Subscribe via feed.
Archive for May, 2018

macOS/iOS ReportCrash Mach Port Replacement

Posted by deepcore under exploit (No Respond)

macOS/iOS ReportCrash suffers from a mach port replacement due to failure to respect MIG ownership rules.

macOS Double mach_port_deallocate In kextd

Posted by deepcore under exploit (No Respond)

macOS suffers from a double mach_port_deallocate in kextd due to failure to comply with MIG ownership rules.

Tpshop 2.0.8 Arbitrary File Download / SSRF

Posted by deepcore under exploit (No Respond)

Tpshop versions 2.0.8 and below suffer from arbitrary file download and server-side request forgery vulnerabilities.

ASUSTOR ADM 3.1.0.RFQ3 Chained Remote Code Execution

Posted by deepcore under exploit (No Respond)

ASUSTOR ADM versions 3.1.0.RFQ3 and below chained exploit that leverages stored cross site scripting, cross site request forgery, path traversal, and file upload vulnerabilities.

Flexense SyncBreeze 10.7 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Flexense SyncBreeze versions 10.1 through 10.7 suffer from a cross site scripting vulnerability.

Flexense DiskPulse 10.7 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Flexense DiskPulse versions 10.1 through 10.7 suffer from a cross site scripting vulnerability.

Watchguard Hard-Coded Credentials / Failed Controls

Posted by deepcore under exploit (No Respond)

WatchGuard Access Points running firmware before version 1.2.9.15 suffer from hard-coded credential, hidden authentication, file upload, and incorrect validation vulnerabilities.

Peel Shopping Cart 9.0.0 Cross Site Request Forgery / Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Peel Shopping Cart version 9.0.0 suffers from cross site request forgery and cross site scripting vulnerabilities.

Packet Storm New Exploits For April, 2018

Posted by deepcore under exploit (No Respond)

This archive contains all of the 181 exploits added to Packet Storm in April, 2018.

Easy MPEG To DVD Burner 1.7.11 Buffer Overflow

Posted by deepcore under exploit (No Respond)

Easy MPEG to DVD Burner version 1.7.11 local buffer overflow SEH exploit.