Security – Page 1341 – :: Deepquest ::

>> [dos] – Winlog Lite SCADA HMI system SEH 0verwrite Vulnerability

USER: cabba // 2012-08-29 // 0 CMT

Winlog Lite SCADA HMI system SEH 0verwrite Vulnerability

>> [local] – ActFax 4.31 Local Privilege Escalation Exploit

USER: necromantic // 2012-08-29 // 0 CMT

ActFax 4.31 Local Privilege Escalation Exploit

>> [webapps] – Disqus Blog Comments Blind SQL Injection Vulnerability

USER: gamin // 2012-08-29 // 0 CMT

Disqus Blog Comments Blind SQL Injection Vulnerability

>> [webapps] – Disqus Blog Comments Blind SQL Injection Vulnerability

USER: MasterP // 2012-08-29 // 0 CMT

Disqus Blog Comments Blind SQL Injection Vulnerability

>> Java 7 Applet Remote Code Execution

USER: deepcore // 2012-08-28 // 0 CMT

This Metasploit module exploits a vulnerability in Java 7, which allows an attacker to run arbitrary Java code outside the sandbox. The vulnerability seems to be related to the use of the newly introduced ClassFinder#resolveClass in Java 7, which allows the sun.awt.SunToolkit class to be loaded and modified. Please note this flaw is also being exploited in the wild, and there is no patch from Oracle at this point

>> [webapps] – Conceptronic Grab’n’Go and Sitecom Storage Center Password Disclosure

USER: dendawga // 2012-08-28 // 0 CMT

Conceptronic Grab’n’Go and Sitecom Storage Center Password Disclosure

>> [remote] – Simple Web Server 2.2-rc2 ASLR Bypass Exploit

USER: jzting // 2012-08-28 // 0 CMT

Simple Web Server 2.2-rc2 ASLR Bypass Exploit

>> [webapps] – RV Shopping Cart CSRF Vulnerability

USER: MasterP // 2012-08-28 // 0 CMT

RV Shopping Cart CSRF Vulnerability

>> [webapps] – CommPort 1.01 <= Multiple Vulnerabilities

USER: cabba // 2012-08-28 // 0 CMT

CommPort 1.01

>> [dos] – Express Burn Plus v4.58 EBP Project File Handling Buffer Overflow PoC

USER: bugmenot // 2012-08-28 // 0 CMT

Express Burn Plus v4.58 EBP Project File Handling Buffer Overflow PoC