Sprecher Automation SPRECON-E-C and PU-2433 versions prior to 8.49 suffer from directory traversal, missing authentication, broken authentication, and denial of service vulnerabilities.
Chromium filesystem::mojom::Directory Sandbox Escape
Chromium suffers from a sandbox escape vulnerability via an exposed filesystem::mojom::Directory mojo interface in the catalog service.
IPSwitch MoveIt 9.4 Cross Site Scripting
IPSwitch MoveIt versions 8.1 through 9.4 suffer from a persistent cross site scripting vulnerability.
BMC Server Automation RSCD Agent NSH Remote Command Execution
This Metasploit module exploits a weak access control check in the BMC Server Automation RSCD agent that allows arbitrary operating system commands to be executed without authentication. Note: Under Windows, non-powershell commands may need to be prefixed with ‘cmd /c’.
Packet Storm New Exploits For January, 2018
This archive contains all of the 268 exploits added to Packet Storm in January, 2018.
[dos] WebKit – 'WebCore::FrameView::clientToLayoutViewportPoint' Use-After-Free
WebKit – ‘WebCore::FrameView::clientToLayoutViewportPoint’ Use-After-Free
[papers] Jailbreaking iOS 11.1.2: An adventure into the XNU kernel
Jailbreaking iOS 11.1.2: An adventure into the XNU kernel
[remote] BMC Server Automation RSCD Agent – NSH Remote Command Execution (Metasploit)
BMC Server Automation RSCD Agent – NSH Remote Command Execution (Metasploit)
[remote] Sync Breeze Enterprise 10.4.18 – Remote Buffer Overflow (SEH)
has been added to (https://www.exploit-db.com)