:: Deepquest ::

Microsoft Windows suffers from an HTTP to SMB NTLM reflection that leads to a privilege escalation.

This Metasploit module exploits a vulnerability in the PHP Laravel Framework for versions 5.5.40, 5.6.x up to 5.6.29. Remote command execution is possible via a correctly formatted HTTP X-XSRF-TOKEN header, due to an insecure unserialize call of the decrypt method in Illuminate/Encryption/Encrypter.php. Authentication is not required, however exploitation requires knowledge of the Laravel APP_KEY. Similar […]

There exists a privilege escalation vulnerability for Windows 10 builds prior to build 17763. Due to the AppXSvc’s improper handling of hard links, a user can gain full privileges over a SYSTEM-owned file. The user can then utilize the new file to execute code as SYSTEM. This Metasploit module employs a technique using the Diagnostics […]

R 3.4.4 (Windows 10 x64) – Buffer Overflow SEH (DEP/ASLR Bypass)

FlightPath < 4.8.2 / < 5.0-rc2 – Local File Inclusion

Microsoft Windows Remote Desktop – ‘BlueKeep’ Denial of Service (Metasploit)

Android 7 – 9 VideoPlayer – ‘ihevcd_parse_pps’ Out-of-Bounds Write

CISCO Small Business 200 / 300 / 500 Switches – Multiple Vulnerabilities

NETGEAR WiFi Router JWNR2010v5 / R6080 – Authentication Bypass

Streamripper 2.6 – ‘Song Pattern’ Buffer Overflow