Subscribe via feed.
Archive for January, 2019

[dos] macOS XNU – Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File

Posted by deepcore under Security (No Respond)

macOS XNU – Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File

Tags: ,

[dos] ASPRunner Professional 6.0.766 – Denial of Service (PoC)

Posted by deepcore under Security (No Respond)

ASPRunner Professional 6.0.766 – Denial of Service (PoC)

Tags: ,

[dos] FlexHEX 2.46 – Denial of Service SEH Overwrite (PoC)

Posted by deepcore under Security (No Respond)

FlexHEX 2.46 – Denial of Service SEH Overwrite (PoC)

Tags: ,

[dos] AMAC Address Change 5.4 – Denial of Service (PoC)

Posted by deepcore under Security (No Respond)

AMAC Address Change 5.4 – Denial of Service (PoC)

Tags: ,

HTML Video Player 1.2.5 Local Buffer Overflow

Posted by deepcore under exploit (No Respond)

HTML Video Player version 1.2.5 suffers from a local buffer overflow vulnerability.

Nessus 8.2.1 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Nessus version 8.2.1 suffers from a persistent cross site scripting vulnerability.

MiniUPnPd 2.1 Out-Of-Bounds Read

Posted by deepcore under exploit (No Respond)

MiniUPnPd versions 2.1 and below suffer from an out-of-bounds read vulnerability.

PDF Signer 3.0 Template Injection / CSRF / Code Execution

Posted by deepcore under exploit (No Respond)

PDF Signer version 3.0 suffers from a server-side template injection vulnerability that can help lead to remote command execution due to improper cookie handling and cross site request forgery issues.

iOS / macOS Uninitialized Kernel Stack Disclosure

Posted by deepcore under exploit (No Respond)

iOS and macOS suffer from an if_ports_used_update_wakeuuid() 16-byte uninitialized kernel stack disclosure vulnerability.

Microsoft Exchange Vulnerable To PrivExchange Zero Day

Posted by deepcore under exploit (No Respond)