CVE-2018-1000628

Battelle V2I Hub 2.5.1 could allow a remote attacker to bypass security restrictions, caused by the direct checking of the API key against a user-supplied value in PHP's GET global variable array using PHP's strcmp function. By adding "" to the end of "key" in the URL when accessing API functions...

Delphi Packer Looks for Human Behavior Before Deploying Payload

As bad actors continue to innovate in the area of sandbox evasion, the use of the Delphi programming language to pack malware code has become more and more prevalent. Researchers recently observed several spam campaigns using a specific packer written in Delphi that goes to great lengths to hunt...

Adobe Acrobat and Reader Security Bypass (APSB17-36: CVE-2017-16380)

A Security Bypass vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to the way Adobe Reader handles certain API functions, that could lead to bypass restrictions. A remote attacker can exploit this issue by enticing a target user to open a specially crafted PDF file...

CVE-2015-2750

Open redirect vulnerability in URL-related API functions in Drupal 6.x before 6.35 and 7.x before 7.35 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the "//" initial sequence...

CVE-2015-2750

CVE-2015-2750 is an open redirect vulnerability in Drupal 6.x before 6.35 and 7.x before 7.35 that allows remote attackers to redirect users to arbitrary sites and facilitate phishing via the // sequence. The issue affects Drupal’s URL-related API functions; there is no exploitation detail in the...

Microsoft Windows - Uniscribe Font Processing Multiple Heap Out-of-Bounds and Wild Reads (MS17-011)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1031 Through fuzzing, we have discovered a number of different crashes in the Windows Uniscribe user-mode library, while trying to display text using a corrupted font file or calling documented Uniscribe API functions against such...

Adobe Acrobat and Reader Security Bypass (APSB16-14 : CVE-2016-1040)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to the way Adobe Reader handles certain API functions, that could lead to bypass restrictions. A remote attacker can exploit this issue by enticing a target user to open a specially crafted PDF file...

Adobe Acrobat and Reader Security Bypass (APSB16-14: CVE-2016-1044)

A remote code execution vulnerability has been reported in Adobe Acrobat and Reader. The vulnerability is due to the way Adobe Reader handles certain API functions, that could lead to bypass restrictions. A remote attacker can exploit this issue by enticing a target user to open a specially craft...

Cisco APIC Enterprise Module Unauthorized Access Vulnerability (cisco-sa-20160428-apic)

Cisco APIC Enterprise Module is prone to unauthorized access vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Reader and Acrobat JavaScript bypass security restrictions (APSB15-15 : CVE-2015-4451)

A remote code execution vulnerability has been reported in Adobe Acrobat and Reader. The vulnerability is due to the way Adobe Reader handles certain API functions, that could lead to bypass restrictions. A remote attacker can exploit this issue by enticing a target user to open a specially craft...

Microsoft Windows NTLM automatically authenticates via SMB when following a file:// URL

Overview Software running on Microsoft Windows that utilizes HTTP requests can be forwarded to a file:// protocol on a malicious server, which causes Windows to automatically attempt authentication via SMB to the malicious server in some circumstances. The encrypted form of the user's credentials...

Drupal 6.x < 6.35 / 7.x < 7.35 Multiple Vulnerabilities

The remote web server is running a version of Drupal that is 6.x prior to 6.35 or 7.x prior to 7.35. It is, therefore, potentially affected by the following vulnerabilities : - An access bypass vulnerability exists in which password reset URLs can be forged. This allows a remote attacker to gain...

Updated libpng packages fix two security vulnerabilities

Updated libpng12 and libpng packages fix security vulnerabilities: An integer overflow leading to a heap-based buffer overflow was found in the pngsetsPLT and pngsettext2 API functions of libpng. An attacker could create a specially-crafted image file and render it with an application written to...

CVE-2012-4464

Ruby 1.9.3 before patchlevel 286 and 2.0 before revision r37068 allows context-dependent attackers to bypass safe-level restrictions and modify untainted strings via the 1 exctos or 2 nameerrtos API function, which marks the string as tainted, a different vulnerability than CVE-2012-4466. NOTE:...

CVE-2012-3473

The 1 reports API and 2 administration feature in the comments API in the Ushahidi Platform before 2.5 do not require authentication, which allows remote attackers to generate reports and organize comments via API functions...

[oCERT-2009-017] PHP multiple issues

2009-017 PHP multiple issues Description: PHP, an open source scripting language, suffers from several bugs that may pose a security risk. The reported issues have been discovered in several API functions, issues include buffer overflows, near null reads/writes, arbitrary memory read and an...

Microsoft Windows LoadImage API Function Integer Overflow (CVE-2004-1049)

In terms of Microsoft Windows technology, a resource is binary data that can be added to the executable file of a Windows-based application. Graphical images such as icons, cursors and bitmaps are example of standard resources. Windows-based applications support loading and rendering of graphical...

4 kinds of the most popular Trojans bundled Controller skills-vulnerability warning-the black bar safety net

A traditional bundle This principle is very simple, is currently the most used one. Is the B. exe attached to A. exe at the end. So when A. exe to be executed when the B. exe also follow the implementation. This bundle of code over the network. My earliest is from jingtao's an article about the...

Visual Basic Enterprise Edition SP6 - &#039;vb6skit.dll&#039; Buffer Overflow (PoC)

----------------------------------------------------------------------------- Visual Basic Enterprise Edition SP6 vb6skit.dll Buffer Overflow url: http://www.microsoft.com Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose...

Visual Basic Enterprise Edition SP6 vb6skit.dll Buffer Overflow PoC

Exploit for unknown platform in category dos / poc =================================================================== Visual Basic Enterprise Edition SP6 vb6skit.dll Buffer Overflow PoC ===================================================================...