Microsoft Windows suffers from a Desktop Bridge Virtual Registry arbitrary file read / write privilege escalation vulnerability.
Microsoft Windows suffers from a Desktop Bridge Virtual Registry NtLoadKey arbitrary file read / write privilege escalation vulnerability.
Proof-of-concept exploit for the Ledger Nano S that hides the non-genuine user interface confirmation. Intentionally unreliable to avoid weaponization. It should be trivial to adapt to the Ledger Blue.
WordPress Duplicator plugin version 1.2.32 suffers from a cross site scripting vulnerability.
Android DRM services suffers from a buffer overflow vulnerability.
A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is possible for an unauthenticated remote attacker to exploit it.
Spring Data REST versions prior to 2.6.9 (Ingalls SR9) and 3.0.1 (Kay SR1) suffer from a PATCH request remote code execution vulnerability.
Firefox version 46.0.1 ASM.JS JIT-Spray remote code execution exploit.
Firefox version 44.0.2 ASM.JS JIT-Spray remote code execution exploit.