deepcore - :: Deepquest ::

>> [webapps] Tea LaTex 1.0 – Remote Code Execution (Unauthenticated)

USER: deepcore // 2020-09-11 // 0 CMT

Tea LaTex 1.0 – Remote Code Execution (Unauthenticated)

>> [local] Internet Explorer 11 – Use-After-Free

USER: deepcore // 2020-09-11 // 0 CMT

Internet Explorer 11 – Use-After-Free

>> [webapps] Tiandy IPC and NVR 9.12.7 – Credential Disclosure

USER: deepcore // 2020-09-10 // 0 CMT

Tiandy IPC and NVR 9.12.7 – Credential Disclosure

>> [webapps] CuteNews 2.1.2 – Remote Code Execution

USER: deepcore // 2020-09-10 // 0 CMT

CuteNews 2.1.2 – Remote Code Execution

>> [webapps] ZTE Router F602W – Captcha Bypass

USER: deepcore // 2020-09-10 // 0 CMT

ZTE Router F602W – Captcha Bypass

>> Microsoft Windows CloudExperienceHostBroker Privilege Escalation

USER: deepcore // 2020-09-09 // 0 CMT

The CloundExperienceHostBroker hosts unsafe COM objects accessible to a normal user leading to elevation of privilege.

>> Yaws 2.0.7 XML Injection / Command Injection

USER: deepcore // 2020-09-09 // 0 CMT

Yaws versions 1.81 through 2.0.7 suffer from remote OS command injection and XML external entity injection vulnerabilities.

>> Qualcomm Adreno GPU Ringbuffer Corruption / Protected Mode Bypass

USER: deepcore // 2020-09-09 // 0 CMT

The Qualcomm Adreno GPU shares a global mapping called a “scratch” buffer with the Adreno KGSL kernel driver. The contents of the scratch buffer can be overwritten by untrusted GPU…

>> Microsoft Windows StorageFolder Marshaled Object Access Check Bypass / Privilege Escalation

USER: deepcore // 2020-09-09 // 0 CMT

The StorageFolder class when used out of process can bypass security checks to read and write files not allowed to an AppContainer.

>> http://thepsathit.go.th/doc/ghi.html

USER: deepcore // 2020-09-09 // 0 CMT

http://thepsathit.go.th/doc/ghi.html notified by Ghost Hunter Illusion