114 matches found
Stable Channel Update for ChromeOS
The Stable channel is being updated to 106.0.5249.112 Platform version: 15054.98.0 for most ChromeOS devices and will be rolled out over the next few days. For Chrome browser fixes, see the Chrome Desktop release announcement. If you find new issues, please let us know one of the following ways:...
Mageia: Security Advisory (MGASA-2022-0357)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10139-1 Rating: important References: 1203808 Cross-References: CVE-2022-3201 CVE-2022-3304 CVE-2022-3305 CVE-2022-3306 CVE-2022-3307 CVE-2022-3308 CVE-2022-3309 CVE-2022-3310 CVE-2022-3311 CVE-2022-3312...
Debian DSA-5244-1 : chromium - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5244 advisory. - Insufficient validation of untrusted input in DevTools in Google Chrome on Chrome OS prior to 105.0.5195.125 allowed an attacker who convinced a user to install...
CVE-2022-3306
creationtimestamp| type| source ---|---|--- 2022-09-29 15:30:06+00:00| seen| https://t.me/truesecator/3490 2022-11-01 23:23:39+00:00| seen| https://t.me/cibsecurity/52420...
Google Chrome < 106.0.5249.61 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 106.0.5249.61. It is, therefore, affected by multiple vulnerabilities as referenced in the 202209stable-channel-update-for-desktop27 advisory. - Use after free in ChromeOS Notifications in Google Chrome on ChromeOS prior ...
ProFTPd 1.3.5 - (mod_copy) Remote Command Execution Exploit (2)
Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21 Connecting to the targe...
ProFTPd 1.3.5 Remote Command Execution
Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Date: 25/05/2021 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21...
ProFTPd 1.3.5 - 'mod_copy' Remote Command Execution (2)
Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Date: 25/05/2021 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21...
Mail.ru: [files.ucs.ru] ProFTPd mod_copy Arbitrary Read/Write
CVE-2015-3306 in opened to external network FTP server on files.ucs.ru...
Cisco FTD Software DHCP DoS (cisco-sa-asaftd-dos-qk8cTGLz)
According to its self-reported version, Cisco FTD Software is affected by a denial-of-service DoS vulnerability in the DHCP component due to incorrect processing of certain DHCP packets. An authenticated, remote attacker can exploit this, by sending a crafted DHCP packet to the affected device, t...
CVE-2020-3306
CVE-2020-3306 affects Cisco ASA Software and Cisco Firepower Threat Defense (FTD) DHCP module. The root cause is incorrect processing of certain DHCP packets, which an unauthenticated remote attacker can exploit by sending a crafted DHCP packet to cause an on-device denial of service. Public docu...
CVE-2019-12815
An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...
CVE-2019-12815
An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...
CVE-2019-12815
An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...
Ubuntu: Security Advisory (USN-3306-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-3306
CVE-2017-3306 affects Oracle MySQL Enterprise Monitor (Monitoring: Server subcomponent). Affected versions are 3.1.6.8003 and earlier, 3.2.1182 and earlier, and 3.3.2.1162 and earlier. The vulnerability is exploitable by a high-privilege attacker with network access via multiple protocols and req...
CVE-2016-6531
Open Dental 16.1 and earlier has a hardcoded MySQL root password, which allows remote attackers to obtain administrative access by leveraging access to intranet TCP port 3306. NOTE: the vendor disputes this issue, stating that the "vulnerability note ... is factually false ... there is indeed a...
Hardcoded credentials
Open Dental 16.1 and earlier has a hardcoded MySQL root password, which allows remote attackers to obtain administrative access by leveraging access to intranet TCP port 3306. NOTE: the vendor disputes this issue, stating that the "vulnerability note ... is factually false ... there is indeed a...
CVE-2016-6531
Open Dental 16.1 and earlier has a hardcoded MySQL root password, which allows remote attackers to obtain administrative access by leveraging access to intranet TCP port 3306. NOTE: the vendor disputes this issue, stating that the "vulnerability note ... is factually false ... there is indeed a...