Disk Pulse Enterprise 9.9.16 – GET Buffer Overflow (Metasploit)
>> ARCHIVE: 2017-09
Disk Pulse Enterprise 9.9.16 – GET Buffer Overflow (Metasploit)
D-Link DGS-3000-10TC suffers from cross site scripting and content spoofing vulnerabilities.
ZKTeco ZKTime Web version 2.0.1.12280 suffers from a cross site request forgery vulnerability.
ZKTeco ZKTime Web version 2.0.1.12280 suffers from an information disclosure vulnerability.
UTStar WA3002G4 ADSL Broadband Modem suffers from multiple authentication bypass vulnerabilities.
iBall ADSL2+ Home Router suffers from multiple authentication bypass vulnerabilities.
Watchguard’s Firebox and XTM appliances suffer from an XML-RPC empty member denial of service vulnerability. Firmware versions below 12.0 were found to be vulnerable.
The Microsoft Windows kernel pool suffers from a memory disclosure vulnerability in win32k!NtGdiGetGlyphOutline.
The Microsoft Windows kernel suffers from a memory disclosure in win32k!NtGdiGetPhysicalMonitorDescription.
The Microsoft Windows kernel pool suffers from a memory disclosure vulnerability in nt!NtSetIoCompletion and nt!NtRemoveIoCompletion.