ExpressVPN VPN Router 1.0 - Router Login Panel's Integer Overflow

Exploit Title: ExpressVPN VPN Router 1.0 - Router Login Panel's Integer Overflow Date: 09-04-2021 Exploit Author: Jai Kumar Sharma Vendor Homepage: https://www.expressvpn.com/ Software Link: https://www.expressvpn.com/vpn-software/vpn-router Version: version 1 Tested on: Windows/Ubuntu/MacOS CVE ...

CVE-2020-29238

An integer buffer overflow in the Nginx webserver of ExpressVPN Router version 1 allows remote attackers to obtain sensitive information when the server running as reverse proxy via specially crafted request...

Integer overflow

An integer buffer overflow in the Nginx webserver of ExpressVPN Router version 1 allows remote attackers to obtain sensitive information when the server running as reverse proxy via specially crafted request...

CVE-2020-29238

CVE-2020-29238 describes an integer buffer overflow in the Nginx webserver used by ExpressVPN Router firmware v1, when the server runs as a reverse proxy. The vulnerability allows remote attackers to cause information disclosure via specially crafted requests. Affected product is ExpressVPN Route...

CVE-2020-29238

An integer buffer overflow in the Nginx webserver of ExpressVPN Router version 1 allows remote attackers to obtain sensitive information when the server running as reverse proxy via specially crafted request...

ExpressVPN Router 输入验证错误漏洞

ExpressVPN Router is a VPN router from ExpressVPN UK. It provides a protected network communication feature. ExpressVPN Router suffers from an input validation error vulnerability that originates from an integer buffer overflow in the Nginx web server, which can be exploited by an attacker to...

Boost Your Personal Security With These Killer 2019 Black Friday and Cyber Monday Deals

If you're like most consumers, you're probably looking forward to the upcoming Black Friday and Cyber Monday sale events. Who wouldn't want to get all sorts of products and services at massive discounts? But while most consumers are typically eyeing personal gadgets and entertainment appliances,...

ExpressVPN Unquoted Service Path Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits Exploit Title : ExpressVPN - Unquoted Service Path Privilege Escalation Vendor Homepage : www.expressvpn.com Exploit Author: Iran Cyber Security Group Date : 2019-07-14 Tested on : Win10 Discovered By : Und3rgr0und Our Team :...

CVE-2018-15490

An issue was discovered in ExpressVPN on Windows. The Xvpnd.exe process which runs as a service with SYSTEM privileges listens on TCP port 2015, which is used as an RPC interface for communication with the client side of the ExpressVPN application. A JSON-RPC protocol over HTTP is used for...

Path traversal

An issue was discovered in ExpressVPN on Windows. The Xvpnd.exe process which runs as a service with SYSTEM privileges listens on TCP port 2015, which is used as an RPC interface for communication with the client side of the ExpressVPN application. A JSON-RPC protocol over HTTP is used for...

CVE-2018-15490

ExpressVPN for Windows contains a path traversal vulnerability in the JSON-RPC methods XVPN.GetPreference and XVPN.SetPreference within the Xvpnd.exe service (running with SYSTEM privileges). The Xvpnd RPC interface listens on TCP port 2015 and communicates over HTTP, allowing a local attacker to...

CVE-2018-15490

An issue was discovered in ExpressVPN on Windows. The Xvpnd.exe process which runs as a service with SYSTEM privileges listens on TCP port 2015, which is used as an RPC interface for communication with the client side of the ExpressVPN application. A JSON-RPC protocol over HTTP is used for...

4Nonimizer - A Tool For Anonymizing The Public IP Used To Browsing Internet, Managing The Connection To TOR Network And To Different VPNs Providers

It is a bash script for anonymizing the public IP used to browsing Internet, managing the connection to TOR network and to different top VPN providers OpenVPN, whether free or paid. By default, it includes several pre-configured VPN connections to different peers .ovpn files and download the...

Apple removes VPN Apps from the China App Store

In order to comply with Chinese censorship law, Apple has started removing all virtual private network VPN apps from the App Store in China, making it harder for internet users to bypass its Great Firewall. VPN service providers that provide services in China has accused the United States tech...

ExpressVPN - VPN for Android - Dangerous filesystem permissions, GPL license vulnerabilities

HackApp vulnerability scanner discovered that application ExpressVPN - VPN for Android published at the 'play' market has multiple vulnerabilities...