[ MDVSA-2015:096 ] stunnel

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:096 http://www.mandriva.com/en/support/security/ Package : stunnel Date : March 28, 2015 Affected: Business Server 2.0 Problem Description: Updated stunnel package fixes security vulnerability: A flaw was...

Mandriva Linux Security Advisory : stunnel (MDVSA-2015:096)

Updated stunnel package fixes security vulnerability : A flaw was found in the way stunnel, a socket wrapper which can provide SSL support to ordinary applications, performed reinitialization of PRNG after fork. When accepting a new connection, the server forks and the child process handles the...

CMSmap - Scanner to detect security flaws of the most popular CMSs (WordPress, Joomla and Drupal)

CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs. The main purpose of CMSmap is to integrate common vulnerabilities for different types of CMSs in a single tool. At the moment, CMSs supported by CMSmap are WordPress, Joomla...

Achat 0.150 beta7 - Remote Buffer Overflow (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Achat v0.150 beta7 Buffer Overflow', 'Description' = %q This module exploits an unicode SEH based stack buffer overflow in Achat...

Immunity Canvas: ADOBE_FLASH_DOMAINMEMORY_UAF

Name| adobeflashdomainMemoryuaf ---|--- CVE| CVE-2015-0313 Exploit Pack| CANVAS Description| adobeflashdomainMemoryuaf Notes| CVE Name: CVE-2015-0313 VENDOR: Adobe Notes: This module exploits a use-after free vulnerability on the Flash handling of the ApplicationDomain.currentDomain.domainMemory...

JADX - Java source code from Android Dex and Apk files

Command line and GUI tools for produce Java source code from Android Dex and Apk files. Usage jadx-gui options .dex, .apk, .jar or .class options: -d, --output-dir - output directory -j, --threads-count - processing threads count -f, --fallback - make simple dump using goto instead of 'if', 'for'...

CVE-2014-2667

Race condition in the getmaskedmode function in Lib/os.py in Python 3.2 through 3.5, when existok is set to true and multiple threads are used, might allow local users to bypass intended file permissions by leveraging a separate application vulnerability before the umask has been set to the...

CVE-2014-3174

modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 37.0.2062.94, does not properly consider concurrent threads during attempts to update biquad filter coefficients, which allows remote attackers to cause a denial of service read of...

Facebook - Account's Phone Number Brute-Force

Brute Forces Any Facebook Account's Phone Number if it Got a Linked Phone in it. + Saves All Acounts with their Phone Number Until it Reaches Targets Phone Number its a 2 in 1 Tool Usage Info You Should Only Know The Country Code of The Target and You Should Own a Facebook Account 1.Country Code=...

Bing Dork Scanner - Tool to extract urls from a bing search

This is a simple script with GUI, to extract urls from a bing search. Support only HTTP proxy. Required Perl Modules: LWP Gtk2 Glib uft8 threads threads::shared URI::Escape Download Bing Dork Scanner...

ProcessThreadsView - View process threads information On Windows

ProcessThreadsView is a small utility that displays extensive information about all threads of the process that you choose. The threads information includes the ThreadID, Context Switches Count, Priority, Created Time, User/Kernel Time, Number of Windows, Window Title, Start Address, and more. Wh...

UBB Threads < 6.5.2 Beta (mailthread.php) SQL Injection Exploit

No description provided by source. ?php T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m Vulnerable: UBBCentral SQL Injection Exploit By : MHp0rtal Discovered By: James Bercegay Gr33tz To == Alphaprogrammer , Oilkarchack , TheCephaleX , Str0ke And Iranian Hacking & Security Teams : IHS...

UBB Threads 6.0 - RFI Vulnerability

No description provided by source...

HP Tru64 4.0/5.1 - POSIX Threads Library Local Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21035/info HP Tru64 is prone to a local privilege-escalation vulnerability. Exploiting this issue allows local attackers to execute arbitrary code with superuser privileges. Successful exploits will result in a complete...

Gossamer Threads DBMan 2.0.4 DBMan Information Leakage Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1178/info Requesting an invalid database file from a web server implementing Gossamer Threads DBMan scripts will return a CGI error message containing environmental variables to a remote user without any authorization. Th...

Gossamer Threads Links 2.x User.CGI Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13484/info Gossamer Threads Links is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Savant 3.1 Web Server Overflow

No description provided by source. $Id: savant31overflow.rb 10546 2010-10-04 20:53:51Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms o...

Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt24

June 20, 2014 Led 2.6.32-alt24 - futex: Add another early deadlock detection check - futex: Prevent attaching to kernel threads - futex: Validate atomic acquisition in futexlockpiatomic - futex: Always cleanup owner tid in unlockpi - futex: Make lookuppistate more robust - auditsc: auditkrule mas...

[SECURITY] Fedora 19 Update: nspr-4.10.6-1.fc19

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

[SECURITY] Fedora 20 Update: nspr-4.10.6-1.fc20

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...