[webapps] LearnDash WordPress LMS Plugin 3.1.2 – Reflective Cross-Site Scripting
Posted by deepcore under Security (No Respond)
Archive for February, 2020
[webapps] Forcepoint WebSecurity 8.5 – Reflective Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[local] Wedding Slideshow Studio 1.36 – 'Key' Buffer Overflow
Posted by deepcore under Security (No Respond)
OpenSMTPD MAIL FROM Remote Code Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits a command injection in the MAIL FROM field during SMTP interaction with OpenSMTPD to execute code as the root user.
D-Link ssdpcgi Unauthenticated Remote Command Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits an ssdpcgi remote command execution vulnerability in D-Link devices.
Ricoh Driver Privilege Escalation
Posted by deepcore under exploit (No Respond)
This Metasploit module leverages the prnmngr.vbs script to add and delete printers. Multiple runs of this module may be required given successful exploitation is time-sensitive.
macOS/iOS ImageIO DDS Image Out-Of-Bounds Read
Posted by deepcore under exploit (No Respond)
macOS and iOS suffer from an out-of-bounds read when processing DDS images with ImageIO.
macOS/iOS kern_stack_snapshot_internal() Userspace Share Issue
Posted by deepcore under exploit (No Respond)
macOS and iOS suffer from an issue where kern_stack_snapshot_internal() shares non-zeroed kernel pages with userspace.
macOS ImageIO JPEG Out-Of-Bounds Write
Posted by deepcore under exploit (No Respond)
ImageIO on macOS suffers from an issue where a heap out-of-bounds write occurs when processing JPEG images.
libx264 H264 Conversion Out-Of-Bounds Write
Posted by deepcore under exploit (No Respond)
libx264 suffers from an out-of-bounds write when converting to H264.