A signedness vulnerability exists in libgd version 2.1.1 which may result in a heap overflow when processing compressed gd2 data.
3a2ce455a8601a1585ae58c370524696afc5c9cf036efab381d9622a8c9decf1Symantec Brightmail versions 10.6.0-7 and below save the AD password in a place where it can be retrieved.
88d3d8221a33175dc392a1dde9b17ac2dce0186a796efa0efdcc5c79c77bb457Exponent CMS version 2.3.5 suffers from a file upload vulnerability that allows for cross site scripting.
c4ece7a07c3fa3b38dd0fb113aad54aacd042e613d452d326da6237d70179fccExponent CMS version 2.3.5 suffers from multiple cross site scripting vulnerabilities.
6a585b0745893b5ede86522555e556bf41c3aa59e50576817c204b6240bf2ae1Ubuntu Security Notice 2952-1 - It was discovered that the PHP Zip extension incorrectly handled directories when processing certain zip files. A remote attacker could possibly use this issue to create arbitrary directories. It was discovered that the PHP Soap client incorrectly validated data types. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
4d6db38bd4a4eeeff3a87c17afbc7413a7d3d1c3b63225f6e73d061b71d981c9ImpressCMS versions 1.3.9 and below suffer from a remote SQL injection vulnerability.
61197cfbac59fcda7b4cf54107bb9e3be6d92521823d8c532388723addffceceRed Hat Security Advisory 2016-0678-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 7 to version 7 Update 101. Security Fix: This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
63a203916e8946bb559b14bc46107ba6a1973b9155ec04c0330c9d74b5feb030Red Hat Security Advisory 2016-0677-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 8 to version 8 Update 91. Security Fix: This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
998b4e01ddd98bf99e316038c9799396bb83ab95f8c668a5bfc4e7d7fb84c82bRed Hat Security Advisory 2016-0676-01 - The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix: Multiple flaws were discovered in the Serialization and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely bypass Java sandbox restrictions. It was discovered that the RMI server implementation in the JMX component in OpenJDK did not restrict which classes can be deserialized when deserializing authentication credentials. A remote, unauthenticated attacker able to connect to a JMX port could possibly use this flaw to trigger deserialization flaws.
4957fba7cfab0271e2e2a1b7fecd59abf0cb0d1af97fb5c03cb515635a2e3346Red Hat Security Advisory 2016-0675-01 - The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix: Multiple flaws were discovered in the Serialization and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely bypass Java sandbox restrictions. It was discovered that the RMI server implementation in the JMX component in OpenJDK did not restrict which classes can be deserialized when deserializing authentication credentials. A remote, unauthenticated attacker able to connect to a JMX port could possibly use this flaw to trigger deserialization flaws.
31475770043462674735810ea8ce72f5a339a55eb8567815e81b1270ae16e78eOpenTSDB suffers from a remote code execution vulnerability.
ef629a5afda4799864a0738de815ff969d73a1592c4e3b2c08cc18011241292aWebutler CMS version 3.2 suffers from a cross site request forgery vulnerability.
c60c42cc4336feb6ee9c83dcae2abc556f909850f348817fea74aa3881349b35WordPress iThemes Security suffers from insecure backup and logfile generation vulnerabilities.
e3308d1fef8c8d026f085134a8bb431d3946592ebc3e93771257b503662abd8d86 bytes small Linux/x86_64 bindshell shellcode that binds to port 5600.
f415d1d03a37b33543e9ec01d985ee645f372c6796387430d18867f67f06632fShellsploit lets you generate customized shellcodes, backdoors, and injectors for various operating systems. It also has obfuscation abilities.
0d83b41f945d8f4cd97823b67e89a5980fd04776e6b7f23185f7d09ecd0d74ec
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed