>> ARCHIVE: 2016-11

EasyPHP Devserver version 16.1.1 suffers from cross site request forgery and remote code execution vulnerabilities.

A specially crafted web-page can cause Microsoft Internet Explorer 8 to attempt to read data beyond the boundaries of a memory allocation. The issue does not appear to be easily…

Core Security Technologies Advisory – TP-LINK TDDP suffers from buffer overflow and missing authentication vulnerabilities.

Linux kernels 2.6.32-642 and 3.16.0-4 inode integer overflow proof of concept exploit.

A specially crafted web-page can cause the blink rendering engine used by Google Chrome and Chromium to continue to use a speech recognition API object after the memory block that…

Linux kernel version 2.6.18 suffers from a move_pages() information leak vulnerability.

Linux kernel version 2.6.32-rc1 x86_64 register leak proof of concept code.

Linux kernel versions 2.6.10 up to but not including 2.6.31.5 pipe.c privilege escalation exploit.

This Metasploit module attempts to exploit a netfilter bug on Linux Kernels before 4.6.3, and currently only works against Ubuntu 16.04 (not 16.04.1) with kernel 4.4.0-21-generic. Several conditions have to…