RubyGems: Bundler's RCE with response using Marshal

A vulnerability was found in Bundler's dependency API endpoint, which uses Marshal serialization. This could allow for remote code execution if a client receives a specially crafted response. The impact is increased risk from specifying an untrusted source or man-in-the-middle attack...

CVE-2019-18625

An issue was discovered in Suricata 5.0.0. It was possible to bypass/evade any tcp based signature by faking a closed TCP session using an evil server. After the TCP SYN packet, it is possible to inject a RST ACK and a FIN ACK packet with a bad TCP Timestamp option. The client will ignore the RST...

curl: Integer overlow in "header_append" function

Summary: The function headerappend contains an integer overflow, it can bypass the check on the length and can lead to a subsequent heap buffer overflow. Steps To Reproduce: I don't have PoC, but here there is a little description of the problem vulnerable code static CURLcode headerappendstruct...

LabF nfsAxe FTP Client 3.7 Buffer Overflow

!/usr/bin/python print "LabF nfsAxe 3.7 FTP Client Buffer Overflow SEH" print "Author: Tulpa / tulpaattulpa-securitydotcom" Author website: www.tulpa-security.com Author twitter: @tulpasecurity Tested on Windows Vista x86 import socket import sys badchars \x00\x10\x0a buf = "" buf +=...

Alteon OS BBI (Nortell) - Cross-Site Scripting / Cross-Site Request Forgery

Exploit Title: Alteon OS BBI Nortell - Multiple Vulnerabilities Date: 16 Nov 09 Author: Sintsov Alexey Software Link: downoad link if available Version: Date: Mon, 16 Nov 2009 14:01:04 +0300 Digital Security Research Group DSecRG Advisory http://dsecrg.com/pages/vul/show.php?id=161 Various XSS an...