:: Deepquest ::

Apple Security Advisory 2014-04-22-1 – Security Update 2014-002 is now available and addresses vulnerabilities in CFNetwork HTTPProtocol, CoreServicesUIAgent, FontParser, Heimdal Kerberos, ImageIO, Intel Graphics Driver, IOKit Kernel, the kernel, power management, Ruby, and more.

Apple Security Advisory 2014-04-22-2 – iOS 7.1.1 is now available and addresses vulnerabilities in IOKit Kernel, CFNetwork HTTPProtocol, Secure Transport, and WebKit.

Apple Security Advisory 2014-04-22-3 – Apple TV 6.1.1 is now available and addresses vulnerabilities related to credential compromise, ASLR bypass, code execution, and more.

PDF Album version 1.7 for iOS suffers from a local file inclusion vulnerability.

Apple Mac OS X Lion kernel xnu versions 1699.32.7 except 1699.24.8 NFS mount privilege escalation exploit. This exploit leverage a stack overflow vulnerability to escalate privileges. The vulnerable function nfs_convert_old_nfs_args does not verify the size of a user-provided argument before copying it to the stack. As a result by passing a large size, a local […]

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners […]

BlueMe Bluetooth version 5.0 for iOS suffers from a code execution vulnerability.

AppFish Offline Coder version 2.2 for iOS suffers from a persistent script insertion vulnerability.

iVault Private P&V version 1.1 for iOS suffers from a directory traversal vulnerability.

Bluetooth Text Chat version 1.0 for iOS suffers from a code execution vulnerability.