The VHDMP driver does not safely delete files leading to arbitrary file deletion which could result in elevation of privilege.
>> CATEGORY: exploit
A Windows kernel crash can occur in the nt!RtlEqualSid function invoked through nt!SeAccessCheck by nt!CmpCheckSecurityCellAccess while loading corrupted registry hive files.
Blacknurse is a low bandwidth ICMP attack that is capable of doing denial of service to well known firewalls. Most ICMP attacks that we see are based on ICMP Type…
When serializing JavaScript objects for sending to another window using the postMessage method, the code in blink does not handle Symbol objects correctly and attempts to serialize this kind of…
A vulnerability in Windows Local Security Authority Subsystem Service (LSASS) was found on Windows OS versions ranging from Windows XP through to Windows 10. This vulnerability allows an attacker to…
Sagem Fast 3304-V2 suffers from a credential disclosure vulnerability.
InvoicePlane version 1.4.8 has an incorrect access control for password resets.
Rate-Me PHP Script version 1.0 suffers from a persistent cross site scripting vulnerability.
ShopZilla Comparison Shopping Script version 2.3 suffers from a cross site scripting vulnerability.
Trango devices all have a built-in, hidden root account, with a default password that is the same across many devices and software revisions. This account is accessible via ssh and…