This Metasploit module writes to the sudoers file without root access by exploiting rsh and malloc log files. Makes sudo require no password, giving access to su even if root…
>> AUTHOR: deepcore
Win10Pcap – Local Privilege Escalation Vulnerability
Th3 MMA mma.php Backdoor Arbitrary File Upload
Mac OS X 10.9.5 / 10.10.5 – rsh/libmalloc Privilege Escalation
Windows 10 – pcap Driver Local Privilege Escalation
Safari User-Assisted Applescript Exec Attack
Alreader 2.5 .fb2 – SEH Based Stack Overflow (ASLR and DEP bypass)
[Portuguese] Using Printer Layout as a Vector for Malicious Code Insertion
The Realtyna RPL application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions…
Apple Security Advisory 2015-10-21-3 – Safari 9.0.1 is now available and addresses multiple memory corruption vulnerabilities.