Subscribe via feed.
Archive for May, 2021

[local] Backup Manager Module 3.0.0.99 – 'IScheduleSvc.exe' Unquoted Service Path

Posted by deepcore under Security (No Respond)

Backup Manager Module 3.0.0.99 – ‘IScheduleSvc.exe’ Unquoted Service Path

Tags: ,

[local] ASUS HID Access Service 1.0.94.0 – 'AsHidSrv.exe' Unquoted Service Path

Posted by deepcore under Security (No Respond)

ASUS HID Access Service 1.0.94.0 – ‘AsHidSrv.exe’ Unquoted Service Path

Tags: ,

Backdoor.Win32.RMFdoor.c Authentication Bypass / Code Execution

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.RMFdoor.c malware suffers from bypass and code execution vulnerabilities.

Backdoor.Win32.DarkMoon.a Weak Hardcoded Password

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.DarkMoon.a malware suffers from having a weak hardcoded password.

Backdoor.Win32.DarkMoon.a Insecure Transit

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.DarkMoon.a malware suffers from an insecure transit vulnerability.

EgavilanMedia PHPCRUD 1.0 SQL Injection

Posted by deepcore under exploit (No Respond)

EgavilanMedia PHPCRUD version 1.0 suffers from a remote SQL injection vulnerability.

Microsoft Exchange 2019 Unauthenticated Email Download

Posted by deepcore under exploit (No Respond)

Microsoft Exchange 2019 unauthenticated email download exploit.

Backdoor.Win32.Delf.aez Code Execution

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.Delf.aez malware suffers from a code execution vulnerability.

NetMotion Mobility Server MvcUtil Java Deserialization

Posted by deepcore under exploit (No Respond)

This Metasploit module exploits an unauthenticated Java deserialization in the NetMotion Mobility server’s MvcUtil.valueStringToObject() method, as invoked through the /mobility/Menu/isLoggedOn endpoint, to execute code as the SYSTEM account. Mobility server versions 11.x before 11.73 and 12.x before 12.02 are vulnerable. Tested against 12.01.09045 on Windows Server 2016.

NiceHash Miner Excavator 1.6.7c Cross Site Request Forgery

Posted by deepcore under exploit (No Respond)

NiceHash Miner Excavator versions 1.6.7c and below suffer from a cross site request forgery vulnerability. The issue enables any external web site to send commands to the local miner instance, and to redirect the mined coins to an arbitrary mining address.