2014 March

Subscribe via feed.

Archive for March, 2014

[local exploits] – QNX 6.4.x/6.5.x ifwatchd – Local root Exploit

Posted by deepcore under exploit (No Respond)

[remote exploits] – Yokogawa CENTUM CS 3000 BKHOdeq.exe Buffer Overflow Vulnerability

Posted by deepcore under exploit (No Respond)

[remote exploits] – Yokogawa CENTUM CS 3000 BKBCopyD.exe Buffer Overflow Vulnerability

Posted by deepcore under exploit (No Respond)

[web applications] – WordPress LayerSlider 4.6.1 CSRF / Traversal Vulnerabilities

Posted by deepcore under exploit (No Respond)

[web applications] – Huawei eSpace Meeting Service 1.0.0.23 Privilege Escalation

Posted by deepcore under exploit (No Respond)

[local exploits] – Oracle VirtualBox 3D Acceleration Memory Corruption Vulnerability

Posted by deepcore under exploit (No Respond)

[web applications] – Apple TV Touch Password Disclosure Vulnerability

Posted by deepcore under exploit (No Respond)

Apple TV Touch Password Disclosure

Posted by deepcore under Apple (No Respond)

Apple TV had an issue where it was logging a user’s Apple ID and password via debug output in logs.

Tags: Apple, ios, osx

Apple Facetime Information Disclosure

Posted by deepcore under Apple (No Respond)

Facetime allows video calls for iOS. Facetime-Audio, added in iOS 7, allows audio only calls. The audio version uses a vulnerable URL scheme which is not used by Facetime Video. The URL Scheme used for Facetime-Audio allows a website to establish a Facetime-audio call to the attacker’s account, revealing the phone number or email address […]

Tags: Apple, ios, osx

[webapps] – LuxCal 3.2.2 – Multiple Vulnerabilities (CSRF/Blind SQL Injection)

Posted by deepcore under Security (No Respond)

LuxCal 3.2.2 – Multiple Vulnerabilities (CSRF/Blind SQL Injection)

Tags: 0day, remote exploit

« Older Entries

Newer Entries »