:: Deepquest ::

GpicView version 0.2.5 buffer overflow crash proof of concept exploit.

WordPress More Fields plugin versions 2.1 and below suffer from a cross site request forgery vulnerability.

A crash due to a use-after-free condition can be observed in an ASAN build of Wireshark (current git master), by feeding a malformed file to tshark.

This script exploits er, unsanitized env var passing in ASAN which leads to file clobbering as root when executing setuid root binaries compiled with ASAN. It uses an overwrite of /etc/ld.so.preload to get root on a vulnerable system. You can supply your own target binary to use for exploitation.

Fiyo CMS version 2.0.6.1 suffers from multiple cross site scripting vulnerabilities.

The Adreno GPU driver for the MSM Linux kernel contains a heap overflow in the IOCTL_KGSL_PERFCOUNTER_QUERY ioctl command. The bug results from an incorrect conversion to a signed type when calculating the minimum count value for the query option. This results in a negative integer being used to calculate the size of a buffer, which […]

Netgear’s ProSafe NMS300 is a network management utility that runs on Windows systems. The application has a file upload vulnerability that can be exploited by an unauthenticated remote attacker to execute code as the SYSTEM user. Two servlets are vulnerable, FileUploadController (located at /lib-1.0/external/flash/fileUpload.do) and FileUpload2Controller (located at /fileUpload.do). This Metasploit module exploits the latter, […]

Apple Security Advisory 2016-02-25-1 – Apple TV 7.2.1 is now available and addresses code execution, information disclosure, access bypass, and various other vulnerabilities.

[Hebrew] Digital Whisper Security Magazine #70

Crouzet em4 soft 1.1.04 and M3 soft 3.1.2.0 – Insecure File Permissions