[dos] Magic ISO Maker 5.5(build 281) – 'Serial Code' Denial of Service (PoC)
Posted by deepcore under Security (No Respond)
Archive for April, 2019
XNU Unsafe Pidversion Increment During Execve
Posted by deepcore under exploit (No Respond)
XNU has an issue where pidversion increment during execve is unsafe.
WebKitGTK+ ThreadedCompositor Race Condition
Posted by deepcore under exploit (No Respond)
The compositor thread in WebKitGTK+ might alter a FilterOperation object’s reference count variable at the same time as the main thread. Then the reference count corruption might lead to a use-after-free condition.
Chrome V8TrustedTypePolicyOptions::ToImpl Type Confusion
Posted by deepcore under exploit (No Respond)
Chrome suffers from a type confusion vulnerability in V8TrustedTypePolicyOptions::ToImpl.
Chrome JSPromise::TriggerPromiseReactions Type Confusion
Posted by deepcore under exploit (No Respond)
Chrome suffers from a type confusion vulnerability in JSPromise::TriggerPromiseReactions.
Chrome ReadableStream Internal Object Leak
Posted by deepcore under exploit (No Respond)
Chrome suffers from an internal object leak vulnerability in ReadableStream.
Inout RealEstate SQL Injection
Posted by deepcore under exploit (No Respond)
Inout RealEstate suffers from a remote SQL injection vulnerability. The version as of 2019/04/02 is affected.
Inout EasyRooms Ultimate Edition 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Inout EasyRooms Ultimate Edition version 1.0 suffers from a remote SQL injection vulnerability.
WordPress PayPal Checkout Payment Gateway 1.6.8 Parameter Tampering
Posted by deepcore under exploit (No Respond)
WordPress PayPal Checkout Payment Gateway plugin version 1.6.8 suffers from a parameter tampering vulnerability that allows for price manipulation.
AIDA64 Extreme Edition 5.99.4800 Buffer Overflow
Posted by deepcore under exploit (No Respond)
AIDA64 Extreme Edition version 5.99.4800 local SEH buffer overflow exploit.