10 - 2018 - :: Deepquest ::

[EXPLOIT]

>> Microsoft Edge Chakra JIT Type Confusion Bug

USER: deepcore // 2018-10-11 // 0 CMT

Microsoft Edge suffers from a Chakra JIT type confusion bug.

[EXPLOIT]

>> WhatsApp RTP Processing Heap Corruption

USER: deepcore // 2018-10-11 // 0 CMT

WhatsApp suffers from a heap corruption vulnerability in RTP processing.

[EXPLOIT]

>> Ghostscript executeonly Bypass

USER: deepcore // 2018-10-11 // 0 CMT

Ghostscript suffers from an executeonly bypass with errorhandler setup.

[EXPLOIT]

>> VLC Media Player 2.2.8 MKV Use-After-Free

USER: deepcore // 2018-10-11 // 0 CMT

This Metasploit module exploits a use-after-free vulnerability in VideoLAN VLC versions 2.2.8 and below. The vulnerability exists in the parsing of MKV files and affects both 32 bits and 64…

[APPLE]

>> Apple Security Advisory 2018-10-08-1

USER: deepcore // 2018-10-11 // 0 CMT

Apple Security Advisory 2018-10-08-1 – iOS 12.0.1 is now available and addresses lock screen issues.

[APPLE]

>> Apple Security Advisory 2018-10-08-2

USER: deepcore // 2018-10-11 // 0 CMT

Apple Security Advisory 2018-10-08-2 – iCloud for Windows 7.7 is now available and addresses code execution vulnerabilities.

[SECURITY]

>> [webapps] jQuery-File-Upload 9.22.0 – Arbitrary File Upload

USER: deepcore // 2018-10-11 // 0 CMT

jQuery-File-Upload 9.22.0 – Arbitrary File Upload

[SECURITY]

>> [webapps] E-Registrasi Pencak Silat 18.10 – 'id_partai' SQL Injection

USER: deepcore // 2018-10-11 // 0 CMT

E-Registrasi Pencak Silat 18.10 – ‘id_partai’ SQL Injection

[SECURITY]

>> [webapps] WAGO 750-881 01.09.18 – Cross-Site Scripting

USER: deepcore // 2018-10-11 // 0 CMT

WAGO 750-881 01.09.18 – Cross-Site Scripting

[SECURITY]

>> [webapps] Wikidforum 2.20 – Cross-Site Scripting

USER: deepcore // 2018-10-11 // 0 CMT

Wikidforum 2.20 – Cross-Site Scripting

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: