0day – Page 559 – :: Deepquest ::

[SECURITY]

>> [local] Linux Kernel 4.13 (Ubuntu 17.10) – 'waitid()' SMEP/SMAP Privilege Escalation

USER: deepcore // 2017-11-06 // 0 CMT

Linux Kernel 4.13 (Ubuntu 17.10) – ‘waitid()’ SMEP/SMAP Privilege Escalation

[SECURITY]

>> [dos] Avaya OfficeScan (IPO) < 10.1 – ActiveX Buffer Overflow

USER: deepcore // 2017-11-05 // 0 CMT

Avaya OfficeScan (IPO) < 10.1 – ActiveX Buffer Overflow

[SECURITY]

>> [remote] Avaya OfficeScan (IPO) < 10.1 – 'SoftConsole' Buffer Overflow (SEH)

USER: deepcore // 2017-11-05 // 0 CMT

Avaya OfficeScan (IPO) < 10.1 – 'SoftConsole' Buffer Overflow (SEH)

[SECURITY]

>> [remote] Actiontec C1000A Modem – Backdoor Account

USER: deepcore // 2017-11-04 // 0 CMT

Actiontec C1000A Modem – Backdoor Account

[SECURITY]

>> [webapps] WordPress Plugin Userpro < 4.9.17.1 – Authentication Bypass

USER: deepcore // 2017-11-04 // 0 CMT

WordPress Plugin Userpro < 4.9.17.1 – Authentication Bypass

[SECURITY]

>> [dos] GraphicsMagick – Memory Disclosure / Heap Overflow

USER: deepcore // 2017-11-03 // 0 CMT

GraphicsMagick – Memory Disclosure / Heap Overflow

[SECURITY]

>> [remote] tnftp – 'savefile' Arbitrary Command Execution (Metasploit)

USER: deepcore // 2017-11-03 // 0 CMT

tnftp – ‘savefile’ Arbitrary Command Execution (Metasploit)

[SECURITY]

>> [webapps] WordPress Plugin JTRT Responsive Tables 4.1 – SQL Injection

USER: deepcore // 2017-11-03 // 0 CMT

WordPress Plugin JTRT Responsive Tables 4.1 – SQL Injection

[SECURITY]

>> [webapps] Ladon Framework for Python 0.9.40 – XML External Entity Expansion

USER: deepcore // 2017-11-03 // 0 CMT

Ladon Framework for Python 0.9.40 – XML External Entity Expansion

[SECURITY]

>> [webapps] OctoberCMS 1.0.426 (Build 426) – Cross-Site Request Forgery

USER: deepcore // 2017-11-01 // 0 CMT

OctoberCMS 1.0.426 (Build 426) – Cross-Site Request Forgery

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: