[remote] – Linux/MIPS Kernel NetUSB – Remote Code Execution Exploit
Posted by deepcore under Security (No Respond)
Archive for October, 2015
NetUSB Stack Buffer Overflow
Posted by deepcore under exploit (No Respond)
NetUSB stack buffer overflow denial of service exploit.
Dream CMS 2.3.0 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
Dream CMS allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site. Related to the CSRF issue, an authenticated arbitrary PHP code execution exist. The vulnerability is […]
Zhone Insecure Reference / Password Disclosure / Command Injection
Posted by deepcore under exploit (No Respond)
Zhone ZNID GPON 2426A suffers from insecure direct object reference, password disclosure, command injection, cross site scripting, and privilege escalation vulnerabilities. Versions prior to S3.0.501 are affected.
[webapps] – F5 Big-IP 10.2.4 Build 595.0 Hotfix HF3 – File Path Traversal Vulnerability
Posted by deepcore under Security (No Respond)
F5 Big-IP 10.2.4 Build 595.0 Hotfix HF3 – File Path Traversal Vulnerability
Tags: 0day, remote exploit[remote] – ZHONE < S3.0.501 – Multiple Vulnerabilities
Posted by deepcore under Security (No Respond)
[webapps] – Kerio Control <= 8.6.1 – Multiple Vulnerabilities
Posted by deepcore under Security (No Respond)
[local] – libsndfile 1.0.25 – Heap Overflow
Posted by deepcore under Security (No Respond)
[local] – CDex Genre 1.79 – Stack Buffer Overflow
Posted by deepcore under Security (No Respond)
[webapps] – Netgear Voice Gateway 2.3.0.23_2.3.23 – Multiple Vulnerabilities
Posted by deepcore under Security (No Respond)
