Aggregator

CVE-2010-4437 | Oracle WebLogic up to 7.0.7/8.1.6/9.2.3/10.3.3 Servlet Container (EDB-16959 / Nessus ID 52756)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in Oracle WebLogic up to 7.0.7/8.1.6/9.2.3/10.3.3. Affected by this issue is some unknown functionality of the component Servlet Container. The manipulation leads to an unknown weakness. This vulnerability is handled as CVE-2010-4437. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2006-1965 | aasi media Net Clubs Pro up to 4.0 sendim.cgi cat_id cross site scripting (EDB-27696 / XFDB-25957)

Vuldb Updates
8 months 2 weeks ago
A vulnerability classified as problematic has been found in aasi media Net Clubs Pro up to 4.0. This affects an unknown part of the file sendim.cgi. The manipulation of the argument cat_id leads to basic cross site scripting. This vulnerability is uniquely identified as CVE-2006-1965. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2019-10669 | LibreNMS up to 1.47 collectd.inc.php passthru rrd_cmd injection (ID 154391 / EDB-47375)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in LibreNMS up to 1.47 and classified as critical. This issue affects the function passthru of the file html/includes/graphs/device/collectd.inc.php. The manipulation of the argument rrd_cmd as part of Parameter leads to injection. The identification of this vulnerability is CVE-2019-10669. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2012-5594 | Wireshark up to 1.8.3 sFlow Dissector packet-usb.c denial of service (wnpa-sec-2012-32 / ID 166686)

Vuldb Updates
8 months 2 weeks ago
A vulnerability has been found in Wireshark up to 1.8.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file epan/dissectors/packet-usb.c of the component sFlow Dissector. The manipulation leads to denial of service. This vulnerability is known as CVE-2012-5594. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2012-5593 | Wireshark to 1.6.11/1.8.3 Dissection Engine denial of service (ID 166686 / BID-56729)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Wireshark to 1.6.11/1.8.3. This affects an unknown part of the component Dissection Engine. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2012-5593. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2012-5592 | Wireshark up to 1.8.3 pcap-ng File Parser information disclosure (wnpa-sec-2012-30 / Nessus ID 83573)

Vuldb Updates
8 months 2 weeks ago
A vulnerability has been found in Wireshark up to 1.8.3 and classified as problematic. This vulnerability affects unknown code of the component pcap-ng File Parser. The manipulation as part of File leads to information disclosure. This vulnerability was named CVE-2012-5592. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

subparse: Modular malware analysis artifact collection and correlation framework

Penetration Testing Tools - Metepreter.org
8 months 2 weeks ago

subparse Subparse is a modular framework developed by Josh Strochein, Aaron Baker, and Odin Bernstein. The framework is designed to parse and index malware files and present the information found during the parsing in...

The post subparse: Modular malware analysis artifact collection and correlation framework appeared first on Penetration Testing Tools.

ddos

Managed ad