Dmitry 1.3a Local Stack Buffer Overflow
Posted by deepcore under exploit (No Respond)
Dmitry (Deepmagic Information Gathering Tool) version 1.3a suffers from a local stack buffer overflow vulnerability.
Archive for April, 2017
Squirrelmail 1.4.22 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Squirrelmail versions 1.4.22 and below suffer from a remote code execution vulnerability.
OpenText Documentum Content Server Privilege Evaluation
Posted by deepcore under exploit (No Respond)
OpenText Documentum Content Server suffers from a privilege evaluation issue using crafted RPC save commands. Two proof of concepts included.
WordPress Ultimate Form Builder Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Ultimate Form Builder plugin suffers from a cross site scripting vulnerability.
Apple Webkit PrototypeMap::createEmptyStructure UXSS
Posted by deepcore under Apple (No Respond)
Microsoft Windows MS17-010 SMB Remote Code Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module uses information disclosure to determine if MS17-010 has been patched or not. Specifically, it connects to the IPC$ tree and attempts a transaction on FID 0. If the status returned is “STATUS_INSUFF_SERVER_RESOURCES”, the machine does not have the MS17-010 patch. This Metasploit module does not require valid SMB credentials in default server […]
Microsoft Windows taskschd.msc Privilege Escalation
Posted by deepcore under exploit (No Respond)
Microsoft Windows taskschd.msc local SYSTEM privilege escalation exploit.
http://samutprakan.labour.go.th/kk.htm
Posted by deepcore under defacement (No Respond)
http://samutprakan.labour.go.th/kk.htm notified by RxR
Tags: defacementVirusChaser 8.0 Buffer Overflow
Posted by deepcore under exploit (No Respond)
VirusChaser version 8.0 SEH buffer overflow exploit.