Deserialization Attack

Picklescan is vulnerable to Deserialization Attack. The vulnerability is due to insecure deserialization by Picklescan's failure to detect malicious pickles, which allows an attacker to exfiltrate sensitive information via DNS...

1.7 Tbps DDoS Attack — ​Memcached UDP Reflections Set New Record

The bar has been raised. As more amplified attacks were expected following the record-breaking 1.35 Tbps Github DDoS attack, someone has just set a new record after only four days — 1.7 Tbps DDoS attack. Network security and monitoring company Arbor Networks claims that its ATLAS global traffic a...

UTstarcom WA3002G4 - DNS Change

UTstarcom WA3002G4 - DNS Change !/bin/bash UTstarcom WA3002G4 Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, which is accessible without...

BIND 9.5.0-P2 - Randomized Ports Remote DNS Cache Poisoning

BIND 9.5.0-P2 - Randomized Ports Remote DNS Cache Poisoning Successfully poisoned the latest BIND with fully randomized ports! Exploit required to send more than 130 thousand of requests for the fake records like 131737-4795-15081.blah.com to be able to match port and ID and insert poisoned entry...

ieBypass.txt

Hi LIST. Windows XP SP2 forces the titlebar to be present in script-initiated Internet Explorer windows. In the titlebar, domain name is listed before the page title. Using magic DNS,this domain name can be exploited by malicious people to trick users into visiting a malicious popup window. The...

[COVERT-2001-01] Multiple Vulnerabilities in BIND

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Network Associates, Inc. COVERT Labs Security Advisory January 29, 2001 Vulnerabilities in BIND 4 and 8 COVERT-2001-01 o Synopsis BIND 8 contains a buffer overflow that allows a remote attacker to execute arbitrary code. The overflow is in the initial...