752 matches found
Sliver - Implant Framework
Sliver is a general purpose cross-platform implant framework that supports C2 over Mutual-TLS, HTTPS, and DNS. Implants are dynamically compiled with unique X.509 certificates signed by a per-instance certificate authority generated when you first run the binary. The server, client, and implant a...
pfSense 2.4.4-p3 (ACME Package 0.59_14) - Persistent Cross-Site Scripting
pfSense 2.4.4-p3 ACME Package 0.5914 - Persistent Cross-Site Scripting Exploit Title: pfSense 2.4.4-p3 ACMEPackage 0.5.71 - Stored Cross-Site Scripting Date: 05.28.2019 Exploit Author: Chi Tran Vendor Homepage: https://www.pfsense.org Version: 2.4.4-p3/0.5.71 Software Link: N/A Google Dork: N/A...
pfSense 2.4.4-p3 (ACME Package 0.59_14) - Persistent Cross-Site Scripting
Exploit Title: pfSense 2.4.4-p3 ACMEPackage 0.5.71 - Stored Cross-Site Scripting Date: 05.28.2019 Exploit Author: Chi Tran Vendor Homepage: https://www.pfsense.org Version: 2.4.4-p3/0.5.71 Software Link: N/A Google Dork: N/A CVE:2019-12347 Introduction pfSense® software is a free, open source...
pfSense 2.4.4-p3 Cross Site Scripting
Exploit Title: pfSense 2.4.4-p3 ACMEPackage 0.5.71 - Stored Cross-Site Scripting Date: 05.28.2019 Exploit Author: Chi Tran Vendor Homepage: https://www.pfsense.org Version: 2.4.4-p3/0.5.71 Software Link: N/A Google Dork: N/A CVE:2019-12347 Introduction pfSense® software is a free, open source...
Encrypt PDF 2.3 - Denial of Service (PoC)
Encrypt PDF 2.3 - Denial of Service PoC -- coding: utf-8 -- Exploit Title: Encrypt PDF v2.3 - Denial of Service PoC Date: 19/05/2019 Author: Alejandra Sánchez Vendor Homepage: http://www.verypdf.com Software: http://www.verypdf.com/encryptpdf/encryptpdf.exe Version: 2.3 Tested on: Windows 10 Proo...
Encrypt PDF 2.3 - Denial of Service Exploit
-- coding: utf-8 -- Exploit Title: Encrypt PDF v2.3 - Denial of Service PoC Author: Alejandra Sánchez Vendor Homepage: http://www.verypdf.com Software: http://www.verypdf.com/encryptpdf/encryptpdf.exe Version: 2.3 Tested on: Windows 10 Proof of Concept: 1.- Run the python script "EncryptPDF.py", ...
VeryPDF PCL Converter 2.7 Denial Of Service
-- coding: utf-8 -- Exploit Title: VeryPDF PCL Converter v2.7 - Denial of Service PoC Date: 19/05/2019 Author: Alejandra Sánchez Vendor Homepage: http://www.verypdf.com Software: http://www.verypdf.com/pcltools/pcl-converter.exe Version: 2.7 Tested on: Windows 10 Proof of Concept: 1.- Run the...
Former Mozilla CTO Harassed at the US Border
This is a pretty awful story of how Andreas Gal, former Mozilla CTO and US citizen, was detained and threatened at the US border. CBP agents demanded that he unlock his phone and computer. Know your rights when you enter the US. The EFF publishes a handy guide. And if you want to encrypt your...
The vulnerability of the Python-gnupg information encryption package lies in insufficient validation of input data, allowing a hacker to execute arbitrary code.
The vulnerability of the gnupg.GPG.encrypt and gnupg.GPG.decrypt methods of the Python-gnupg encryption library exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
U.S. Gov Issues Urgent Warning of DNS Hijacking Attacks
The Department of Homeland Security is ordering all federal agencies to urgently audit Domain Name System DNS security for their domains in the next 10 business days. The department’s rare “emergency directive,” issued Tuesday, warned that multiple government domains have been targeted by DNS...
PT-2019-1354 · Gnupg +2 · Python-Gnupg +2
Name of the Vulnerable Software and Affected Versions: python-gnupg version 0.4.3 Description: The issue is related to improper input validation, allowing context-dependent attackers to trick gnupg into decrypting other ciphertext than intended. This can be achieved if the passphrase to gnupg is...
Authorization Bypass
JGroup is vulnerable to aurthorization bypass attacks which can lead to information disclosure and spoofing attacks. The vulnerability exists as a malicious user can bypass security restrictions when the attacker node joins the cluster. It happens as JGroup did not check for the essential headers...
mkcert: valid HTTPS certificates for localhost
or for any other names The web is moving to HTTPS, preventing network attackers from observing or injecting page contents. But HTTPS needs TLS certificates, and while deployment is increasingly a solved issue thanks to the ACME protocol and Let's Encrypt, development still mostly ends up happenin...
ASUSTOR ADM Information Disclosure Vulnerability (CNVD-2018-26926)
ASUSTOR ADM is an operating system from ASUSTOR dedicated to ASUSTOR NAS storage devices. An information disclosure vulnerability exists in the share.cgi file in ASUSTOR ADM version 3.1.1, which can be exploited by an attacker to obtain a key with the help of the 'encryptkey' URL parameter...
CVE-2018-12308
Encryption key disclosure in share.cgi in ASUSTOR ADM version 3.1.1 allows attackers to obtain the encryption key via the "encryptkey" URL parameter...
Input validation
Improper input validation in WLAN encrypt/decrypt module can lead to a buffer copy in Snapdragon Mobile in version SD 835, SD 845, SD 850...
CVE-2018-11857
CVE-2018-11857 involves improper input validation in the WLAN encrypt/decrypt module in Qualcomm Snapdragon Mobile, causing a buffer copy vulnerability. Affected are SD 835, 845, and 850-based devices. The entry indicates local attack potential with high impact to confidentiality, integrity, and ...
CVE-2018-11857
Improper input validation in WLAN encrypt/decrypt module can lead to a buffer copy in Snapdragon Mobile in version SD 835, SD 845, SD 850...
PT-2018-13086 · Legion Of The Bouncy Castle · Pycryptodome
Name of the Vulnerable Software and Affected Versions: PyCryptodome versions prior to 3.6.6 Description: The issue is related to an integer overflow in the data len variable in AESNI.c, which affects the AESNI encrypt and AESNI decrypt functions. This leads to the mishandling of messages shorter...
Microsoft Adds Direct Trust for Let’s Encrypt
Microsoft has added direct trust for Let’s Encrypt certificates, meaning that all major browsers and operating systems, including Apple, Blackberry, Google, Microsoft, Mozilla and Oracle, now all directly trust the Let’s Encrypt root, ISRG Root X1. Let’s Encrypt provides free digital certificates...