Subscribe via feed.
Archive for July, 2016

AppArmor aa_fs_seq_hash_show Reference Count Leak

Posted by deepcore under exploit (No Respond)

AppArmor has a reference count leak in aa_fs_seq_hash_show that can be used to overflow the reference counter and trigger a kernel use-after-free.

Zoll Checklist 1.2.2 Script Insertion

Posted by deepcore under exploit (No Respond)

Zoll Checklist version 1.2.2 suffers from a malicious script insertion vulnerability.

Saveya Script Insertion

Posted by deepcore under exploit (No Respond)

Saveya suffers from a malicious script insertion vulnerability.

Zortam Media Studio 20.60 Buffer Overflow

Posted by deepcore under exploit (No Respond)

Zortam Media Studio version 20.60 suffers from a buffer overflow vulnerability.

Exponent CMS 2.3.9 XSS / User Injection

Posted by deepcore under exploit (No Respond)

Exponent CMS version 2.3.9 suffers from a cross site scripting vulnerability that allows for user account addition.

http://thatakro.go.th/images/index.php

Posted by deepcore under defacement (No Respond)

http://thatakro.go.th/images/index.php notified by sy.t

Tags:

[remote] – Easy File Sharing Web Server 7.2 – SEH Overflow (Egghunter)

Posted by deepcore under Security (No Respond)

Easy File Sharing Web Server 7.2 – SEH Overflow (Egghunter)

Tags: ,

[webapps] – Trend Micro Deep Discovery 3.7, 3.8 SP1 (3.81), and 3.8 SP2 (3.82) – hotfix_upload.cgi filename Remote Code Execution

Posted by deepcore under Security (No Respond)

Trend Micro Deep Discovery 3.7, 3.8 SP1 (3.81), and 3.8 SP2 (3.82) – hotfix_upload.cgi filename Remote Code Execution

Tags: ,

[dos] – WebKit – TypedArray.copyWithin Memory Corruption

Posted by deepcore under Security (No Respond)

WebKit – TypedArray.copyWithin Memory Corruption

Tags: ,

[webapps] – PhpMyAdmin 4.6.2 – Post-Auth Remote Code Execution

Posted by deepcore under Security (No Respond)

PhpMyAdmin 4.6.2 – Post-Auth Remote Code Execution

Tags: ,