:: Deepquest ::

>> Microsoft Windows Net Use Insufficent Authentication

USER: deepcore // 2020-04-07 // 0 CMT

The Windows “net use” network logon type-3 command does not prompt for authentication when the built-in Administrator account is enabled and both remote and originating systems suffer from password reuse….

>> [dos] dnsmasq-utils 2.79-1 – 'dhcp_release' Denial of Service (PoC)

USER: deepcore // 2020-04-07 // 0 CMT

dnsmasq-utils 2.79-1 – ‘dhcp_release’ Denial of Service (PoC)

>> [dos] ZOC Terminal 7.25.5 – 'Script' Denial of Service (PoC)

USER: deepcore // 2020-04-07 // 0 CMT

ZOC Terminal 7.25.5 – ‘Script’ Denial of Service (PoC)

>> http://samutprakan1.go.th/lo.php

USER: deepcore // 2020-04-06 // 0 CMT

http://samutprakan1.go.th/lo.php notified by KyusaKU [- YumeN0 -]

>> http://www.maeku.go.th

USER: deepcore // 2020-04-06 // 0 CMT

http://www.maeku.go.th notified by moncet

>> [webapps] LimeSurvey 4.1.11 – 'File Manager' Path Traversal

USER: deepcore // 2020-04-06 // 0 CMT

LimeSurvey 4.1.11 – ‘File Manager’ Path Traversal

>> [webapps] Bolt CMS 3.7.0 – Authenticated Remote Code Execution

USER: deepcore // 2020-04-06 // 0 CMT

Bolt CMS 3.7.0 – Authenticated Remote Code Execution

>> [webapps] WhatsApp Desktop 0.3.9308 – Persistent Cross-Site Scripting

USER: deepcore // 2020-04-06 // 0 CMT

WhatsApp Desktop 0.3.9308 – Persistent Cross-Site Scripting

>> [local] Triologic Media Player 8 – '.m3l' Buffer Overflow (Unicode) (SEH)

USER: deepcore // 2020-04-06 // 0 CMT

Triologic Media Player 8 – ‘.m3l’ Buffer Overflow (Unicode) (SEH)

>> [webapps] Vesta Control Panel 0.9.8-26 – Authenticated Remote Code Execution (Metasploit)

USER: deepcore // 2020-04-06 // 0 CMT

Vesta Control Panel 0.9.8-26 – Authenticated Remote Code Execution (Metasploit)