>> TAG: #0day

WebKit JIT – ‘ByteCodeParser::handleIntrinsicCall’ Type Confusion

WebKit JSC – BytecodeGenerator::hoistSloppyModeFunctionIfNecessary Does not Invalidate the ‘ForInContext’ Object

Unitrends Enterprise Backup – bpserverd Privilege Escalation (Metasploit)

PHP imap_open – Remote Code Execution (Metasploit)

Mac OS X – libxpc MITM Privilege Escalation (Metasploit)

TeamCity Agent – XML-RPC Command Execution (Metasploit)

WebKit JSC JIT – ‘JSPropertyNameEnumerator’ Type Confusion

Linux – Nested User Namespace idmap Limit Local Privilege Escalation (Metasploit)

Netgear Devices – Unauthenticated Remote Command Execution (Metasploit)

Ticketly 1.0 – ‘kind_id’ SQL Injection