CloudMe Sync 1.10.9 – Stack-Based Buffer Overflow (Metasploit)
>> ARCHIVE: 2018-02
CloudMe Sync 1.10.9 – Stack-Based Buffer Overflow (Metasploit)
Parasiting web server process with webshells in permissive environments
http://www.rayong2.go.th/pwn.txt notified by Mr Anonymous
Navarino Infinity versions prior to 2.2 suffer from session fixation and remote blind SQL injection vulnerabilities.
EChat Server version 3.1 suffers from a buffer overflow vulnerability in CHAT.ghp.
Trend Micro Email Encryption Gateway suffers from cleartext transmission of sensitive information, missing authentication, cross site request forgery, cross site scripting, and various other vulnerabilities.
Windows StorSvc SvcMoveFileInheritSecurity suffers from an arbitrary file security descriptor overwrite vulnerability that allows for privilege escalation.
Windows suffers from a Constrained Impersonation Capability privilege escalation vulnerability.
Microsoft IE11 suffers from a use-after-free vulnerability in Js::RegexHelper::RegexReplace.
Wavpack version 5.1.0 suffers from a denial of service vulnerability.