Files Date: 2017-11-07 to 2017-11-08 ≈ Packet Storm

Debut Embedded httpd 1.20 Denial Of Service

November 6, 2017, 5:01 pm

The Debut embedded http server contains a remotely exploitable denial of service where a single malformed HTTP POST request can cause the server to hang until eventually replying with an HTTP 500...

View Article

WordPress UserPro 4.6.17 Authentication Bypass

November 6, 2017, 5:22 pm

WordPress Userpro plugin versions 4.9.17 and below suffer from an authentication bypass vulnerability.

View Article

POC OR GTFO 0x16

November 6, 2017, 6:22 pm

This is the sixteenth issue of POC || GTFO.

View Article

mkvalidator 0.5.1 Denial Of Service

November 6, 2017, 6:22 pm

mkvalidator version 0.5.1 suffers from multiple denial of service vulnerabilities leveraging libebml2 and mkclean.

View Article

Logitech Media Server 7.9.0 Cross Site Scripting

November 6, 2017, 7:33 pm

Logitech Media Server version 7.9.0 suffers from multiple cross site scripting vulnerabilities.

View Article

pfSense 2.3.1_1 Post-Authentication Command Execution

November 7, 2017, 6:44 am

pfSense versions 2.3.1_1 and below suffers from a post authentication command execution vulnerability.

View Article

Debian Security Advisory 4020-1

November 7, 2017, 7:25 am

Debian Linux Security Advisory 4020-1 - Several vulnerabilities have been discovered in the chromium web browser.

View Article

Actiontec C1000A Modem Backdoor Account

November 7, 2017, 7:58 am

The Actiontec C1000A modem has a hard-coded backdoor admin account.

View Article

Linux Kernel 4.1.3 (Ubuntu 17.10) waitid() SMEP/SMAP Privilege Escalation

November 7, 2017, 8:00 am

This is a proof of concept exploit for the waitid bug introduced in version 4.13 of the Linux kernel. It can be used to break out of sandboxes such as that in Google Chrome.

View Article

Hashcat Advanced Password Recovery 4.0.1 Binary Release

November 7, 2017, 8:20 am

Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on...

View Article

Hashcat Advanced Password Recovery 4.0.1 Source Code

November 7, 2017, 8:20 am

View Article

WordPress Duplicator Migration 1.2.28 Cross Site Scripting

November 7, 2017, 12:13 pm

WordPress Duplicator Migration plugin version 1.2.28 suffers from a cross site scripting vulnerability.

View Article

Red Hat Security Advisory 2017-3141-01

November 7, 2017, 12:14 pm

Red Hat Security Advisory 2017-3141-01 - The RHV-M Virtual Appliance automates the process of installing and configuring the Red Hat Virtualization Manager. The appliance is available to download as an...

View Article

Red Hat Security Advisory 2017-3151-01

November 7, 2017, 3:23 pm

Red Hat Security Advisory 2017-3151-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 62.0.3202.89. Security Fix: Multiple flaws were found in the...

View Article

Debian Security Advisory 4021-1

November 7, 2017, 3:23 pm

Debian Linux Security Advisory 4021-1 - It was discovered that missing input validation in the Open Ticket Request System could result in privilege escalation by an agent with write permissions for...

View Article

More Pages to Explore .....

Latest Images