VBScript – ‘OLEAUT32!VariantClear’ and ‘scrrun!VBADictionary::put_Item’ Use-After-Free
>> CATEGORY: Security
VBScript – ‘OLEAUT32!VariantClear’ and ‘scrrun!VBADictionary::put_Item’ Use-After-Free
Apache Spark – Unauthenticated Command Execution (Metasploit)
WebKit JIT – ‘ByteCodeParser::handleIntrinsicCall’ Type Confusion
WebKit JSC – BytecodeGenerator::hoistSloppyModeFunctionIfNecessary Does not Invalidate the ‘ForInContext’ Object
Unitrends Enterprise Backup – bpserverd Privilege Escalation (Metasploit)
PHP imap_open – Remote Code Execution (Metasploit)
Mac OS X – libxpc MITM Privilege Escalation (Metasploit)
TeamCity Agent – XML-RPC Command Execution (Metasploit)
WebKit JSC JIT – ‘JSPropertyNameEnumerator’ Type Confusion
Linux – Nested User Namespace idmap Limit Local Privilege Escalation (Metasploit)