Subscribe via feed.
Archive for February, 2018

[remote] CloudMe Sync 1.10.9 – Stack-Based Buffer Overflow (Metasploit)

Posted by deepcore under Security (No Respond)

CloudMe Sync 1.10.9 – Stack-Based Buffer Overflow (Metasploit)

Tags: ,

[papers] Parasiting web server process with webshells in permissive environments

Posted by deepcore under Security (No Respond)

Parasiting web server process with webshells in permissive environments

Tags: ,

http://www.rayong2.go.th/pwn.txt

Posted by deepcore under defacement (No Respond)

http://www.rayong2.go.th/pwn.txt notified by Mr Anonymous

Tags:

Navarino Infinity Blind SQL Injection / Session Fixation

Posted by deepcore under exploit (No Respond)

Navarino Infinity versions prior to 2.2 suffer from session fixation and remote blind SQL injection vulnerabilities.

EChat Server 3.1 CHAT.ghp Buffer Overflow

Posted by deepcore under exploit (No Respond)

EChat Server version 3.1 suffers from a buffer overflow vulnerability in CHAT.ghp.

Trend Micro Email Encryption Gateway XSS / Code Execution

Posted by deepcore under exploit (No Respond)

Trend Micro Email Encryption Gateway suffers from cleartext transmission of sensitive information, missing authentication, cross site request forgery, cross site scripting, and various other vulnerabilities.

Windows StorSvc SvcMoveFileInheritSecurity Arbitrary File Security Descriptor Overwrite

Posted by deepcore under exploit (No Respond)

Windows StorSvc SvcMoveFileInheritSecurity suffers from an arbitrary file security descriptor overwrite vulnerability that allows for privilege escalation.

Windows Constrained Impersonation Capability Privilege Escalation

Posted by deepcore under exploit (No Respond)

Windows suffers from a Constrained Impersonation Capability privilege escalation vulnerability.

Microsoft IE11 Js::RegexHelper::RegexReplace Use-After-Free

Posted by deepcore under exploit (No Respond)

Microsoft IE11 suffers from a use-after-free vulnerability in Js::RegexHelper::RegexReplace.

Wavpack 5.1.0 Denial Of Service

Posted by deepcore under exploit (No Respond)

Wavpack version 5.1.0 suffers from a denial of service vulnerability.