[webapps] – Cisco EPC 3925 – Multiple Vulnerabilities
Posted by deepcore under Security (No Respond)
Archive for September, 2016
Cherry Music 0.35.1 Arbitrary File Disclosure
Posted by deepcore under exploit (No Respond)
Cherry Music version 0.35.1 suffers from an arbitrary file disclosure vulnerability.
wdCalendar 2 SQL Injection
Posted by deepcore under exploit (No Respond)
wdCalendar version 2 suffers from a remote SQL injection vulnerability.
Antisip libosip2 4.1.0 Heap Buffer Overflow / Denial Of Service
Posted by deepcore under exploit (No Respond)
Antisip libosip2 version 4.1.0 suffers from heap buffer overflow vulnerabilities that can lead to a denial of service.
ASUS DSL-X11 ADSL Router Unauthenticated Remote DNS Changer
Posted by deepcore under exploit (No Respond)
ASUS DSL-X11 ADSL router unauthenticated remote DNS changer exploit.
Open-Xchange App Suite 7.8.2 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Open-Xchange App Suite versions 7.8.2 and below suffer from multiple cross site scripting vulnerabilities.
Open-Xchange Guard 2.4.2 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Open-Xchange Guard versions 2.4.2 and below suffer from multiple cross site scripting vulnerabilities.
Battle.Net 1.5.0.7963 Privilege Escalation
Posted by deepcore under exploit (No Respond)
Battle.Net version 1.5.0.7963 suffers from an insecure file permissions privilege escalation vulnerability.
Android getpidcon Binder Service Replacement
Posted by deepcore under exploit (No Respond)
Android has an issue where racy getpidcon usage permits binder service replacement.
[remote] – Apache Mina 2.0.13 – Remote Command Execution
Posted by deepcore under Security (No Respond)