:: Deepquest ::

Router ONO Hitron CDE-30364 – CSRF Vulnerability

Read More: [webapps / 0day] – PBBoard v2.1.4 CMS – persistent XSS Vulnerabilities

Read the article: [webapps / 0day] – TP Link Gateway v3.12.4 Multiple Vulnerabilities

Continue Reading: [webapps / 0day] – CLscript CMS v3.0 SQL Injection

Zero Day Initiative Advisory 12-05 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application decodes video samples encoded with the RLE codec.

Zero Day Initiative Advisory 12-04 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime.

Zero Day Initiative Advisory 11-340 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application parses font names embedded within an atom.

Zero Day Initiative Advisory 11-314 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple’s QuickTime Player.

Zero Day Initiative Advisory 11-312 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the application parses the atom hierarchy within a QuickTime movie file

Zero Day Initiative Advisory 11-311 – This vulnerability allows remote attackers to potentially disclose memory addresses on vulnerable installations of Apple QuickTime Player.