HTML5 Video Player 1.2.5 – Local Buffer Overflow (Non SEH)
>> TAG: #remote exploit
HTML5 Video Player 1.2.5 – Local Buffer Overflow (Non SEH)
Linux/x86 – execve(/bin/sh) + RShift-1 Encoded Shellcode (29 bytes)
PDF Signer 3.0 – Server-Side Template Injection leading to Remote Command Execution (via Cross-Site Request Forgery Cookie)
Oracle Reports Developer Component 12.2.1.3 – Cross-site Scripting
Microsoft Windows CONTACT – Remote Code Execution
Roxy Fileman 1.4.5 – Arbitrary File Download
FortiGate FortiOS < 6.0.3 – LDAP Credential Disclosure
ShoreTel / Mitel Connect ONSITE 19.49.5200.0 – Remote Code Execution
doorGets CMS 7.0 – Arbitrary File Download
NTPsec 1.1.2 – ‘ntp_control’ Out-of-Bounds Read (PoC)