Subscribe via feed.
Archive for September, 2015

Flowdock API Bug Bounty #1 – Persistent Web Vulnerability

Posted by deepcore under exploit (No Respond)

The Vulnerability Laboratory Research Team discovered an application-side input validation web vulnerability in the official Flowdock online service web-application.

Thomson CableHome Gateway DWG849 Information Disclosure

Posted by deepcore under exploit (No Respond)

Thomson CableHome Gateway DWG849 suffers from an information disclosure vulnerability.

Total Commander 8.52 Buffer Overflow

Posted by deepcore under exploit (No Respond)

Total Commander version 8.52 buffer overflow exploit.

Total Commander 8.52 Buffer Overflow (Windows 10)

Posted by deepcore under exploit (No Respond)

Total Commander version 8.52 buffer overflow exploit designed to be used on Windows 10.

IntelBras WRN 340 Unauthenticated Remote DNS Changer

Posted by deepcore under exploit (No Respond)

IntelBras WRN 340 (ADSL modem router) remote unauthenticated DNS changing exploit.

ADH-Web IP Camera Access Bypass

Posted by deepcore under exploit (No Respond)

ADH-Web IP Cameras suffer from improper access restrictions and various other vulnerabilities.

SAP Netweaver XML External Entity Injection

Posted by deepcore under exploit (No Respond)

SAP Netweaver versions prior to 7.01 suffer from an XXE injection vulnerability.

Jasig CAS 4.0.1 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Jasig CAS server version 4.0.1 suffers from multiple cross site scripting vulnerabilities.

[dos] – Kaspersky Antivirus CHM Parsing Stack Buffer Overflow

Posted by deepcore under Security (No Respond)

Kaspersky Antivirus CHM Parsing Stack Buffer Overflow

Tags: ,

[dos] – Kaspersky Antivirus ExeCryptor Parsing Memory Corruption

Posted by deepcore under Security (No Respond)

Kaspersky Antivirus ExeCryptor Parsing Memory Corruption

Tags: ,