Subscribe via feed.
Archive for May, 2022

Ransom.REvil MVID-2022-0598 Code Execution

Posted by deepcore under exploit (No Respond)

Last Updated on May 13, 2022 by deepcore REvil ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, execute our own code, and control and terminate the malware pre-encryption. The exploit DLL checks if the current directory is “C:WindowsSystem32” and if not we grab our process ID and […]

Ransom.REvil MVID-2022-0599 Code Execution

Posted by deepcore under exploit (No Respond)

Last Updated on May 13, 2022 by deepcore REvil ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, execute our own code, and control and terminate the malware pre-encryption. The exploit DLL checks if the current directory is “C:WindowsSystem32” and if not we grab our process ID and […]

Ransom.REvil MVID-2022-0600 Code Execution

Posted by deepcore under exploit (No Respond)

Last Updated on May 13, 2022 by deepcore REvil ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, execute our own code, and control and terminate the malware pre-encryption. The exploit DLL checks if the current directory is “C:WindowsSystem32” and if not we grab our process ID and […]

Ransom.REvil MVID-2022-0600 Code Execution

Posted by deepcore under exploit (No Respond)

Last Updated on May 12, 2022 by deepcore REvil ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, execute our own code, and control and terminate the malware pre-encryption. The exploit DLL checks if the current directory is “C:\Windows\System32” and if not we grab our process ID and […]

e107 CMS 3.2.1 Arbitrary File Upload / Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Last Updated on May 12, 2022 by deepcore e107 CMS version 3.2.1 suffers from cross site scripting and arbitrary file upload vulnerabilities that can allow for a shell upload.

Apache CouchDB 3.2.1 Remote Code Execution

Posted by deepcore under exploit (No Respond)

Last Updated on May 12, 2022 by deepcore Apache CouchDB version 3.2.1 suffers from a remote code execution vulnerability.

Wondershare Dr.Fone 12.0.7 Privilege Escalation

Posted by deepcore under exploit (No Respond)

Last Updated on May 12, 2022 by deepcore Wondershare Dr.Fone version 12.0.7 suffers from a remote privilege escalation vulnerability related to InstallAssistService.

Wondershare Dr.Fone 12.0.7 Privilege Escalation

Posted by deepcore under exploit (No Respond)

Last Updated on May 12, 2022 by deepcore Wondershare Dr.Fone version 12.0.7 suffers from a remote privilege escalation vulnerability related to ElevationService.

ExifTool 12.23 Arbitrary Code Execution

Posted by deepcore under exploit (No Respond)

Last Updated on May 12, 2022 by deepcore ExifTool version 12.23 suffers from an arbitrary code execution vulnerability.

Cyclos 4.14.7 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Last Updated on May 12, 2022 by deepcore Cyclos version 4.14.7 suffers from multiple cross site scripting vulnerabilities.