Subscribe via feed.
Archive for October, 2019

[dos] Windows Kernel – win32k.sys TTF Font Processing Pool Corruption in win32k!ulClearTypeFilter

Posted by deepcore under Security (No Respond)

Windows Kernel – win32k.sys TTF Font Processing Pool Corruption in win32k!ulClearTypeFilter

Tags: ,

[local] ASX to MP3 converter 3.1.3.7 – '.asx' Local Stack Overflow (Metasploit, DEP Bypass)

Posted by deepcore under Security (No Respond)

ASX to MP3 converter 3.1.3.7 – ‘.asx’ Local Stack Overflow (Metasploit, DEP Bypass)

Tags: ,

http://www.chaophaka.go.th/activity/images/

Posted by deepcore under defacement (No Respond)

http://www.chaophaka.go.th/activity/images/ notified by Umam1337

Tags:

http://www.huayyaijiw.go.th/activity/images/

Posted by deepcore under defacement (No Respond)

http://www.huayyaijiw.go.th/activity/images/ notified by Umam1337

Tags:

http://kampang.go.th/activity/images/

Posted by deepcore under defacement (No Respond)

http://kampang.go.th/activity/images/ notified by Umam1337

Tags:

http://www.wangthongnb.go.th/activity/images/

Posted by deepcore under defacement (No Respond)

http://www.wangthongnb.go.th/activity/images/ notified by Umam1337

Tags:

RENPHO 3.0.0 Information Disclosure

Posted by deepcore under exploit (No Respond)

RENPHO version 3.0.0 fails to encrypt in transit and due to this can disclose sensitive information and allow for man-in-the-middle attacks.

Socomec DIRIS A-40 Password Disclosure

Posted by deepcore under exploit (No Respond)

Socomec DIRIS A-40 devices versions before 48250501 allow a remote attacker to get full access to a device via the /password.jsn URI.

WebKit FrameLoader::clear Same-Origin Policy Bypass

Posted by deepcore under exploit (No Respond)

WebKit suffers from a same-origin policy bypass vulnerability in FrameLoader::clear.

File Sharing Wizard 1.5.0 POST SEH Overflow

Posted by deepcore under exploit (No Respond)

This Metasploit module exploits an unauthenticated HTTP POST SEH-based buffer overflow in File Sharing Wizard version 1.5.0.