:: Deepquest ::

Adobe Reader suffers from a CoolType unlimited out-of-bounds stack manipulation vulnerability via the BLEND operator.

This Metasploit module exploits a well known remote code execution exploit after establishing encrypted control communications with a Data Protector agent. This allows exploitation of Data Protector agents that have been configured to only use encrypted control communications. This exploit works by executing the payload with Microsoft PowerShell so will only work against Windows Vista […]

An independent Vulnerability Laboratory Researcher discovered a persistent cross site scripting vulnerability in the official Levo-Slideshow v2.3 wordpress plugin.

The Vulnerability Laboratory Core Research Team discovered a code execution and cross site scripting vulnerability in the microsoft education online service web-application.

An independent Vulnerability Laboratory Researcher discovered a arbitrary file upload vulnerability in the WordPress Levo-Slideshow v2.3 plugin.

http://www.abtnonghang.go.th/index.php notified by ZoRRoKiN

http://www.reo12.moe.go.th/gallery/resource/thumbnail/n0m0r3.htm notified by Team Cyber Legends

Windows x86 WinExec(“cmd.exe”,0) Shellcode

Linux x86 /bin/nc -le /bin/sh -vp13337 Shellcode (56 bytes)

League of Legends Screensaver – Insecure File Permissions Privilege Escalation