Global Socket is a tool for moving data from here to there, securely, fast, and through NAT and firewalls. It uses the Global Socket Relay Network to connect TCP pipes, has end-to-end encryption (using OpenSSL's SRP / RFC-5054), AES-256 and key exchange using 4096-bit Prime, requires no PKI, has Perfect Forward Secrecy, and TOR support.
70fae385cd6c9bbcc73c17efabd236f0a0bfe00d11b0c9360651ec7e4baf42c2
jSQL Injection is a lightweight application used to find database information from a distant server. jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in various other distributions like Pentest Box, Parrot Security OS, ArchStrike and BlackArch Linux. This is the source code release.
3d886ecab5d05daf6bf070120fb7231e28233a15a14067aaed248d57e0933530
Ubuntu Security Notice 4745-1 - David Benjamin discovered that OpenSSL incorrectly handled comparing certificates containing a EDIPartyName name type. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. Tavis Ormandy discovered that OpenSSL incorrectly handled parsing issuer fields. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. Various other issues were also addressed.
594943b8b44945ac34249f81d528339b7a0f2254e67a4e5d515bb1a700ce41c6
Unified Remote version 3.9.0.2463 suffers from a remote code execution vulnerability.
2b714b85c0360e22383d0e56c3e1e4fde06958f9dd60742fccaabf4d718bee20
Red Hat Security Advisory 2021-0651-01 - The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly.
b141a88dbee4ac51f7b74c12cf6659c2d5d46384da85effb2b694f081474c820
Backdoor.Win32.Delf.adag malware suffers from hardcoded credential and traversal vulnerabilities.
94aed5354752379bca54a4e97bd8dc1b7f68326f48695b3b3394b0545154646c
Red Hat Security Advisory 2021-0650-01 - The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly.
4703da5a23ba683169ab3bc5b27ed2f03e7e5f8c27614c1036f3d5a5acc6dd27
LayerBB version 1.1.4 suffers from a remote SQL injection vulnerability.
1756a39712d3f0773c0442aa0ff4b759e2d8d376b41f5e23d0faebe744422bae
Python jsonpickle version 2.0.0 suffers from a remote code execution vulnerability.
989e0c76e8e57c215ef47a977cdf6f2cac709288488aafa960f9e2f90689e6a0
Red Hat Security Advisory 2021-0648-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include buffer overflow and information leakage vulnerabilities.
475672b643449b95b848767bb9b9c6261ce5c306052fd381fee2370d4ef36c9b
Backdoor.Win32.Agent.xw malware suffers from denial of service and null pointer vulnerabilities.
29c8a4f75f6b68316ef2228de23f4c28a5e7569884c53c95c0369a199a931ed4
Whitepaper called Active Directory Penetration Testing. Written in Turkish.
ea2487963fa1d18c78f0962ee60bb105f6a02d1297c01cf32cf2313bc0174348
VMware vCenter version 6.5 and 7.0 remote code execution proof of concept exploit.
9c96c0db7f03de2a504caab808f8c52d5539b617a600a774abb1b8abb139a92b
Microsoft Exchange Server has a flaw that exists within the HasValidCanary function inside of the Canary15 class. The issue results in an insecure generation of cross site request forgery tokens that can be used to install an office-addins. An attacker can leverage this vulnerability to escalate privileges to an administrative account.
ff865496e0bee101f53c29c316899cda3609c752370953dcd22a507052e91f6b
SLMail version 5.1.0.4420 remote code execution exploit.
f547b0e564ad998d91976d1ed61dd02d0fc085b65dfaace5584455de5438b2a2
Softros LAN Messenger version 9.6.4 suffers from an unquoted service path vulnerability.
a4c9023d0e4a34ca6650be1d13a5deeb747a456fc1d90024d28d60dcf2015fef