Clik here to view.
Xion 1.0.125 - '.m3u' Local SEH-Based Unicode Venetian Exploit
EDB-ID: 442323Author: syntheticPublished: 2018-03-05CVE: N/A Type: LocalPlatform: WindowsAliases: N/AAdvisory/Source: N/ATags: LocalVulnerable App: #...
View ArticleClik here to view.
NETGEAR - Magic Packet TelnetEnable (Metasploit)
EDB-ID: 442325Author: MetasploitPublished: 2018-03-05CVE: N/A Type: RemotePlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: Metasploit Framework (MSF)Vulnerable App: N/A # This module requires...
View ArticleClik here to view.
Parallels Remote Application Server 15.5 - Path Traversal
EDB-ID: 44241Author: Nicolas MarkitanisPublished: 2018-02-22CVE: N/A Type: WebappsPlatform: WindowsVulnerable App: N/A # Date: 22-02-2018 # Exploit Author: Nicolas Markitanis - RUNESEC # Reviewers:...
View ArticleClik here to view.
Papenmeier WiFi Baby Monitor Free & Lite < 2.02.2 - Remote Audio Record
EDB-ID: 44242Author: iamrastatingPublished: 2018-02-25CVE: N/A Type: RemotePlatform: AndroidAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Monitoring the traffic using Wireshark during...
View ArticleClik here to view.
Xion 1.0.125 - '.m3u' Local SEH-Based Unicode Venetian Exploit
EDB-ID: 44243Author: syntheticPublished: 2018-03-05CVE: N/A Type: LocalPlatform: WindowsVulnerable App: # ######################################################################## # Title: Xion 1.0.125...
View ArticleClik here to view.
NETGEAR - 'TelnetEnable' Magic Packet (Metasploit)
EDB-ID: 44245Author: MetasploitPublished: 2018-03-05CVE: N/A Type: RemotePlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # This module requires Metasploit:...
View ArticleClik here to view.
Dup Scout Enterprise 10.5.12 - 'Share Username' Local Buffer Overflow
EDB-ID: 44244Author: bzyoPublished: 2018-03-05CVE: N/A Type: LocalPlatform: WindowsVulnerable App: # # Exploit Author: bzyo # Twitter: @bzyo_ # Exploit Title: Dup Scout Enterprise 10.5.12 - Local...
View ArticleClik here to view.
Suricata < 4.0.4 - IDS Detection Bypass
EDB-ID: 44247Author: Positive TechnologiesPublished: 2018-03-05CVE: CVE-2018-6794 Type: DosPlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Vulnerability Type: Detection...
View ArticleClik here to view.
ClipBucket < 4.0.0 - Release 4902 - Command Injection / File Upload / SQL...
EDB-ID: 44250Author: SEC ConsultPublished: 2018-03-05CVE: N/A Type: WebappsPlatform: PHPAliases: N/AAdvisory/Source: N/ATags: SQL Injection (SQLi), Command InjectionVulnerable App:...
View ArticleClik here to view.
Sophos UTM 9.410 - 'loginuser''confd' Service Privilege Escalation
EDB-ID: 44246Author: KoreLogicPublished: 2018-03-05CVE: N/A Type: LocalPlatform: LinuxVulnerable App: N/A Title: Sophos UTM 9 loginuser Privilege Escalation via confd Service Advisory ID:...
View ArticleClik here to view.
ActivePDF Toolkit < 8.1.0.19023 - Multiple Memory Corruptions
EDB-ID: 44251Author: François GoichonPublished: 2018-03-05CVE: CVE-2018-7264 Type: DosPlatform: WindowsVulnerable App: N/A Introduction ============ The ActivePDF Toolkit is a Windows library which...
View ArticleClik here to view.
CloudMe Sync 1.9.2 Remote Buffer Overflow
CloudMe Sync version 1.9.2 remote buffer overflow exploit. Tested on Win7 32b SP1.MD5 | 0aad6d2a48bef8836345a0cdb5dad99cDownload#!/usr/bin/python# CloudMe Sync 1.9.2 Remote Exploit# Written by r00tpgp...
View ArticleClik here to view.
Softros Network Time System Server 2.3.4 Denial Of Service
Softros Network Time System Server version 2.3.4 suffers from a denial of service vulnerability.MD5 | 8399908f436c56ef779abd559a2fef0aDownload[+] Credits: John Page (aka hyp3rlinx) [+] Website:...
View ArticleClik here to view.
Chrome V8 JIT Optmization Bug
Chrome V8 JIT suffers from a simplified-lowererer IrOpcode::kStoreField, IrOpcode::kStoreElement optimization bug.MD5 | cf482c8ffa69e71cd5fd8a7fedeea173DownloadChrome: V8: JIT: Simplified-lowererer...
View ArticleClik here to view.
Chrome V8 JIT JSBuiltinReducer::ReduceObjectCreate NULL Check Fail
Chrome V8 JIT JSBuiltinReducer::ReduceObjectCreate fails to ensure that the prototype is "null".MD5 | 96db4756a94460953b8651efe3b9243cDownloadChrome: V8: JIT: JSBuiltinReducer::ReduceObjectCreate fails...
View ArticleClik here to view.
Chrome V8 Out-Of-Bounds Read
Chrome V8 has an empty BytecodeJumpTable that may lead to an out-of-bounds read.MD5 | 3ec3eecf67ab73ca7415c975c50dffbbDownloadChrome: V8: Empty BytecodeJumpTable may lead to OOB read In the current...
View ArticleClik here to view.
Chrome V8 JIT GetSpecializationContext Type Confusion
Chrome V8 JIT suffers from a type confusion vulnerability in GetSpecializationContext.MD5 | c1e3d25702ab92ccc6b9e4fa26a23ca8DownloadChrome: V8: JIT: Type confusion in GetSpecializationContext...
View ArticleClik here to view.
Tenda AC15 Router - Pe-authenticated Remote Code Execution
EDB-ID: 44253Author: Tim CarringtonPublished: 2018-02-14CVE: CVE-2018-5767 Type: RemotePlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # EDB Note ~ Source:...
View ArticleClik here to view.
Memcached - 'memcrashed' Denial of Service
EDB-ID: 44254Author: Alex ConreyPublished: 2018-03-05CVE: N/A Type: DosPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A # Download:...
View ArticleClik here to view.
Softros Network Time System Server 2.3.4 - Denial of Service
EDB-ID: 44255Author: hyp3rlinxPublished: 2018-03-06CVE: CVE-2018-7658 Type: DosPlatform: WindowsVulnerable App: [+] Website: hyp3rlinx.altervista.org [+] Source:...
View Article