CVE-2014-9931

CVE-2014-9931 is a buffer overflow in CAF Linux kernel used by Android; triggered when an OEM customizes app region size due to a hard-coded value. Exploitation is local with user interaction; impact is high on confidentiality, integrity, and availability. No remediation details provided in the s...

CVE-2014-9931

A buffer overflow vulnerability in all Android releases from CAF using the Linux kernel can potentially occur if an OEM performs an app region size customization due to a hard-coded value...

Azar - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Azar published at the 'play' market has multiple vulnerabilities...

Insight into Installed Apps Widget

XenMobile Dashboard provides different widgets which help admins to view useful information at a glance. Other than just viewing the summary that appears in form of graphs, admins can also export the complete set of data as a CSV file to view the details. Installed Apps widget is one of the very...

CVE-2017-5135

Certain Technicolor devices have an SNMP access-control bypass, possibly involving an ISP customization in some cases. The Technicolor formerly Cisco DPC3928SL with firmware D3928SL-P15-13-A386-c3420r55105-160127a could be reached by any SNMP community string from the Internet; also, you can writ...

CVE-2017-5135

CVE-2017-5135 describes an SNMP access-control bypass on certain Technicolor (former Cisco) devices, notably the DPC3928SL. The vulnerability allows authentication with any SNMP community string, potentially granting full remote read/write access via MIB write capabilities (Stringbleed). Concrete...

Web TV - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Web TV published at the 'play' market has multiple vulnerabilities...

HD Tv:Mobile Tv,Live Tv&Movie - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application HD Tv:Mobile Tv,Live Tv&Movie published at the 'play' market has multiple vulnerabilities...

[SECURITY] Fedora 25 Update: xstream-1.4.9-5.fc25

XStream is a simple library to serialize objects to XML and back again. A high level facade is supplied that simplifies common use cases. Custom objects can be serialized without need for specifying mappings. Speed and low memory footprint are a crucial part of the design, making it suitable for...

Kids videos for YouTube - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Kids videos for YouTube published at the 'play' market has multiple vulnerabilities...

My Free Talktime Recharge - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application My Free Talktime Recharge published at the 'play' market has multiple vulnerabilities...

Taxi.Uz - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Taxi.Uz published at the 'play' market has multiple vulnerabilities...

CVE-2017-2997

Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable buffer overflow / underflow vulnerability in the Primetime TVSDK that supports customizing ad information. Successful exploitation could lead to arbitrary code execution...

Aon Browser - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Aon Browser published at the 'play' market has multiple vulnerabilities...

OverThruster - HID Attack Payload Generator For Arduinos

OverThruster is a tool to generate sketches for Arduinos when used as an HID Attack. It was designed around devices with the ATMEGA32U4 chip, like the CJMCU-BEETLE, or the new LilyGo "BadUSB" devices popping up on ebay and aliexpress that look like USB sticks but contain an Arduino. I wrote this...

SPARTA - Network Infrastructure Penetration Testing Tool

SPARTA is a python GUI application which simplifies network infrastructure penetration testing by aiding the penetration tester in the scanning and enumeration phase. It allows the tester to save time by having point-and-click access to his toolkit and by displaying all tool output in a convenien...

XDA - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application XDA published at the 'play' market has multiple vulnerabilities...

Cool SMS - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application Cool SMS published at the 'play' market has multiple vulnerabilities...

SB SmartNet - Customized SSL, Exported ContentProvider, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application SB SmartNet published at the 'play' market has multiple vulnerabilities...

Suunto Movescount - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Suunto Movescount published at the 'play' market has multiple vulnerabilities...