Directory Traversal And Remote Code Execution (RCE)

git-spindle is vulnerable to directory traversal or remote code execution attacks. The vulnerability exists because it does not perform any sanitization on repourl and reponame from GitHub API, allowing malicious operators of the GitHub server to trigger directory traversal or remote code executi...

HP Data Protector A.09.00 - Arbitrary Command Execution

Exploit for windows platform in category remote exploits !/usr/bin/python Exploit Title: Data Protector Encrypted Communications Date: 26-05-2016 Exploit Author: Ian Lovering Vendor Homepage: http://www8.hp.com/uk/en/software-solutions/data-protector-backup-recovery-software/ Version: A.09.00 and...

Python 2.7 check_multiply_size() Integer Overflow Vulnerability

Several functions within the imageop module are vulnerable to exploitable buffer overflows due to unsafe arithmetic in checkmultiplysize. The problem exists because the check to confirm that size == product / y / x does not take remainders into account. Title: Python 2.7 checkmultiplysize Integer...

SUSE SLED12 / SLES12 Security Update : python (SUSE-SU-2015:1344-1)

This update to python 2.7.9 fixes the following issues : - python-2.7-libffi-aarch64.patch: Fix argument passing in libffi for aarch64 From the version update to 2.7.9 : - contains full backport of ssl module from Python 3.4 PEP466 - HTTPS certificate validation enabled by default PEP476 - SSLv3...