An independent vulnerability laboratory research group discovered an auth bypass (pre-auth) web vulnerability in the official Classic Infomedia (Login) CMS (2016-Q1).
>> ARCHIVE: 2016-01
Windows – Sandboxed Mount Reparse Point Creation Mitigation Bypass Redux 2 (MS16-008)
Linux Kernel – prima WLAN Driver Heap Overflow
FreeBSD SCTP ICMPv6 Error Processing Vulnerability
The fix for CVE-2015-2553 can be bypassed to get limited mount reparse points working again for sandbox attacks.
The fix for CVE-2015-2553 can be bypassed to get limited mount reparse points working again for sandbox attacks by abusing anonymous token impersonation.
An independent vulnerability laboratory research group discovered multiple vulnerabilities in the official Kleefa v1.7 content management system.
118 Telecom’s website suffers from a cross site scripting vulnerability.
GRR versions 3.0.0-RC1 and below suffer from a remote code execution vulnerability with privilege escalation through a file upload filter bypass.
Java Platform SE 6 U24 HtmlConverter.exe version 6.0.240.50 suffers from a buffer overflow vulnerability.