4 - 2021 - :: Deepquest ::

>> Google Chrome SimplfiedLowering Integer Overflow

USER: deepcore // 2021-04-10 // 0 CMT

This Metasploit module exploits an issue in Google Chrome versions before 87.0.4280.88 (64 bit). The exploit makes use of an integer overflow in the SimplifiedLowering phase in turbofan. It is…

>> CMSimple 5.2 Cross Site Scripting

USER: deepcore // 2021-04-09 // 0 CMT

CMSimple version 5.2 suffers from a persistent cross site scripting vulnerability.

>> Trojan.Win32.Hosts2.yqf Insecure Permissions

USER: deepcore // 2021-04-09 // 0 CMT

Trojan.Win32.Hosts2.yqf malware suffers from an insecure permissions vulnerability.

>> Trojan-Downloader.Win32.Genome.omht Insecure Permissions

USER: deepcore // 2021-04-09 // 0 CMT

Trojan-Downloader.Win32.Genome.omht malware suffers from an insecure permissions vulnerability.

>> Trojan-Downloader.Win32.Genome.qiw Insecure Permissions

USER: deepcore // 2021-04-09 // 0 CMT

Trojan-Downloader.Win32.Genome.qiw malware suffers from an insecure permissions vulnerability.

>> Composr 10.0.36 Shell Upload

USER: deepcore // 2021-04-09 // 0 CMT

Composr version 10.0.36 suffers from a remote shell upload vulnerability.

>> Trojan.Win32.Hotkeychick.d Insecure Permissions

USER: deepcore // 2021-04-09 // 0 CMT

Trojan.Win32.Hotkeychick.d malware suffers from an insecure permissions vulnerability.

>> Linux Kernel 5.4 BleedingTooth Remote Code Execution

USER: deepcore // 2021-04-09 // 0 CMT

Linux kernel version 5.4 BleedingTooth bluetooth zero-click proof of concept remote code execution exploit.

>> Backdoor.Win32.Hupigon.das Unauthenticated Open Proxy

USER: deepcore // 2021-04-09 // 0 CMT

Backdoor.Win32.Hupigon.das malware has an unauthenticated open proxy functionality.

>> D-Link DSL-320B-D1 Pre-Authentication Buffer Overflow

USER: deepcore // 2021-04-09 // 0 CMT

The D-Link DSL-320B-D1 ADSL modem suffers from multiple pre-authentication stack buffer overflow vulnerabilities.