Latest Exploits

Syndicate content Packet Storm
Packet Storm - Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
Updated: 58 min 21 sec ago

Dell SonicWall Scrutinizer 11.0.1 SQL Injection / Code Execution

Tue, 05/10/2016 - 09:02
Dell SonicWall Scrutinizer versions 11.0.1 and below setUserSkin/deleteTab SQL injection / remote code execution exploit that leverages a vulnerability found by Brandon Perry in July of 2014.
Categories: Security

Micrsoft Windows BSOD Privilege Escalation

Tue, 05/10/2016 - 08:33
Microsoft Windows blue screen of death exploit that leverages a privilege escalation vulnerability as defined in CVE-2016-0051.
Categories: Security

Skype Manager Filter Bypass

Tue, 05/10/2016 - 08:03
manager.skype.com suffered from a filter bypass vulnerability.
Categories: Security

WordPress Event Registration 6.02.02 XSS / SQL Injection

Sun, 05/08/2016 - 23:44
WordPress Event Registration plugin version 6.02.02 suffers from cross site scripting and remote SQL injection vulnerabilities.
Categories: Security

PHPWebFTP 3.3b Cross Site Scripting

Sun, 05/08/2016 - 18:02
PHPWebFTP version 3.3b suffers from cross site scripting vulnerabilities.
Categories: Security

ImageMagick Delegate Arbitrary Command Execution

Fri, 05/06/2016 - 11:14
This Metasploit module exploits a shell command injection in the way "delegates" (commands for converting files) are processed in ImageMagick versions <= 7.0.1-0 and <= 6.9.3-9 (legacy). Since ImageMagick uses file magic to detect file format, you can create a .png (for example) which is actually a crafted SVG (for example) that triggers the command injection. Tested on Linux, BSD, and OS X. You'll want to choose your payload carefully due to portability concerns. Use cmd/unix/generic if need be.
Categories: Security

Ruby on Rails Development Web Console (v2) Code Execution

Fri, 05/06/2016 - 11:14
This Metasploit module exploits a remote code execution feature of the Ruby on Rails framework. This feature is exposed if the config.web_console.whitelisted_ips setting includes untrusted IP ranges and the web-console gem is enabled.
Categories: Security

IPFire XSS / CSRF / Command Execution

Wed, 05/04/2016 - 09:48
IPFire versions prior to 2.19 Update Core 101 suffer from cross site request forgery, cross site scripting, and remote command execution vulnerabilities.
Categories: Security

TRN Threaded Reader 3.6-23 Stack Buffer Overflow

Wed, 05/04/2016 - 09:46
Threaded USENET news reader version 3.6-23 suffers from a stack buffer overflow vulnerability.
Categories: Security

DynaTrace UEM 6.3.x / 6.2.x / 6.1.x Cookie Manipulation

Tue, 05/03/2016 - 22:33
DynaTrace UEM versions 6.3.x, 6.2.x, and 6.1.x suffer from a cookie manipulation vulnerability that can cause a server-side crash.
Categories: Security

OXID eShop CE 4.9.7 Path Traversal / Privilege Escalation

Tue, 05/03/2016 - 18:19
OXID eShop Community Edition version 4.9.7 suffers from path traversal and privilege escalation vulnerabilities.
Categories: Security

Swagger Editor 2.9.9 Cross Site Scripting

Tue, 05/03/2016 - 18:18
Swagger Editor version 2.9.9 suffers from a cross site scripting vulnerability.
Categories: Security

NetCommWireless HSPA 3G10WVE Authentication Bypass / Code Execution

Tue, 05/03/2016 - 18:16
NetCommWireless HSPA 3G10WVE suffers from authentication bypass and remote code execution vulnerabilities.
Categories: Security

libxml 2.9.2 Stack Overflow

Tue, 05/03/2016 - 18:14
libxml versions prior to 2.9.3 suffer from a stack overflow vulnerability when parsing a malicious file.
Categories: Security

Zabbix Agent 3.0.1 mysql.size Shell Command Injection

Tue, 05/03/2016 - 18:04
Zabbix Agent version 3.0.1 suffers from a remote shell command injection vulnerability via mysql.size.
Categories: Security

Linux double-fdput() Use-After-Free

Tue, 05/03/2016 - 09:44
Linux 4.4 suffers from a use-after-free vulnerability in double-fdput().
Categories: Security

McAfee Relocation Processing Memory Corruption

Tue, 05/03/2016 - 09:02
Fuzzing packed executables with McAfee's LiveSafe version 14.0 on Windows found a signedness error parsing sections and relocations.
Categories: Security

Linux BPF Maps Reference Count Overflow

Tue, 05/03/2016 - 08:33
Linux suffers from a reference count overflow using BPF maps.
Categories: Security

Linux perf_event_open() / execve() Race Condition

Mon, 05/02/2016 - 23:44
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid programs.
Categories: Security

CMS Made Simple Cache Poisoning

Mon, 05/02/2016 - 21:22
CMS Made Simple versions prior to 2.1.3 and 1.12.2 suffer from a web server cache poisoning vulnerability.
Categories: Security