Adobe Acrobat Reader - ASLR + DEP Bypass with Sandbox Bypass

Adobe Acrobat Reader - ASLR + DEP Bypass with Sandbox Bypass CVE-2013-0640/1 Somehow, our script got on to the Russian forums :/ @w3bd3vil and @abh1sek Exploit-DB Mirror: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/29881.tar.gz Adobe Acrobat Reader ASLR/DEP...

Adobe Acrobat Reader - ASLR + DEP Bypass with Sandbox Bypass

CVE-2013-0640/1 Somehow, our script got on to the Russian forums :/ @w3bd3vil and @abh1sek Exploit-DB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/29881.tar.gz Adobe Acrobat Reader ASLR/DEP bypass Exploit with SANDBOX BYPASS...

Threat Outbreak Alert: Fake Company Complaint Email Messages on November 26, 2013

Medium Alert ID: 31905 First Published: 2013 November 26 18:16 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a notification regarding a company complaint for the recipient. The text in the email message attempts to...

Threat Outbreak Alert: Fake Payment Information Email Messages on November 21, 2013

Medium Alert ID: 31868 First Published: 2013 November 22 13:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain payment information for the recipient. The text in the email message attempts to convince the recipient to op...

Unrestricted file upload

Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure NWDI allows remote attackers to execute arbitrary code by uploading a file with an executable extension via unspecified vectors...

CVE-2013-2114

Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension...

Unrestricted file upload

Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension...

Threat Outbreak Alert: Fake Accounting Form Email Messages on November 15, 2013

Medium Alert ID: 31791 First Published: 2013 November 16 03:30 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an accounting form for the recipient. The text in the email message attempts to convince the recipient to ope...

CVE-2013-2114

Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension...

CVE-2013-2114

Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an executable extension...

Threat Outbreak Alert: Email Messages with Malicious Attachments on November 14, 2013

Medium Alert ID: 31768 First Published: 2013 November 14 19:00 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a malicious attachment for the recipient. The email message attempts to persuade the recipient to open the attachment ...

OSX Screen Capture

This module takes screenshots of target desktop and automatically downloads them. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OSX Screen Capture', 'Description' = %q This module takes...

[SECURITY] [DSA 2796-1] torque security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2796-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso November 13, 2013 http://www.debian.org/security/faq -...

Threat Outbreak Alert: Fake Regulation Document Delivery Email Messages on November 6, 2013

Medium Alert ID: 31667 First Published: 2013 November 7 14:59 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a regulations document for the recipient. The text in the email message attempts to convince the recipient to...

NetGear router through command injection to obtain ROOT privileges[EXP]-vulnerability warning-the black bar safety net

! NetGear router through command injection to obtain ROOT privileges\EXP\ - ScriptALeRT - Minghacker /Article/UploadPic/2013-11/201311614443412.jpg Abroad a large cattle study found that the NetGear router wndr3700v4 firmware authenticate the existence of the vulnerability. Once the Web interface...

Threat Outbreak Alert: Fake Account Payment Notice Email Messages on November 3, 2013

Medium Alert ID: 31609 First Published: 2013 November 4 20:03 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain payment information for the recipient. The text in the email message attempts to convince the recipient to ope...

Double Executable File Extension Arbitrary File Execution

Certain malicious executable files can be hidden using double extension filenames...

Threat Outbreak Alert: Fake Fax Delivery Notification Email Messages on October 30, 2013

Medium Alert ID: 31555 First Published: 2013 October 30 19:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a fax notification for the recipient. The text in the email message attempts to convince the recipient to open...

Threat Outbreak Alert: Fake Wire Transfer Notification Email Messages on October 29, 2013

Medium Alert ID: 31533 First Published: 2013 October 29 19:08 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a wire transfer notification for the recipient. The text in the email message attempts to convince the recipie...

Threat Outbreak Alert: Fake Purchase Order Attachment Email Messages on October 29, 2013

Medium Alert ID: 31531 First Published: 2013 October 29 15:55 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a copy of a purchase order for the recipient. The text in the email message attempts to convince the recipient...