2019 November

iMessage NSSharedKeyDictionary Decode Incorrect Address Read

Posted by deepcore under exploit (No Respond)

iMessage suffers from an issue where decoding NSSharedKeyDictionary can read an ObjC object at attacker controlled address.

Adobe Acrobat Reader DC For Windows Malformed JBIG2Globals Stream Uninitialized Pointer

Posted by deepcore under exploit (No Respond)

An issue exists with Adobe Acrobat Reader DC for Windows use of an uninitialized pointer due to malformed JBIG2Globals stream.

Adobe Acrobat Reader DC For Windows Malformed OTF Font Uninitialized Pointer

Posted by deepcore under exploit (No Respond)

An issue exists where Adobe Acrobat Reader DC for Windows makes use of an uninitialized pointer due to a malformed OTF font (CFF table).

Honeywell MCR Web Controller Cross Site Scripting / Path Disclosure

Posted by deepcore under exploit (No Respond)

Honeywell MCR Web Controller suffers from cross site scripting and path disclosure vulnerabilities. Versions affected include XL1000C50 EXCEL WEB 52 I/O, XL1000C500 EXCEL WEB 300 I/O, XL1000C100 EXCEL WEB 104 I/O, XL1000C1000 EXCEL WEB 600 I/O, XL1000C50U EXCEL WEB 52 I/O UUKL, XL1000C500U EXCEL WEB 300 I/O UUKL, XL1000C100U EXCEL WEB 104 I/O UUKL, and […]

Eset Mobile Security 5.2.18.0 Lock Bypass

Posted by deepcore under exploit (No Respond)

Eset Mobile Security application for Android version 5.2.18.0 suffers from an application locking bypass vulnerability.

[local] Wondershare Application Framework Service 2.4.3.231 – 'WsAppService' Unquote Service Path

Posted by deepcore under Security (No Respond)

Wondershare Application Framework Service 2.4.3.231 – ‘WsAppService’ Unquote Service Path

Tags: 0day, remote exploit

[webapps] eMerge E3 1.00-06 – Unauthenticated Directory Traversal

Posted by deepcore under Security (No Respond)

eMerge E3 1.00-06 – Unauthenticated Directory Traversal

Tags: 0day, remote exploit

[local] Acronis True Image OEM 19.0.5128 – 'afcdpsrv' Unquoted Service Path

Posted by deepcore under Security (No Respond)

Acronis True Image OEM 19.0.5128 – ‘afcdpsrv’ Unquoted Service Path

Tags: 0day, remote exploit

[webapps] Computrols CBAS-Web 19.0.0 – 'username' Reflected Cross-Site Scripting

Posted by deepcore under Security (No Respond)

Computrols CBAS-Web 19.0.0 – ‘username’ Reflected Cross-Site Scripting

Tags: 0day, remote exploit

[webapps] Prima FlexAir Access Control 2.3.38 – Remote Code Execution

Posted by deepcore under Security (No Respond)

Prima FlexAir Access Control 2.3.38 – Remote Code Execution

Tags: 0day, remote exploit

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

iMessage NSSharedKeyDictionary Decode Incorrect Address Read

Adobe Acrobat Reader DC For Windows Malformed JBIG2Globals Stream Uninitialized Pointer

Adobe Acrobat Reader DC For Windows Malformed OTF Font Uninitialized Pointer

Honeywell MCR Web Controller Cross Site Scripting / Path Disclosure

Eset Mobile Security 5.2.18.0 Lock Bypass

[local] Wondershare Application Framework Service 2.4.3.231 – 'WsAppService' Unquote Service Path

[webapps] eMerge E3 1.00-06 – Unauthenticated Directory Traversal

[local] Acronis True Image OEM 19.0.5128 – 'afcdpsrv' Unquoted Service Path

[webapps] Computrols CBAS-Web 19.0.0 – 'username' Reflected Cross-Site Scripting

[webapps] Prima FlexAir Access Control 2.3.38 – Remote Code Execution

Tabs Switcher

BLOGROLL

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Tabs Switcher

BLOGROLL