CentOS 7 : file (CESA-2015:2155)

Updated file packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

openldap security update

CentOS Errata and Security Advisory CESA-2015:2131 Updated openldap packages that fix one security issue, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerabili...

file, python security update

CentOS Errata and Security Advisory CESA-2015:2155 Updated file packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS...

Windows Meterpreter Shell, Bind TCP Inline

Connect to victim and spawn a Meterpreter shell. Requires Windows XP SP2 or newer. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 177734 include Msf::Payload::TransportConfig...

Oracle Linux 7 : file (ELSA-2015-2155)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-2155 advisory. - fix CVE-2014-8116 - bump the acceptable ELF program headers count to 2048 - fix CVE-2014-0207 - cdfreadshortsector insufficient boundary check - fix...

openldap: incorrect multi-keyword mode cipherstring parsing

A flaw was found in the way OpenLDAP parsed OpenSSL-style cipher strings. As a result, OpenLDAP could potentially use ciphers that were not intended to be enabled...

file: mconvert incorrect handling of truncated pascal string size

A buffer overflow flaw was found in the way the File Information fileinfo extension processed certain Pascal strings. A remote attacker able to make a PHP application using fileinfo convert a specially crafted Pascal string provided by an image file could cause that application to crash...

binutils: invalid read flaw in libbfd

An integer overflow flaw was found in the way the strings utility processed certain files. If a user were tricked into running the strings utility on a specially crafted file, it could cause the strings executable to crash...

ALPINE-CVE-2015-8100

The net-snmp package in OpenBSD through 5.8 uses 0644 permissions for snmpd.conf, which allows local users to obtain sensitive community information by reading this file...

Debian DSA-3395-1 : krb5 - security update

Several vulnerabilities were discovered in krb5, the MIT implementation of Kerberos. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-2695 It was discovered that applications which call gssinquirecontext on a partially-established SPNEGO context can...

Multiple Vulnerabilities in Mozilla Firefox and Firefox ESR

Mozilla Firefox is an open source web browser.Firefox ESR is an extended support version of Firefox. A security vulnerability exists in Mozilla Firefox's handling of IP address strings with Ogham space characters, which can be exploited by remote attackers to bypass the homology policy of the...

Mozilla Firefox and Firefox ESR Network Security Services Buffer Overflow Vulnerability

Mozilla Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox.Mozilla Network Security Services NSS is a library of network security services. The 'secasn1dparseleaf' function in Mozilla NSS, used in Mozilla Firefox and Firefox ESR, fails to properly restric...

[SECURITY] [DSA 3395-1] krb5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3395-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 06, 2015 https://www.debian.org/security/faq -...

The vulnerability of the Windows Embedded Standard 2009 operating system allows a perpetrator to trigger a service failure or execute arbitrary code.

The Windows Embedded Standard 2009 operating system contains a vulnerability in the NetprPathCanonicalize function of the netapi32.dll module, which is located in the C:\Windows\System32 directory. This function uses unsafe string functions to copy Unicode strings file paths, resulting in stack...

APPLE-SA-2015-09-16-3 iTunes 12.3

APPLE-SA-2015-09-16-3 iTunes 12.3 iTunes 12.3 is now available and addresses the following: iTunes Available for: Windows 7 and later Impact: Applications that use CoreText may be vulnerable to unexpected application termination or arbitrary code execution Description: Multiple memory corruption...

CVE-2015-3826

The MPEG4Extractor::parse3GPPMetaData function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not enforce a minimum size for UTF-16 strings containing a Byte Order Mark BOM, which allows remote attackers to cause a denial of service integer underflow, buffer over-read...

Cisco Prime Collaboration Assurance Multiple Vulnerabilities (cisco-sa-20100217-csa)

According to its self-reported version number, the remote Cisco Prime Collaboration Assurance device is prior to 10.5.1.53684 or is in the 10.6 release branch. It is, therefore, affected by the following vulnerabilities : - A security bypass vulnerability exists in the web framework due to improp...

ActiveState Perl.exe x64 Client 5.20.2 - Crash PoC

Exploit for windows platform in category dos / poc Exploit Title: ActiveState Perl.exe x64 Client Denial of Service v5.20.2 Date: 9-3-2015 Software Link:...

ActiveState Perl.exe x64 Client 5.20.2 - Crash (PoC)

ActiveState Perl.exe x64 Client 5.20.2 - Crash PoC Exploit Title: ActiveState Perl.exe x64 Client Denial of Service v5.20.2 Date: 9-3-2015 Software Link:...

CVE-2015-6243

The dissector-table implementation in epan/packet.c in Wireshark 1.12.x before 1.12.7 mishandles table searches for empty strings, which allows remote attackers to cause a denial of service application crash via a crafted packet, related to the 1 dissectorgetstringhandle and 2...