Storm Security Exploits

A vulnerability in the system scanning component of Cisco Immunet and Cisco Advanced Malware Protection (AMP) for Endpoints running on Microsoft Windows could allow a local attacker to disable the scanning functionality of the product. This could allow executable files to be launched on the system without being analyzed for threats. The vulnerability is due to improper process resource handling. Cisco Immunet versions prior to 6.2.0 and Cisco AMP For Endpoints version 6.2.0 are affected.
Tags:

9:49
Cisco Immunet / Cisco AMP For Endpoints Scanning Denial Of Service
» ‎ Packet Storm Security Recent Files

A vulnerability in the system scanning component of Cisco Immunet and Cisco Advanced Malware Protection (AMP) for Endpoints running on Microsoft Windows could allow a local attacker to disable the scanning functionality of the product. This could allow executable files to be launched on the system without being analyzed for threats. The vulnerability is due to improper process resource handling. Cisco Immunet versions prior to 6.2.0 and Cisco AMP For Endpoints version 6.2.0 are affected.
Tags:

9:49
Cisco Immunet / Cisco AMP For Endpoints Scanning Denial Of Service
» ‎ Packet Storm Security Misc. Files

A vulnerability in the system scanning component of Cisco Immunet and Cisco Advanced Malware Protection (AMP) for Endpoints running on Microsoft Windows could allow a local attacker to disable the scanning functionality of the product. This could allow executable files to be launched on the system without being analyzed for threats. The vulnerability is due to improper process resource handling. Cisco Immunet versions prior to 6.2.0 and Cisco AMP For Endpoints version 6.2.0 are affected.
Tags:

Skip to page: 1 2 3 4 ... 847

Feeds

Recent items

Tags:

Tags:

Tags:

Tags:

Tags:

Tags: clock hacks

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags: chemistry hacks

Tags: tool hacks

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags: drone hacks

Tags: toy hacks

Tags: art

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags:

Tags: