Clik here to view.
Kaspersky Anti-Virus File Server 8.0.3.297 - Multiple Vulnerabilities
EDB-ID: 42269Author: Core SecurityPublished: 2017-06-28CVE: CVE-2017-9810... Type: WebappsPlatform: LinuxVulnerable App: N/A Title: Kaspersky Anti-Virus File Server Multiple Vulnerabilities Advisory...
View ArticleClik here to view.
Easy File Sharing Web Server 7.2 - Unrestricted File Upload
EDB-ID: 42268Author: ChakoPublished: 2017-06-28CVE: N/A Type: WebappsPlatform: WindowsVulnerable App: # 2017/6/15 Chako # # EFS Web Server 7.2 Unrestricted File Upload # Vendor Homepage:...
View ArticleClik here to view.
FFmpeg CVE-2017-9996 Heap Buffer Overflow Vulnerability
FFmpeg is prone to a heap-based buffer overflow vulnerability. Successfully exploiting this issue allows remote attackers to crash the affected application, denying service to legitimate users. Due to...
View ArticleClik here to view.
ownCloud CVE-2017-9338 Cross-Site Scripting Vulnerability
ownCloud is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser...
View ArticleClik here to view.
FreeBSD - 'setrlimit' Stack Clash Proof of Concept
EDB-ID: 42279Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1085 Type: DosPlatform: FreeBSD_x86Aliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A *...
View ArticleClik here to view.
Linux - 'offset2lib' Stack Clash Exploit
EDB-ID: 42273Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1000370... Type: LocalPlatform: Lin_x86Aliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A *...
View ArticleClik here to view.
NetBSD - Stack Clash Proof of Concept
EDB-ID: 42272Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1000375 Type: DosPlatform: NetBSD_x86Aliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A *...
View ArticleClik here to view.
Linux - 'ldso_hwcap_64' Local Root Stack Clash Exploit
EDB-ID: 42275Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1000366... Type: LocalPlatform: Lin_x86-64Aliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A *...
View ArticleClik here to view.
Linux - 'ldso_hwcap' Local Root Stack Clash Exploit
EDB-ID: 42274Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1000366... Type: LocalPlatform: Lin_x86Aliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A *...
View ArticleClik here to view.
FreeBSD - 'FGPE' Stack Clash Proof of Concept
EDB-ID: 42278Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1084 Type: DosPlatform: FreeBSD_x86Aliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A *...
View ArticleClik here to view.
FreeBSD - 'FGPU' Stack Clash Proof of Concept
EDB-ID: 42277Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1084 Type: DosPlatform: FreeBSD_x86Aliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A *...
View ArticleClik here to view.
Oracle Solaris 11.1 / 11.3 RSH - Local Root Stack Clash Exploit
EDB-ID: 42270Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-3629... Type: LocalPlatform: Solaris_x86Aliases: Stack ClashAdvisory/Source: LinkTags: LocalVulnerable App: N/A * Solaris_rsh.c...
View ArticleClik here to view.
OpenBSD - 'at' Local Root Stack Clash Exploit
EDB-ID: 42271Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1000373 Type: LocalPlatform: OpenBSDAliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A * OpenBSD_at.c for...
View ArticleClik here to view.
Linux - 'ldso_dynamic' Local Root Stack Clash Exploit
EDB-ID: 42276Author: Qualys CorporationPublished: 2017-06-28CVE: CVE-2017-1000366... Type: LocalPlatform: Lin_x86Aliases: Stack ClashAdvisory/Source: LinkTags: N/AVulnerable App: N/A *...
View ArticleClik here to view.
e-Tax software CVE-2017-2226 DLL Loading Remote Code Execution Vulnerability
Installer of Setup file of advance preparation for e-Tax software (WEB version) is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the...
View ArticleClik here to view.
VASA Provider Virtual Appliance 8.3.x Remote Code Execution
VASA Provider Virtual Appliance versions prior to 8.3.x may potentially be vulnerable to an unauthenticated remote code execution vulnerability. An unauthenticated remote attacker could upload a...
View ArticleClik here to view.
Kaspersky Anti-Virus File Server 8.0.3.297 XSS / CSRF / Code Execution
Kaspersky Anti-Virus for Linux File Server version 8.0.3.297 suffers from remote code execution, cross site request forgery, cross site scripting, security bypass, information disclosure, and path...
View ArticleClik here to view.
Apache ActiveMQ 5.x Web Shell Upload
The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request.MD5 |...
View ArticleClik here to view.
Veritas/Symantec Backup Exec SSL NDMP Connection Use-After-Free
This Metasploit module exploits a use-after-free vulnerability in the handling of SSL NDMP connections in Veritas/Symantec Backup Exec's Remote Agent for Windows. When SSL is re-established on a NDMP...
View ArticleClik here to view.
Veritas/Symantec Backup Exec - SSL NDMP Connection Use-After-Free (Metasploit)
EDB-ID: 42282Author: MetasploitPublished: 2017-06-29CVE: CVE-2017-8895 Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: Metasploit FrameworkVulnerable App: N/A # This module requires...
View Article