9 - 2018 - :: Deepquest ::

[SECURITY]

>> [local] Faleemi Desktop Software 1.8.2 – 'SavePath for ScreenShots' Buffer Overflow (SEH)

USER: deepcore // 2018-09-13 // 0 CMT

Faleemi Desktop Software 1.8.2 – ‘SavePath for ScreenShots’ Buffer Overflow (SEH)

[SECURITY]

>> [local] Chrome OS 10820.0.0 dev-channel – app->VM via garcon TCP Command Socket

USER: deepcore // 2018-09-13 // 0 CMT

Chrome OS 10820.0.0 dev-channel – app->VM via garcon TCP Command Socket

[SECURITY]

>> [webapps] Apache Syncope 2.0.7 – Remote Code Execution

USER: deepcore // 2018-09-13 // 0 CMT

Apache Syncope 2.0.7 – Remote Code Execution

[SECURITY]

>> [local] STOPzilla AntiMalware 6.5.2.59 – Privilege Escalation

USER: deepcore // 2018-09-13 // 0 CMT

STOPzilla AntiMalware 6.5.2.59 – Privilege Escalation

[SECURITY]

>> [dos] MediaTek Wirless Utility rt2870 – Denial of Service (PoC)

USER: deepcore // 2018-09-13 // 0 CMT

MediaTek Wirless Utility rt2870 – Denial of Service (PoC)

[SECURITY]

>> [local] InduSoft Web Studio 8.1 SP1 – 'Tag Name' Buffer Overflow (SEH)

USER: deepcore // 2018-09-13 // 0 CMT

InduSoft Web Studio 8.1 SP1 – ‘Tag Name’ Buffer Overflow (SEH)

[SECURITY]

>> [dos] Clone2Go Video to iPod Converter 2.5.0 – Denial of Service (PoC)

USER: deepcore // 2018-09-13 // 0 CMT

Clone2Go Video to iPod Converter 2.5.0 – Denial of Service (PoC)

[SECURITY]

>> [webapps] Apache Portals Pluto 3.0.0 – Remote Code Execution

USER: deepcore // 2018-09-13 // 0 CMT

Apache Portals Pluto 3.0.0 – Remote Code Execution

[DEFACEMENT]

>> https://mis.kph.go.th/kphItAppWeb/login.jsp

USER: deepcore // 2018-09-12 // 0 CMT

https://mis.kph.go.th/kphItAppWeb/login.jsp notified by Inocent

[EXPLOIT]

>> phpMyAdmin Credential Stealer

USER: deepcore // 2018-09-12 // 0 CMT

This Metasploit module gathers phpMyAdmin credentials from a target linux machine.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: