Subscribe via feed.
Archive for February, 2018

[dos] Apple iOS 11.2.5 / watchOS 4.2.2 / tvOS 11.2.5 – 'bluetoothd' Memory Corruption

Posted by deepcore under Security (No Respond)

Apple iOS 11.2.5 / watchOS 4.2.2 / tvOS 11.2.5 – ‘bluetoothd’ Memory Corruption

Tags: ,

[webapps] Routers2 2.24 – Cross-Site Scripting

Posted by deepcore under Security (No Respond)

Routers2 2.24 – Cross-Site Scripting

Tags: ,

Advance Loan Management System 2.4.2 Database Disclosure

Posted by deepcore under exploit (No Respond)

Advance Loan Management System version 2.4.2 suffers from a database backup disclosure vulnerability.

Microsoft Edge Chakra JIT CallRegExSymbolFunction Return Check Fail

Posted by deepcore under exploit (No Respond)

Microsoft Edge Chakra JIT fails to check the return type in CallRegExSymbolFunction.

CMS Made Simple 2.1.6 Remote Code Execution

Posted by deepcore under exploit (No Respond)

CMS Made Simple version 2.1.6 suffers from a remote code execution vulnerability during install time.

Chrome V8 PropertyArray Integer Overflow

Posted by deepcore under exploit (No Respond)

Chrome V8 suffers from an integer overflow vulnerability with PropertyArray.

Chrome V8 TranslatedState::MaterializeCapturedObjectAt Caching Bug

Posted by deepcore under exploit (No Respond)

Chrome V8 suffers from a TranslatedState::MaterializeCapturedObjectAt caching bug.

Transmission Torrent Parsing Integer Overflows

Posted by deepcore under exploit (No Respond)

Torrent file parsing in libtransmission suffers from overflow vulnerabilities.

Asterisk 15.2.0 chan_pjsip SUBSCRIBE Stack Corruption

Posted by deepcore under exploit (No Respond)

Asterisk running chan_pjsip suffers from a SUBSCRIBE message stack corruption vulnerability. Vulnerable versions include 15.2.0, 13.19.0, 14.7.5, and 13.11.2.

Asterisk 15.2.0 chan_pjsip SDP fmtp Denial Of Service

Posted by deepcore under exploit (No Respond)

Asterisk version 15.2.0 running chan_pjsip suffers from an SDP message related denial of service vulnerability.