3 matches found
Dell SupportAssist Client 路径遍历漏洞
Dell SupportAssist Client is a client application from Dell USA. The program provides automated, proactive and predictive techniques for troubleshooting, etc. Dell SupportAssist Client Consumer and Dell SupportAssist Client Commercial are vulnerable to arbitrary file deletion, which could be...
Metasploit Wrap-Up
Redis Sandbox Escape Our very own Jake Baines wrote a module that performs a sandbox escape on Redis versions between 5.0.0 and 6.1.0 and achieves remote code execution as the redis user. Redis installations can be password protected, so this module supports exploiting the vulnerability with and...
CVE-2005-2861
CVE-2005-2861 affects N-Stealth Commercial Edition before 5.8.0.38 and Free Edition before 5.8.1.03. It is a cross-site scripting (XSS) vulnerability where the Server header in an HTTP response is directly injected into an HTML report, enabling remote attackers to inject arbitrary script/HTML. Th...