WPS attack tool: Penetrator-WPS

This is experimental tool that is capable of attacking multiple WPS-enabled wireless access points in real time Penetrator-WPS utilizes the pixie-dust attack every time it receives M3 message, unless it is disabled with -P – pixie-dust requires pixiewps to be installed. Installation First, you ne...

SS-2015-015: XSS in dev/build returnURL Parameter

More info at https://www.silverstripe.org/software/download/security-releases/ss-2015-015/...

SUSE SLED11 / SLES11 Security Update : net-snmp (SUSE-SU-2015:1524-1)

net-snmp was updated to fix one security vulnerability and several bugs. - fix a vulnerability within the snmppduparse function of snmpapi.c. bnc940188, CVE-2015-5621 - Add build requirement 'procps' to fix a net-snmp-config error. bsc935863 - add support for /dev/shm in snmp hostmib bnc853382,...

Null pointer dereference

The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...

CVE-2015-4692

The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...

CVE-2015-4692

The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...

CVE-2015-4692

CVE-2015-4692 affects the Linux kernel’s KVM code: in arch/x86/kvm/lapic.h, the kvm_apic_has_events() function may dereference a NULL pointer via an ioctl to /dev/kvm, enabling a local attacker to cause a denial of service (system crash). The description indicates the issue exists through kernel ...

CVE-2015-4692

The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...

SilverStripe CMS & Framework Open Redirect Vulnerability

SilverStripe CMS & Framework is a CMS content management system. An open redirect vulnerability exists in SilverStripe CMS & Framework version 3.1.13. A remote attacker can exploit the vulnerability by using the URL in the 'returnURL' parameter of the dev/build URI to redirect the user to an...

CVE-2015-4692

The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...

SilverStripe CMS Unvalidated Redirect & XSS vulnerabilities

Credits: hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-SILVERSTRIPE0607.txt Vendor: ================================ http://www.silverstripe.org/software/download Product: ================================ SilverStripe CMS & Framework v3.1.13...

Scientific Linux Security Update : kernel on SL7.x x86_64 (20150512)

A buffer overflow flaw was found in the way the Linux kernel's Intel AES-NI instructions optimized version of the RFC4106 GCM mode decryption functionality handled fragmented packets. A remote attacker could use this flaw to crash, or potentially escalate their privileges on, a system over a...

WordPress Plugin MiwoFTP 1.0.5 - Arbitrary File Download (2)

Exploit Title : WordPress MiwoFTP Plugin 1.0.5 = Arbitrary File Download Exploit Author : Dadou Dz Software Link : Premium Dork Google: inurl:commiwoftp Affected version: 1.0.5 Vendor Homepage: http://miwisoft.com/wordpress-plugins/miwoftp-wordpress-file-managerchangelog Date : 2015-04-20 Tested ...

Debian DSA-3188-1 : freetype - security update

Mateusz Jurczyk discovered multiple vulnerabilities in Freetype. Opening malformed fonts may result in denial of service or the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

Debian Security Advisory DSA 3194-1 (libxfont - security update)

Ilja van Sprundel, Alan Coopersmith and William Robinet discovered multiple issues in libxfont OpenVAS Vulnerability Test $Id: deb3194.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3194-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright:...

Linux Kernel (x86-64) - Rowhammer Privilege Escalation

Linux Kernel x86-64 - Rowhammer Privilege Escalation Sources: http://googleprojectzero.blogspot.ca/2015/03/exploiting-dram-rowhammer-bug-to-gain.html https://code.google.com/p/google-security-research/issues/detail?id=283 Full PoC:...

Ubuntu Vivid Upstart Privilege Escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Although just reported to Ubuntu, this minor dev-branch issue was already made public. As the launchpad/lkml/... feed-miners should not play all the games alone, and as others may want to learn how beginner errors still make it into packages of quite...

An Open Source SIP Sniffer: pcapsipdump

An open-source libpcap-based SIP sniffer with per-call sorting capabilities. Listens on a network interface and saves SIP/RTP sessions to files. Each session goes in a separate, fancy-named .pcap file. Those could be opened with tcpdump, wireshark and friends. SIP/RTP sessions are written to disk...

Debian Security Advisory DSA 3129-1 (rpm - security update)

Two vulnerabilities have been discovered in the RPM package manager. CVE-2013-6435 Florian Weimer discovered a race condition in package signature validation. CVE-2014-8118 Florian Weimer discovered an integer overflow in parsing CPIO headers which might result in the execution of arbitrary code...

Debian: Security Advisory (DSA-3129-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...