Multi Manage Network Route via Meterpreter Session

This module manages session routing via an existing Meterpreter session. It enables other modules to 'pivot' through a compromised host when connecting to the named NETWORK and SUBMASK. Autoadd will search a session for valid subnets from the routing table and interface list then add routes to...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2017-0015

An update of freetype2,tar,gnutls,linux packages for PhotonOS has been released...

Paragon Initiative Enterprises: There is an vulnerability in https://bridge.cspr.ng where an attacker can users directory

There is an vulnerability in https://bridge.cspr.ng where an attacker can check users directories by this url https://bridge.cspr.ng//users and can also check the documentations...

Trend Micro Smart Protection Complete Receives 5-Star Review from SC Magazine

The best days are the ones you wake up to good news you weren’t expecting, right? Well, earlier this month we woke up to find out the Trend Micro Smart Protection Complete had received a five-star rating and “Best Buy” recommendation from one of the security industries leading publications at SC...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2017-0014

An update of linux packages for PhotonOS has been released...

StoreFront - Keywords Usage

A spaceis allowed between Keywords when multiple keywords are used. Syntax- KEYWORDS:keyword2 keyword2 Example: KEYWORDS: Auto Featured The default syntax is to have one space between two keywords. However, multiple spaces also do not produce any error. There can be spaces after the colon : in th...

NSA's DoublePulsar Kernel Exploit In Use Internet-Wide

If you’re on a red team or have been on the receiving end of a pen-test report from one, then you’ve almost certainly encountered reports of Windows servers vulnerable to Conficker MS08-067, which has been in the wild now for nearly 10 years since the bug was patched. A little more than two weeks...

java-1.8.0-openjdk security and bug fix update

1:1.8.0.131-2.b13 - Backport 'S8153711: REDO JDWP: Memory Leak: GlobalRefs never deleted when processing invokeMethod command' - Resolves: rhbz1442162 1:1.8.0.131-1.b11 - Update to aarch64-jdk8u131-b11. - Drop upstreamed patches for 8147910, 8161993, 8170888 and 8173783. - Update...

java-1.8.0-openjdk security update

1:1.8.0.131-0.b11 - Update to aarch64-jdk8u131-b11. - Drop upstreamed patches for 8147910, 8161993, 8170888 and 8173783. - Update generatesourcetarball.sh to remove patch remnants. - Cleanup tarball creation documentation to avoid duplication. - Resolves: rhbz1438751 1:1.8.0.121-2.b13 - Add...

[SECURITY] Fedora 24 Update: ntp-4.2.6p5-44.fc24

The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which continuously adjusts system time and utilities used to query and configure the ntpd daemon. Perl scripts ntp-wait and ntptrace are in the ntp-perl...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2017-0011

An update of krb5,linux packages for PhotonOS has been released...

CVE-2017-2470

creationtimestamp| type| source ---|---|--- 2017-04-11 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41867...

The power of Wallarm search engine

In this article I would like to show and explain my personal use cases of the Wallarm search engine. The cool thing about it is human readable search with intuitive commands. Just look at this search command before we start: attacks incidents vulns today RCE 502 For a security engineer looking at...

The power of Wallarm search engine

In this article I would like to show and explain my personal use cases of the Wallarm search engine. The cool thing about it is human readable search with intuitive commands. Just look at this search command before we start: attacks incidents vulns today RCE 502 For a security engineer looking at...

Certec EDV GmbH atvise scada (Update A)

CVSS v3 6.1 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Certec EDV GmbH Equipment: atvise scada Vulnerabilities: Cross-Site Scripting, Header Injection UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-17-096-01 Certec EDV GmbH...

Security update for samba (important)

This update for samba fixes the following issues: Security issues fixed: - CVE-2017-2619: Symlink race permits opening files outside share directory bsc1027147. Bugfixes: - Don't package man pages for VFS modules that aren't built bsc993707. - syncreq: make asyncconnectsend "reentrant"; bso12105;...

CVE-2017-2476

creationtimestamp| type| source ---|---|--- 2017-04-04 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41814...

CVE-2017-2474

creationtimestamp| type| source ---|---|--- 2017-04-04 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41793...

[SECURITY] Fedora 26 Update: texlive-2016-33.20160520.fc26

The TeX Live software distribution offers a complete TeX system for a variety of Unix, Macintosh, Windows and other platforms. It encompasses programs for editing, typesetting, previewing and printing of TeX documents in many different languages, and a large collection of TeX macros and font...

[SECURITY] Fedora 26 Update: ntp-4.2.8p10-1.fc26

The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which continuously adjusts system time and utilities used to query and configure the ntpd daemon. Perl scripts are in the ntp-perl package, ntpdate is in...