Adobe Flash appleToRange Out-Of-Bounds Read
Posted by deepcore under exploit (No Respond)
Adobe Flash suffers from an out-of-bounds read in applyToRange.
Archive for September, 2017
NodeJS Debugger Command Injection
Posted by deepcore under exploit (No Respond)
This Metasploit module uses the “evaluate” request type of the NodeJS V8 debugger protocol (version 1) to evaluate arbitrary JS and call out to other system commands. The port (default 5858) is not exposed non-locally in default configurations, but may be exposed either intentionally or via misconfiguration.
[remote] NodeJS Debugger – Command Injection (Metasploit)
Posted by deepcore under Security (No Respond)
[webapps] FLIR Thermal Camera PT-Series (PT-334 200562) – Root Remote Code Execution
Posted by deepcore under Security (No Respond)
FLIR Thermal Camera PT-Series (PT-334 200562) – Root Remote Code Execution
Tags: 0day, remote exploit[webapps] FLIR Thermal Camera F/FC/PT/D – Information Disclosure
Posted by deepcore under Security (No Respond)
[remote] FLIR Thermal Camera F/FC/PT/D – SSH Backdoor
Posted by deepcore under Security (No Respond)
[webapps] FLIR Thermal Camera F/FC/PT/D – Stream Disclosure
Posted by deepcore under Security (No Respond)
[shellcode] Linux/x86_64 – mkdir() 'evil' Shellcode (30 bytes)
Posted by deepcore under Security (No Respond)
[webapps] FLIR Thermal Camera FC-S/PT – Command Injection
Posted by deepcore under Security (No Respond)
[remote] Oracle 9i XDB 9.2.0.1 – HTTP PASS Buffer Overflow
Posted by deepcore under Security (No Respond)