[local] Zortam MP3 Media Studio 24.15 – Local Buffer Overflow (SEH)
Posted by deepcore under Security (No Respond)
Archive for December, 2018
[webapps] Responsive FileManager 9.13.4 – Multiple Vulnerabilities
Posted by deepcore under Security (No Respond)
[remote] Cisco RV110W – Password Disclosure / Command Execution
Posted by deepcore under Security (No Respond)
http://www.chainatpao.go.th/images/funk.gif
Posted by deepcore under defacement (No Respond)
http://www.chainatpao.go.th/images/funk.gif notified by Imam
Tags: defacementDynamic Loader Oriented Programming – Wiederganger Proof Of Concept
Posted by deepcore under exploit (No Respond)
This paper and proof of concept describes the Wiederganger-Attack, a new attack vector that reliably allows to escalate unbounded array access vulnerabilities occurring in specifically allocated memory regions to full code execution on programs running on i386/x86_64 Linux. Wiederganger-attacks abuse determinism in Linux ASLR implementation combined with the fact that (even with protection mechanisms such […]
WebKit JIT Proxy Object Issue
Posted by deepcore under exploit (No Respond)
WebKit JIT int32/double arrays can have proxy objects in the prototype chains.
Linux userfaultfd tmpfs File Permission Bypass
Posted by deepcore under exploit (No Respond)
Linux userfaultfd bypasses tmpfs file permissions.
PrinterOn Enterprise 4.1.4 Arbitrary File Deletion
Posted by deepcore under exploit (No Respond)
PrinterOn Enterprise version 4.1.4 suffers from an arbitrary file deletion vulnerability.
LanSpy 2.0.1.159 Buffer Overflow
Posted by deepcore under exploit (No Respond)
LanSpy version 2.0.1.159 suffers from a local buffer overflow vulnerability.
SmartFTP Client 9.0.2623.0 Denial Of Service
Posted by deepcore under exploit (No Respond)
SmartFTP Client version 9.0.2623.0 suffers from a denial of service vulnerability.
