:: Deepquest ::

http://www.reo8.go.th notified by The WTJ

Cobub Razor version 0.8.0 suffers from a path disclosure vulnerability.

Microsoft Internet Explorer version 11.371.16299.0 suffers from a denial of service vulnerability.

DrayTek Vigor ACS server, a remote enterprise management system for DrayTek routers, uses a vulnerable version of the Adobe / Apache Flex Java library that has a deserialisation vulnerability. This can be exploited by an unauthenticated attacker to achieve remote code execution as root / SYSTEM on all versions until 2.2.2. Exploit code included.

Chrome V8 JIT suffers from a NodeProperties::InferReceiverMaps type confusion vulnerability.

Drupal Avatar Uploader module version 7.x-1.0-beta8 suffers from an arbitrary file download vulnerability.

This Metasploit module exploits an authentication bypass vulnerability in the infosvr service running on UDP port 9999 on various ASUS routers to execute arbitrary commands as root. This Metasploit module launches the BusyBox Telnet daemon on the port specified in the TelnetPort option to gain an interactive remote shell. This Metasploit module was tested successfully […]

This Metasploit module attempts to gain root privileges on Deepin Linux systems by using lastore-daemon to install a package. The lastore-daemon D-Bus configuration on Deepin Linux 15.5 permits any user in the sudo group to install arbitrary system packages without providing a password, resulting in code execution as root. By default, the first user created […]

Adobe Flash suffers from a slab rendering overflow.

Adobe Flash suffers from a sound playing overflow.