Disney Infinity: Toy Box 2.0 - Base64 encoded String, Customized SSL, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Disney Infinity: Toy Box 2.0 published at the 'play' market has multiple vulnerabilities...

Infinity Dungeon Evolution! - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Infinity Dungeon Evolution! published at the 'play' market has multiple vulnerabilities...

LAUNCH DAY(INFINITY ORIGINALS) - Dangerous filesystem permissions, Insecure KeyStore vulnerabilities

HackApp vulnerability scanner discovered that application LAUNCH DAYINFINITY ORIGINALS published at the 'play' market has multiple vulnerabilities...

My Disney Infinity Collection - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application My Disney Infinity Collection published at the 'play' market has multiple vulnerabilities...

CVE-2014-8779

Pexip Infinity before 8 uses the same SSH host keys across different customers' installations, which allows man-in-the-middle attackers to spoof Management and Conferencing Nodes by leveraging these keys...

Code injection

Pexip Infinity before 8 uses the same SSH host keys across different customers' installations, which allows man-in-the-middle attackers to spoof Management and Conferencing Nodes by leveraging these keys...

CVE-2014-8779

CVE-2014-8779 affects Pexip Infinity prior to v8, where non-unique SSH host keys are used across different installations. Root cause: fixed/static host keys embedded in images allow an attacker with network access to impersonate a Pexip Infinity node and perform MITM SSH sessions, potentially cap...

CVE-2014-8779

Pexip Infinity before 8 uses the same SSH host keys across different customers' installations, which allows man-in-the-middle attackers to spoof Management and Conferencing Nodes by leveraging these keys...

CVE-2014-8779: SSH Host keys on Pexip Infinity

Summary ======= The operating system used by Pexip Infinity does not create unique SSH host keys on deployment of new Management and Conferencing Nodes, using fixed host keys instead. Host keys are used to verify the identity of the remote host when connecting to it over SSH. These keys are...

Pexip Infinity static ssh keys

Static ssh key is used on nodes creation...

Pexip Infinity Man-in-the-Middle Security Bypass Vulnerability

Pexip Infinity is a video conferencing cloud collaboration platform. A security bypass vulnerability exists in Pexip Infinity that allows attackers to conduct man-in-the-middle attacks to gain access to sensitive information...

HM Software S to Infinity 3.0 - Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/1368/info A number of vulnerabilities exist in HM Software S to Infinity, a security access control, desktop lockdown and transparent encryption application. Intended features include restriction of access to folders,...

Infinity <= 2.x.x options[style_dir] Local File Disclosure Vulnerability

No description provided by source. ------------------Infinity = v2.X.X Local File Disclosure / Auth Bypass Vulnerabilities------------------------- ---------------------------------------------------------------------------------------------------------------- Script : Infinity version : 2.X.X...

Infinity CGI Exploit Scanner 3.11 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7910/info Infinity CGI Exploit Scanner is reported to be prone to a cross-site scripting vulnerability. An attacker could exploit this issue to creating a malicious link to a site hosting the software that contains hostil...

Infinity CGI Exploit Scanner 3.11 Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7913/info Infinity CGI Exploit Scanner is prone to a remote command execution vulnerability. This is due to insufficient sanitization of input supplied via URI parameters. Exploitation could allow for execution of command...

openSUSE Security Update : ruby (openSUSE-SU-2012:0228-1)

This update of ruby provides 1.8.7p357, which contains many stability fixes and bug fixes, which are fully compatible with the previous version. You can review the detailed list here : http://svn.ruby-lang.org/repos/ruby/tags/v187357/ChangeLog The particularly noteworthy fixes are : - Hash...

Infinity Exploit Kit Landing Page (CVE-2013-1347; CVE-2013-2423; CVE-2013-2465; CVE-2014-0322; CVE-2014-0502; CVE-2014-1776)

Infinity is a web exploit kit that operates by delivering a malicious payload to the victim's computer. Remote attackers can infect users with Infinity exploit kit by enticing them to visit a malicious web page. Infinity Exploit Kit installs payloads on infected computer, which could result in da...

SuSE 11.1 Security Update : ruby (SAT Patch Number 5716)

This update of ruby provides 1.8.7p357, which contains many stability fixes and bug fixes while maintaining full compatibility with the previous version. A detailailed list of changes is available from http://svn.ruby-lang.org/repos/ruby/tags/v187357/ChangeLog . The most important fixes are : -...

Call of Duty, Spider-Man and other 7 Largest Video Game Sites Hacked

Call of Duty, Spider-Man and other 7 Largest Video Game Sites Hacked Today Turkish Hackers from group "GrayHatz" hack and Deface Call of Duty, Spider-Man and other 7 Largest Video Game Sites. Hacked Sites Include: - Call of Duty® Official Video Game Site : Link and Mirror - X-Men Origins:...

Infinity 0-day Denial of Service

Exploit for windows platform in category dos / poc ================================ Infinity 0-day Denial of Service ================================ The largest Exploit Database in the world ! 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /,...