TP-Link IP Camera Hardcoded Credentials / Command Injection

Core Security - Corelabs Advisory http://corelabs.coresecurity.com TP-Link IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: TP-Link IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0318 Advisory URL:...

Vivotek IP Camera Buffer Overflow / Disclosure / Injection

Core Security - Corelabs Advisory http://corelabs.coresecurity.com Vivotek IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: Vivotek IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0301 Advisory URL:...

VMware vSphere Hypervisor Vulnerability

Core Security - Corelabs Advisory 1. Advisory Information Title: VMware vSphere Hypervisor Vulnerability Advisory ID: CORE-2012-0710 Advisory URL: Date published: 2012-11-15 Date of last update: 2012-11-16 Vendors contacted: VMware Release mode: Coordinated release 2. Vulnerability Information...

AWCM 2.2 Access Bypass Vulnerability

AWCM version 2.2 appears to suffer from cookie forgery and direct access vulnerabilities. Vulnerability Report AWCM 2.2 CVE-Candidate-ID: CVE-2012-2437, CVE-2012-2438 Issue: Access Control Bug in AWCM 2.2, Anyone can build the cookie and inserts DB records. Author: Sooel Son sonpostman at gmail d...

Oracle BTM Server 12.1.0.2.7 FlashTunnelService Remote File Deletion

Exploit for windows platform in category remote exploits Oracle Business Transaction Management Server 12.1.0.2.7 FlashTunnelService Remote File Deletion tested against: Microsoft Windows Server 2003 r2 sp2 Oracle WebLogic Server 12c 12.1.1 Oracle Business Transaction Management Server 12.1.0.2.7...

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 - ActiveX 'GetObject()' Code Execution

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject Security Bypass Remote Code Execution Vulnerability tested against: Microsoft Windows Vista sp2 Microsoft Windows 2003 r2 sp2 Internet Explorer 7/8/9 product homepage:...

Yahoo Messenger Exploit Changes Status Messages

Security researchers at BitDefender are warning users about a new Yahoo! Messenger vulnerability that allows an attacker to change victims’ status updates. According to the security firm, the situation has been exploited in the wild to target version 11.x of the Messenger client. The vulnerabilit...

Apple Mac OSX < 10.6.7 - Kernel Panic (Denial of Service)

/ Mac OS X include include include include include void dummyfunc void asm volatile ".byte 0xff" ; int main void int ret; union ldtentry cgate, cgate2; char dummy128 = 0x00,; cgate.callgate.offset00 = unsigned intdummyfunc & 0xffff; cgate.callgate.offset16 = unsigned intdummyfunc 16 & 0xffff; //...

Multiple vulnerabilities in HP Data Protector

Core Security Technologies - Corelabs Advisory Multiple vulnerabilities in HP Data Protector 1. Advisory Information Title: Multiple vulnerabilities in HP Data Protector Advisory ID: CORE-2011-0514 Advisory URL: http://www.coresecurity.com/content/HP-Data-Protector-multiple-vulnerabilities Date...

BugTracker.NET 3.4.4 - Multiple Vulnerabilities

Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Multiple vulnerabilities in BugTracker.Net 1. Advisory Information Title: Multiple vulnerabilities in BugTracker.Net Advisory Id: CORE-2010-1109 Advisory URL:...

[CORE-2010-0624] MS OpenType CFF Parsing Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ MS OpenType CFF Parsing Vulnerability 1. Advisory Information Title: MS OpenType CFF Parsing Vulnerability Advisory Id: CORE-2010-0624 Advisory URL:...

MS OpenType CFF Parsing Vulnerability

Core Security - CoreLabsMS OpenType CFF Parsing Vulnerability 1. Advisory Information Title: MS OpenType CFF Parsing Vulnerability Advisory Id: CORE-2010-0624 Advisory URL: http://www.coresecurity.com/content/ms-opentype-cff-parsing-vulnerability Date published: 2010-10-12 Date of last update:...

Tele Data's Contact Management Server 0.9 - 'Username' SQL Injection

source: https://www.securityfocus.com/bid/39799/info The Tele Data's Contact Management Server is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

TLS Renegotiation Vulnerability: Proof of Concept Code (Python)

Information about a vulnerability in the TLS protocol was published in the beginning of November 2009. Attackers can take advantage of that vulnerability to inject arbitrary prefixes into a network connection protected by TLS. This can result in severe vulnerabilities, depending on the applicatio...

IPB v2.x up to 3.0.4 XSS vulnerability

Invision Power Board XSS vulnerability Software : Invision Power Board IPB Affected : IPB v2.x up to v3.0.4 prior versions might be vulnerable as well Remote : Yes Required : Internet Explorer +5.0 Vendor : http://www.invisionpower.com/ Download : Commercially available Author : Xacker Contact :...

CORE-2009-0911: DAZ Studio Arbitrary Command Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ DAZ Studio Arbitrary Command Execution 1. Advisory Information Title: DAZ Studio Arbitrary Command Execution Advisory Id: CORE-2009-0911 Advisory URL:...

Autodesk SoftImage Scene TOC - Arbitrary Command Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Autodesk SoftImage Scene TOC Arbitrary Command Execution 1. Advisory Information Title: Autodesk SoftImage Scene TOC Arbitrary Command Execution Advisory Id:...

Novell Groupwise Client 7.0.3.1294 - ActiveX Denial of Service (PoC)

Novell Groupwise Client 7.0.3.1294 - ActiveX Denial of Service PoC Application: Novell Groupwise Client 7.0.3.1294 Platforms: Windows XP Professional French SP2 and SP3 crash: IE 6.0.2900.2180 Exploitation: remote DoS Date: 2009-08-24 Author: Francis Provencher Protek Research Lab's 1 Introductio...

Novell Client For Windows 2000/XP Denial Of Service

Application: Novell Client for Windows 2000 and XP Platforms: Windows XP Professional French SP2 crash: IE 6.0.2900.2180 Exploitation: remote DoS Date: 2009-08-24 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details 3 The Code =============== 1 Introduction...

Real Helix DNA RTSP and SETUP Request Handler Vulnerabilities

Exploit for multiple platform in category dos / poc ============================================================= Real Helix DNA RTSP and SETUP Request Handler Vulnerabilities ============================================================= -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security...