CVE-2018-18203

A vulnerability in the update mechanism of Subaru StarLink Harman head units 2017, 2018, and 2019 may give an attacker with physical access to the vehicle's USB ports the ability to rewrite the firmware of the head unit. This occurs because the device accepts modified QNX6 filesystem images as lo...

DEBIAN-CVE-2016-6489

The RSA and DSA decryption code in Nettle makes it easier for attackers to discover private keys via a cache side channel attack...

Fortinet FortiClient Hardcoded Encryption Keys / Broken SSL Validation

, , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ \ / / \ / \ / / | \ \ Y Y \ / /| / \ /||| / / /.-. / /:wq x.0 '=.|w|.=' =''"''=. presents.. Fortinet FortiClient Multiple Vulnerabilities Affected Versions: Verified on FortiClient iOS v5.2.028 and FortiClient Android 5.2.3.091 PDF:...

Cherry enterprise cms V3. 1 SQL injection and arbitrary administrator account password change. Delete-bug warning-the black bar safety net

Cherry enterprise website management system V3. 1 SQL injectionand any administrator account password to modify. Delete vulnerability Program download address: http://down.chinaz.com/soft/31227.htm Vulnerability file: newscategory. asp Set rs = server. CreateObject"adodb. recordset" sql ="select...

Recently that IE7 0day shellcode decryption-bug warning-the black bar safety net

One, use freshow tool to decrypt Original link http://bbs.kafan.cn/viewthread.php?tid=383769&page=1&extra=page%3D1pid5736829 Need to extract the shellcode decryption 1 dadong replace to % u for once esc decrypt--up 2 esc next fill in 2 1 decode should appear. ! Second, The do-it-yourself it, writ...