DHCP Turbo 4.61298 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
DHCP Turbo version 4.61298 suffers from an unquoted service path vulnerability.
Archive for February, 2020
TFTP Turbo 4.6.1273 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
TFTP Turbo version 4.6.1273 suffers from an unquoted service path vulnerability.
Cuckoo Clock 5.0 Buffer Overflow
Posted by deepcore under exploit (No Respond)
Cuckoo Clock version 5.0 suffers from a buffer overflow vulnerability.
Easy File Sharing Web Server 7.2 Buffer Overflow
Posted by deepcore under exploit (No Respond)
Easy File Sharing Web Server version 7.2 POST Email unauthenticated remote buffer overflow exploit.
FTPShell Server 6.85 Buffer Overflow
Posted by deepcore under exploit (No Respond)
FTPShell Server version 6.85 add account buffer overflow exploit.
WordPress Strong Testimonials 2.40.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Strong Testimonials plugin version 2.40.1 suffers from a persistent cross site scripting vulnerability.
Avaya Aura Communication Manager 5.2 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Avaya Aura Communication Manager version 5.2 remote code execution exploit.
Microsoft Windows 10 MSI Privilege Escalation
Posted by deepcore under exploit (No Respond)
Microsoft Windows 10 suffers from an MSI package symbolic link processing privilege escalation vulnerability.
LabVantage 8.3 Information Disclosure
Posted by deepcore under exploit (No Respond)
LabVantage version 8.3 suffers from an information disclosure vulnerability.
Nanometrics Centaur / TitanSMA Unauthenticated Remote Memory Leak
Posted by deepcore under exploit (No Respond)
An information disclosure vulnerability exists when Centaur and TitanSMA fail to properly protect critical system logs such as ‘syslog’. Additionally, the implemented Jetty version (9.4.z-SNAPSHOT) suffers from a memory leak of shared buffers that was (supposedly) patched in Jetty version 9.2.9.v20150224.