Lucene search
K

639 matches found

FireEye
FireEye
added 2015/12/01 8:0 a.m.394 views

China-based Cyber Threat Group Uses Dropbox for Malware Communications and Targets Hong Kong Media Outlets

FireEye Threat Intelligence analysts identified a spear phishing campaign carried out in August 2015 targeting Hong Kong-based media organizations. A China-based cyber threat group, which FireEye tracks as an uncategorized advanced persistent threat APT group and other researchers refer to as...

9.3CVSS0.3AI score0.99966EPSS
Exploits12
FireEye
FireEye
added 2015/12/01 8:0 a.m.829 views

China-based Cyber Threat Group Uses Dropbox for Malware Communications and Targets Hong Kong Media Outlets

FireEye Threat Intelligence analysts identified a spear phishing campaign carried out in August 2015 targeting Hong Kong-based media organizations. A China-based cyber threat group, which FireEye tracks as an uncategorized advanced persistent threat APT group and other researchers refer to as...

9.3CVSS0.3AI score0.99966EPSS
Exploits12
Packet Storm
Packet Storm
added 2015/10/01 12:0 a.m.27 views

Dropbox FinderLoadBundle OS X Local Root Exploit

!/bin/bash Dropbox FinderLoadBundle OS X local root exploit by cenobyte 2015 - vulnerability description: The setuid root FinderLoadBundle that was included in older DropboxHelperTools versions for OS X allows loading of dynamically linked shared libraries that are residing in the same directory...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2015/09/30 12:0 a.m.13 views

Dropbox 3.3.x - OSX FinderLoadBundle Privilege Escalation

Dropbox 3.3.x - OSX FinderLoadBundle Privilege Escalation !/bin/bash Exploit Title: Dropbox FinderLoadBundle OS X local root exploit Google Dork: N/A Date: 29/09/15 Exploit Author: cenobyte Vendor Homepage: https://www.dropbox.com Software Link: N/A Version: Dropbox 1.5.6, 1.6-7., 2.1-11., 3.0.,...

1AI score
Exploits0
Exploit DB
Exploit DB
added 2015/09/30 12:0 a.m.35 views

Dropbox < 3.3.x - OSX FinderLoadBundle Privilege Escalation

!/bin/bash Exploit Title: Dropbox FinderLoadBundle OS X local root exploit Google Dork: N/A Date: 29/09/15 Exploit Author: cenobyte Vendor Homepage: https://www.dropbox.com Software Link: N/A Version: Dropbox 1.5.6, 1.6-7., 2.1-11., 3.0., 3.1., 3.3. Tested on: OS X Yosemite 10.10.5 CVE: N/A Dropb...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2015/09/19 2:15 a.m.14 views

When a 'Hacker News' Reader Tricked Me into visiting this Amazing Site (Don't Click at Work)

My usual bed routine is to check comments under my articles before I go to sleep. The same I was doing last night, but something weird happened to me. Someone posted a mysterious short link without any text below one of my articles on our official 'The Hacker News' Facebook Page, and with the...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/09/18 12:0 a.m.20 views

Dropbox Login Detection (deprecated)

Binary data 8872.prm...

7.3AI score
Exploits0References1
Hacker One
Hacker One
added 2015/09/15 7:7 p.m.26 views

Mail.ru: Vulnerability :- "XSS vulnerability"

Hello mail.ru Security Team, I have found XSS vulnerability On your WEBSITE :- http://corp.mail.ru/en/jobs/feedback/ My Payload is this :- '" Vulnerability :- "XSS vulnerability" Vulnerable Fields : "Social Network fields" Cross-Site Scripting XSS vulnerabilities are a type of computer security...

0.2AI score
Exploits0
OSV
OSV
added 2015/08/13 8:56 p.m.9 views

MGASA-2015-0314 Updated owncloud package fixes security vulnerabilities

In ownCloud before 6.0.8 and 8.0.4, a bug in the SDK used to connect ownCloud against the Dropbox server might allow the owner of "Dropbox.com" to gain access to any files on the ownCloud server if an external Dropbox storage was mounted CVE-2015-4715. In ownCloud before 6.0.8 and 8.0.4, the...

9CVSS6AI score0.03043EPSS
Exploits0References6
Mageia
Mageia
added 2015/08/13 8:56 p.m.45 views

Updated owncloud package fixes security vulnerabilities

In ownCloud before 6.0.8 and 8.0.4, a bug in the SDK used to connect ownCloud against the Dropbox server might allow the owner of "Dropbox.com" to gain access to any files on the ownCloud server if an external Dropbox storage was mounted CVE-2015-4715. In ownCloud before 6.0.8 and 8.0.4, the...

9CVSS6.8AI score0.03043EPSS
Exploits0References5
CNVD
CNVD
added 2015/07/12 12:0 a.m.2 views

Tango DropBox ActiveX Control Heap Buffer Overflow Vulnerability

Etonica Tango DropBox is a suite of free FTP applications that offer features such as uploading files and folders, intermittent transfers and browsing remote folders. A remote heap buffer overflow vulnerability exists in the Etonica Tango DropBox ActiveX control, which allows remote attackers to...

7.8AI score
Exploits0References1
Hacker One
Hacker One
added 2015/06/25 6:21 a.m.11 views

ThisData: Xss via Dropbox

ThisData formerly Revert provides the ability to backup Dropbox files. File names were rendered within the app in an unescaped manner, meaning if you could get Dropbox to accept a file with a name like ".png you could XSS Revert's backup rendering screen...

1.5AI score
Exploits0
OwnCloud
OwnCloud
added 2015/06/24 6:45 p.m.24 views

Mounted Dropbox storage allows "Dropbox.com" to access any file - ownCloud

A bug in the SDK used to connect ownCloud against the Dropbox server might allow the owner of "Dropbox.com" to gain access to any files on the ownCloud server if an external Dropbox storage was mounted. This was caused by a feature of PHP which has been turned off per default as of PHP 5.6.0 in t...

5.5AI score0.0144EPSS
Exploits0Affected Software1
OwnCloud
OwnCloud
added 2015/06/24 4:10 p.m.28 views

Server: Mounted Dropbox storage allows "Dropbox.com" to access any file

A bug in the SDK used to connect ownCloud against the Dropbox server might allow the owner of "Dropbox.com" to gain access to any files on the ownCloud server if an external Dropbox storage was mounted. This was caused by a feature of PHP which has been turned off per default as of PHP 5.6.0 in t...

0.1AI score0.0144EPSS
Exploits0Affected Software1
0day.today
0day.today
added 2015/06/20 12:0 a.m.23 views

Tango DropBox 3.1.5 Active-X Heap Spray Vulnerability

Tango DropBox active-x heap spray exploit that leverages a vulnerability in the COM component used eSellerateControl350.dll 3.6.5.0 method of the GetWebStoreURL member. Affects versions 3.1.5 and PRO. Tango DropBox Activex Heap Spray Exploit Version:3.1.5 + PRO The vulnerability lies in the COM...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2015/06/19 12:0 a.m.29 views

Tango DropBox 3.1.5 + PRO - Activex HeapSpray

Tango DropBox Activex Heap Spray Exploit Version:3.1.5 + PRO The vulnerability lies in the COM component used eSellerateControl350.dll 3.6.5.0 method of the ''GetWebStoreURL' member. Vendor Homepage:http://etonica.com/dropbox/index.html Software Link:http://etonica.com/dropbox/download.html Autho...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2015/06/19 12:0 a.m.25 views

Tango DropBox 3.1.5 + PRO - Activex HeapSpray

Tango DropBox 3.1.5 + PRO - Activex HeapSpray Tango DropBox Activex Heap Spray Exploit Version:3.1.5 + PRO The vulnerability lies in the COM component used eSellerateControl350.dll 3.6.5.0 method of the ''GetWebStoreURL' member. Vendor Homepage:http://etonica.com/dropbox/index.html Software...

0.5AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2015/06/18 12:0 a.m.25 views

Tango DropBox v3.1 PRO - ActiveX Heap Spray Exploit

Document Title: =============== Tango DropBox v3.1 PRO - ActiveX Heap Spray Exploit References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1529 View Video: https://www.youtube.com/watch?v=jOCGPNzqkXg Release Date: ============= 2015-06-18 Vulnerability Laboratory ID VL-ID:...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2015/06/17 12:0 a.m.15 views

Tango DropBox v3.1 PRO - ActiveX Heap Spray Exploit

Document Title: =============== Tango DropBox v3.1 PRO - ActiveX Heap Spray Exploit References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1529 View Video: https://www.youtube.com/watch?v=jOCGPNzqkXg Release Date: ============= 2015-06-17 Vulnerability Laboratory ID VL-ID:...

7.4AI score
Exploits0
CNVD
CNVD
added 2015/06/11 12:0 a.m.3 views

WordPress Backup to Dropbox plugin cross-site scripting vulnerability

WordPress is a blogging platform developed using the PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.WordPress Backup to Dropbox is a plugin for backing up data to Dropbox. A cross-site scripting vulnerability exists in the WordPress Backup to Dropbox...

6.1CVSS5.9AI score0.0145EPSS
Exploits0References1
Rows per page
Query Builder