Windows Defender suffers from a controlled folder bypass through the UNC path. Affected includes Windows 10 1709 and Antimalware client version 4.12.16299.15.
>> CATEGORY: exploit
This archive contains all of the 126 exploits added to Packet Storm in November, 2017.
QEMU version 2.10 suffers from an NBD server long export name stack buffer overflow vulnerability. This was introduced with commit f37708f6b8.
Synology StorageManager version 5.2 suffers from a remote root command execution vulnerability in smart.cgi.
Asterisk version 13.17.2~dfsg-2 suffers from a remote unauthenticated memory exhaustion vulnerability.
This Metasploit module exploits a serious flaw in Mac OS X High Sierra. Any user can login with user “root”, leaving an empty password.
There is a directory traversal issue in attachment downloads in Gmail. For non-gmail accounts, there is no path sanitization on the attachment filename in the email, so when attachments are…
HikVision Wi-Fi IP cameras come with a default SSID “davinci”, with a setting of no WiFi encryption or authentication. Depending on the firmware version, there is no configuration option within…
pfSense versions 2.3.1_1 and below contain a remote command execution vulnerability post authentication in the system_groupmanager.php page.
ZTE ZXDSL 831 suffers from an insecure direct object reference vulnerability.