WOW21 5.0.1.9 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
WOW21 version 5.0.1.9 suffers from an unquoted service path vulnerability.
Archive for March, 2022
Siemens S7-1200 4.5 Unauthenticated Access
Posted by deepcore under exploit (No Respond)
Siemens S7-1200 versions 4.5 and below have an unauthenticated CPU start/stop command vulnerability.
Zabbix 5.0.17 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Zabbix version 5.0.17 authenticated remote code execution exploit.
Dirty Pipe Local Privilege Escalation
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits a vulnerability that has been in the Linux kernel since version 5.8. It allows writing of read only or immutable memory. The vulnerability was fixed in Linux 5.16.11, 5.15.25 and 5.10.102. The module exploits this vulnerability by overwriting a suid binary with the payload, executing it, and then writing the original […]
[remote] Tdarr 2.00.15 – Command Injection
Posted by deepcore under Security (No Respond)
[remote] Seowon SLR-120 Router – Remote Code Execution (Unauthenticated)
Posted by deepcore under Security (No Respond)
Wondershare Dr.Fone 12.0.18 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
Wondershare Dr.Fone version 12.0.18 suffers from an unquoted service path vulnerability.
Cobian Backup 0.9 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
Cobian Backup version 0.9 suffers from an unquoted service path vulnerability.
Webmin 1.984 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Webmin version 1.984 authenticated remote code execution exploit.
Printix Client 1.3.1106.0 Privilege Escalation
Posted by deepcore under exploit (No Respond)
Printix Client version 1.3.1106.0 suffers from a privilege escalation vulnerability.