View article: [local exploits] – Linux Kernel 3.3.x <= 3.3.4 Buffer overflow in HFS plus filesystem
>> AUTHOR: deepcore
Continue Reading: [webapps / 0day] – Artiphp CMS v5.5.0 Multiple XSS POST Injection Vulnerabilities
See original article: [webapps / 0day] – backupDB() v1.2.7a (onlyDB) Remote XSS Vulnerability
Read the article: [webapps / 0day] – phpThumb() v1.7.11 (dir & title) Cross-Site Scripting Vulnerability
View original post here: [webapps / 0day] – Artiphp CMS 5.5.0 Database Backup Disclosure Exploit
WikiLeak perhaps led to Iran's 'Mossad' hanging Jerusalem Post COM STAFF 'Times of London' finds similarities between accused spy and WikiLeaks description of Iranian intelligence source. Iran may have used a secret cable published by WikiLeaks to target and hang an alleged Israeli spy, The Times of London … and more
WikiLeaks cable possibly behind Iran's 'Mossad' hanging Jerusalem Post While the report is inconclusive and the evidence anecdotal, it notes striking similarities between a WikiLeak cable's description of its Iranian source and … and more
Daily Mail WikiLeaks cable 'led Iran to hang kick-boxer it said was Israeli spy … Daily Mail Iranian kick-boxer Majid Jamali Fashi (pictured) was hanged for the assassination of a Tehran nuclear scientist after WikiLeaks published a confidential U.S. …
Apple Quicktime does not properly parse .pct media files, which causes a corruption in module DllMain by opening a malformed file with an invalid value located in PoC repro01.pct at offset 0x20E. Quicktime Player version 7.7.1 (1680.42) on Windows XP SP 3 – PT_BR is confirmed affected.
Apple Security Advisory 2012-05-14-2 – This update disables Adobe Flash Player if it is older than 10.1.102.64 by moving its files to a new directory.