PLC Wireless Router GPN2.4P21-C-CN - Denial of Service

Exploit for hardware platform in category dos / poc Exploit Title: PLC Wireless Router GPN2.4P21-C-CN Unauthenticated Remote Reboot Exploit Author: Chris Rose Affected Model : GPN2.4P21-C-CNFirmware: W2001EN-00 Vendor: ChinaMobile Tested on: Debian Linux Shodan dork- title:PLC CVE: None...

PLC Wireless Router GPN2.4P21-C-CN Denial Of Service

Exploit Title: PLC Wireless Router GPN2.4P21-C-CN Unauthenticated Remote Reboot Date: 8/12/2018 Exploit Author: Chris Rose Affected Model : GPN2.4P21-C-CNFirmware: W2001EN-00 Vendor: ChinaMobile Tested on: Debian Linux Shodan dork- title:PLC CVE: None Description: PLC Wireless Router's are...

Exploit for Race Condition in Debian Debian_Linux

This is a PoC exploit for CVE-2018-8897, a local privilege escal...

Debian DSA-4257-1 : fuse - security update

Jann Horn discovered that FUSE, a Filesystem in USErspace, allows the bypass of the 'userallowother' restriction when SELinux is active including in permissive mode. A local user can take advantage of this flaw in the fusermount utility to bypass the system configuration and mount a FUSE filesyst...

Exploit for Use After Free in Debian Debian_Linux

CVE-2016-9079 A demo exploit of CVE-2016-907...

Debian DSA-4248-1 : blender - security update

Multiple vulnerabilities have been discovered in various parsers of Blender, a 3D modeller/ renderer. Malformed .blend model files and malformed multimedia files AVI, BMP, HDR, CIN, IRIS, PNG, TIFF may result in the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive tex...

Debian DSA-4246-1 : mailman - security update

Toshitsugu Yoneyama of Mitsui Bussan Secure Directions, Inc. discovered that mailman, a web-based mailing list manager, is prone to a cross-site scripting flaw allowing a malicious listowner to inject scripts into the listinfo page, due to not validated input in the hostname field. C Tenable...

Debian DSA-4242-1 : ruby-sprockets - security update

Orange Tsai discovered a path traversal flaw in ruby-sprockets, a Rack-based asset packaging system. A remote attacker can take advantage of this flaw to read arbitrary files outside an application's root directory via specially crafted requests, when the Sprockets server is used in production. C...

Debian DSA-4234-1 : lava-server - security update

Two vulnerabilities were discovered in LAVA, a continuous integration system for deploying operating systems for running tests, which could result in information disclosure of files readable by the lavaserver system user or the execution of arbitrary code via a XMLRPC call. C Tenable Network...

Debian DSA-4231-1 : libgcrypt20 - security update

It was discovered that Libgcrypt is prone to a local side-channel attack allowing recovery of ECDSA private keys. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4231. The text itself is copyright C Software ...

Debian DSA-4227-1 : plexus-archiver - security update

Danny Grander discovered a directory traversal flaw in plexus-archiver, an Archiver plugin for the Plexus compiler system, allowing an attacker to overwrite any file writable by the extracting user via a specially crafted Zip archive. C Tenable Network Security, Inc. The descriptive text and...

Debian DSA-4220-1 : firefox-esr - security update

Ivan Fratric discovered a buffer overflow in the Skia graphics library used by Firefox, which could result in the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4220. The text...

Debian DSA-4214-1 : zookeeper - security update

It was discovered that Zookeeper, a service for maintaining configuration information, enforced no authentication/authorisation when a server attempts to join a Zookeeper quorum. This update backports authentication support. Additional configuration steps are needed, please see...

Exploit for Path Traversal in Debian Debian_Linux

PoC exploit for CVE-2018-11235 ============================== G...

Debian DSA-4211-1 : xdg-utils - security update

Gabriel Corona discovered that xdg-utils, a set of tools for desktop environment integration, is vulnerable to argument injection attacks. If the environment variable BROWSER in the victim host has a '%s' and the victim opens a link crafted by an attacker with xdg-open, the malicious party could...

Debian DSA-4204-1 : imagemagick - security update

This update fixes several vulnerabilities in imagemagick, a graphical software suite. Various memory handling problems or issues about incomplete input sanitizing would result in denial of service or memory disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in th...

Debian DSA-4193-1 : wordpress - security update

Several vulnerabilities were discovered in wordpress, a web blogging tool, which could allow remote attackers to compromise a site via cross-site scripting, bypass restrictions or unsafe redirects. More information can be found in the upstream advisory at...

Debian DSA-4192-1 : libmad - security update

Several vulnerabilities were discovered in MAD, an MPEG audio decoder library, which could result in denial of service if a malformed audio file is processed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

Debian DSA-4190-1 : jackson-databind - security update

It was discovered that jackson-databind, a Java library used to parse JSON and other data formats, improperly validated user input prior to deserializing because of an incomplete fix for CVE-2017-7525. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

Debian DSA-4184-1 : sdl-image1.2 - security update

Multiple vulnerabilities have been discovered in the image loading library for Simple DirectMedia Layer 1.2, which could result in denial of service or the execution of arbitrary code if malformed image files are opened. C Tenable Network Security, Inc. The descriptive text and package checks in...