Clik here to view.
Schneider Electric InduSoft Web Studio and InTouch Machine Edition - Denial...
EDB-ID: 44572Author: Tenable NSPublished: 2018-05-02CVE: N/A Type: DosPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A What's the attack vector? The vulnerability can be...
View ArticleClik here to view.
DLINK DCS-5020L - Remote Code Execution (PoC)
EDB-ID: 44580Author: Fidus InfoSecurityPublished: 2018-03-27CVE: CVE-cve 2017-17020 Type: WebappsPlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A This walkthrough...
View ArticleClik here to view.
Windows - Local Privilege Escalation
EDB-ID: 44581Author: XPNPublished: 2018-04-24CVE: CVE-2018-1038 Type: LocalPlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A #define PML4_BASE 0xFFFFF6FB7DBED000 #define...
View ArticleClik here to view.
Linux Kernel < 4.17-rc1 - 'AF_LLC' Double Free
EDB-ID: 44579Author: SecuriTeamPublished: 2018-04-30CVE: N/A Type: DosPlatform: LinuxAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A #include <endian.h> #include...
View ArticleClik here to view.
TBK DVR4104 / DVR4216 - Credentials Leak
EDB-ID: 44577Author: ezelfPublished: 2018-05-02CVE: CVE-2018-9995 Type: RemotePlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A import json import requests import argparse...
View ArticleClik here to view.
Norton Core Secure WiFi Router - 'BLE' Command Injection (PoC)
EDB-ID: 44574Author: embediPublished: 2018-05-02CVE: CVE-2018-5234 Type: RemotePlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A For more information read...
View ArticleClik here to view.
Call of Duty Modern Warefare 2 - Buffer Overflow
EDB-ID: 44582Author: momo5502Published: 2018-05-02CVE: N/A Type: RemotePlatform: WindowsAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A Although I did not discover it myself, I thought it...
View ArticleClik here to view.
GPON Routers - Authentication Bypass / Command Injection
EDB-ID: 44576Author: vpnmentorPublished: 2018-05-03CVE: CVE-2018-10561... Type: RemotePlatform: HardwareAliases: N/AAdvisory/Source: LinkTags: N/AVulnerable App: N/A echo "[+] Sending the Command… " #...
View ArticleClik here to view.
Linux Kernel AF_LLC Double Free
Linux kernel versions prior to 4.17-rc1 AF_LLC double-free proof of concept code.MD5 | 95f7301c626e8fd16263bcf88239e2f7Download#define _GNU_SOURCE#include <endian.h>#include...
View ArticleClik here to view.
GPON Router Authentication Bypass / Comand Injection
GPON routers suffer from authentication bypass and command injection vulnerabilities.MD5 | 7af9682ee92aebd41743bf56d2a90b85Download#!/bin/bashecho "[+] Sending the Commanda| "# We send the commands...
View ArticleClik here to view.
Chrome V8 Object Allocation Size Integer Overflow
Chrome V8 suffers from an integer overflow vulnerability in object allocation size.MD5 | d354d3af55153261405bf964d6202de1DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
Norton Core Secure WiFi Router BLE Command Injection
Norton Core Secure WiFi Router BLE command injection proof of concept exploit.MD5 | 2aebc879008e52f37a81ae5ab44b97d6DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
TBK DVR4104 / DVR4216 Credential Disclosure
TBK DVR4104 and DVR4216 suffer from a credential disclosure vulnerability.MD5 | 82c31bbb91f9f80b01a1e3744f4db600Download# -*- coding: utf-8 -*- import jsonimport requestsimport argparseimport...
View ArticleClik here to view.
Call Of Duty Modern Warfare 2 Buffer Overflow
Call Of Duty Modern Warfare 2 buffer overflow proof of concept exploit.MD5 | 8820bd38204fbeefbd669103044a8cafDownloadSource:packetstormsecurity.com
View ArticleClik here to view.
Adobe Reader PDF Client-Side Request Injection
Adobe Reader PDF suffers from a client-side request injection vulnerability.MD5 | 87c500d636de4fa14f395f64836a5a20Download% a PDF file using an XFA% most whitespace can be removed (truncated to 570...
View ArticleClik here to view.
Windows Kernel Exploitation Tutorial Part 8: Use After Free
Whitepaper called Windows Kernel Exploitation Tutorial Part 8: Use After Free.MD5 | 89f76cdffee77908ed5e8f26120672b7DownloadSource:packetstormsecurity.com
View ArticleClik here to view.
Oracle Access Manager 11.1.2.3.0 / 12.2.1.3.0 Authentication Bypass
Oracle Access Manager versions 11.1.2.3.0 and 12.2.1.3.0 suffer from an authentication bypass vulnerability.MD5 | b2d1fa8ff54174534c11d0df06d323ddDownloadWe have published an accompanying blog post to...
View ArticleClik here to view.
Dell EMC Unity Family OS Command Injection
Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multiple OS command injection vulnerabilities. A remote application admin user could potentially exploit the...
View ArticleClik here to view.
TP-Link EAP Controller CSRF / Hard-Coded Key / XSS
TP-Link EAP suffers from hard-coded credential, cross site request forgery, cross site scripting, and other vulnerabilities.MD5 | 2bd5d4a8164df05c24571e8ef90378b4DownloadCore Security - Corelabs...
View ArticleClik here to view.
Windows WMI Recieve Notification
This Metasploit module exploits an uninitialized stack variable in the WMI subsystem of ntoskrnl. This Metasploit module has been tested on vulnerable builds of Windows 7 SP0 x64 and Windows 7 SP1...
View Article