Debian DSA-4501-1 : libreoffice - security update

It was discovered that the code fixes to address CVE-2018-16858 and CVE-2019-9848 were not complete. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4501. The text itself is copyright C Software in the Public...

Qualys Policy Compliance Notification: Policy Library Updates (June)

Qualys’ library of built-in policies makes it easy to comply with the security standards and regulations that are most commonly used and adhered to. Qualys provides a wide range of policies, including many that have been certified by CIS as well as the ones based on security guidelines from OS an...

Debian DSA-4486-1 : openjdk-11 - security update

Several vulnerabilities have been discovered in the OpenJDK Java runtime, resulting in information disclosure, denial of service or bypass of sandbox restrictions. In addition the implementation of elliptic curve cryptography was modernised. C Tenable Network Security, Inc. The descriptive text a...

The vulnerability of the _asn1_expand_object_id function (p_tree) in the Libtasn1 library of the Debian GNU/Linux operating system, related to resource management errors, allows a perpetrator to cause a service failure.

The vulnerability of the asn1expandobjectid function in the Libtasn1 library for the Debian GNU/Linux operating system is related to resource management errors. Exploiting this vulnerability could allow a malicious actor to cause service failures...

Debian DSA-4472-1 : expat - security update

It was discovered that Expat, an XML parsing C library, did not properly handled XML input including XML names that contain a large number of colons, potentially resulting in denial of service. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Debian DSA-4468-1 : php-horde-form - security update

A path traversal vulnerability due to an unsanitized POST parameter was discovered in php-horde-form, a package providing form rendering, validation, and other functionality for the Horde Application Framework. An attacker can take advantage of this flaw for remote code execution. C Tenable Netwo...

Debian DSA-4440-1 : bind9 - security update

Multiple vulnerabilities were found in the BIND DNS server : - CVE-2018-5743 Connection limits were incorrectly enforced. - CVE-2018-5745 The 'managed-keys' feature was susceptible to denial of service by triggering an assert. - CVE-2019-6465 ACLs for zone transfers were incorrectly enforced for...

Debian DSA-4436-1 : imagemagick - security update

This update fixes two vulnerabilities in Imagemagick: Memory handling problems and missing or incomplete input sanitising may result in denial of service, memory disclosure or the execution of arbitrary code if malformed TIFF or Postscript files are processed. C Tenable Network Security, Inc. The...

Debian DSA-4414-1 : libapache2-mod-auth-mellon - security update

Several issues have been discovered in Apache module authmellon, which provides SAML 2.0 authentication. - CVE-2019-3877 It was possible to bypass the redirect URL checking on logout, so the module could be used as an open redirect facility. - CVE-2019-3878 When modauthmellon is used in an Apache...

Debian DSA-4410-1 : openjdk-8 - security update

A memory disclosure vulnerability was discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in information disclosure or bypass of sandbox restrictions. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

Debian DSA-4406-1 : waagent - security update

Francis McBratney discovered that the Windows Azure Linux Agent created swap files with world-readable permissions, resulting in information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4406. T...

MySQL User-Defined (Linux) x32 / x86_64 - sys_exec Function Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits Exploit Title: MySQL User-Defined Linux x32 / x8664 sysexec function local privilege escalation exploit Date: 24/01/2019 Exploit Author: d7x Vendor Homepage: https://www.mysql.com Software Link: www.mysql.com Version: MySQL 4.x/5.x Tested on:...

Debian DSA-4372-1 : ghostscript - security update

Tavis Ormandy discovered a vulnerability in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service or the execution of arbitrary code if a malformed Postscript file is processed despite the -dSAFER sandbox being enabled. C Tenable Network Security, Inc. The...

Debian DSA-4324-1 : firefox-esr - security update

Multiple security issues have been found in the Mozilla Firefox web browser, which could result in the execution of arbitrary code, privilege escalation or information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

Debian DSA-4304-1 : firefox-esr - security update

Two security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code and local information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...

Debian DSA-4291-1 : mgetty - security update

Two input sanitization failures have been found in the faxrunq and faxq binaries in mgetty, a smart modem getty replacement. An attacker could leverage them to insert commands via shell metacharacters in jobs id and have them executed with the privilege of the faxrunq/faxq user. C Tenable Network...

PLC Wireless Router GPN2.4P21-C-CN - Denial of Service

Exploit Title: PLC Wireless Router GPN2.4P21-C-CN Unauthenticated Remote Reboot Date: 8/12/2018 Exploit Author: Chris Rose Affected Model : GPN2.4P21-C-CNFirmware: W2001EN-00 Vendor: ChinaMobile Tested on: Debian Linux Shodan dork- title:PLC CVE: None Description: PLC Wireless Router's are...

PLC Wireless Router GPN2.4P21-C-CN Denial Of Service

Exploit Title: PLC Wireless Router GPN2.4P21-C-CN Unauthenticated Remote Reboot Date: 8/12/2018 Exploit Author: Chris Rose Affected Model : GPN2.4P21-C-CNFirmware: W2001EN-00 Vendor: ChinaMobile Tested on: Debian Linux Shodan dork- title:PLC CVE: None Description: PLC Wireless Router's are...

PLC Wireless Router GPN2.4P21-C-CN - Denial of Service

PLC Wireless Router GPN2.4P21-C-CN - Denial of Service Exploit Title: PLC Wireless Router GPN2.4P21-C-CN Unauthenticated Remote Reboot Date: 8/12/2018 Exploit Author: Chris Rose Affected Model : GPN2.4P21-C-CNFirmware: W2001EN-00 Vendor: ChinaMobile Tested on: Debian Linux Shodan dork- title:PLC...

PLC Wireless Router GPN2.4P21-C-CN - Denial of Service

Exploit for hardware platform in category dos / poc Exploit Title: PLC Wireless Router GPN2.4P21-C-CN Unauthenticated Remote Reboot Exploit Author: Chris Rose Affected Model : GPN2.4P21-C-CNFirmware: W2001EN-00 Vendor: ChinaMobile Tested on: Debian Linux Shodan dork- title:PLC CVE: None...