SUSE CVE-2016-5384

fontconfig before 2.12.1 does not validate offsets, which allows local users to trigger arbitrary free calls and consequently conduct double free attacks and execute arbitrary code via a crafted cache file...

LINE: Free Calls & Messages - LGPL license, MIT license vulnerabilities

HackApp vulnerability scanner discovered that application LINE: Free Calls & Messages published at the 'play' market has multiple vulnerabilities...

KakaoTalk: Free Calls & Text - Certificates or keys found, Corrupted files, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application KakaoTalk: Free Calls & Text published at the 'play' market has multiple vulnerabilities...

imo beta free calls and text - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application imo beta free calls and text published at the 'play' market has multiple vulnerabilities...

Maaii: Free Calls & Messages - BSD license, Customized SSL, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Maaii: Free Calls & Messages published at the 'play' market has multiple vulnerabilities...

Free Calls & Text Messenger - BSD license, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Free Calls & Text Messenger published at the 'play' market has multiple vulnerabilities...

TalkU Free Calls +Free Texting - Customized SSL, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application TalkU Free Calls +Free Texting published at the 'play' market has multiple vulnerabilities...

Zipt - free calls and messages - External URLs, Possible privilege escalation, Runtime command execution vulnerabilities

HackApp vulnerability scanner discovered that application Zipt - free calls and messages published at the 'play' market has multiple vulnerabilities...

Signal Desktop Released by Moxie Marlinspike

In March when Moxie Marlinspike and Open Whisper Systems released the iOS version of the Signal encrypted messaging app, the noted security researcher promised to expand its reach and among other things, eventually release a desktop version of Signal. That vision was realized on Wednesday with th...

Libmimedir VCF Memory Corruption PoC

Libmimedir suffers from a memory corruption vulnerability. Adding two NULL bytes to the end of a VCF file allows a user to manipulate free calls which occur during it's lexer's memory clean-up procedure. This could lead to exploitable conditions such as crafting a specific memory chunk to allow f...

Signal 2.0 — Free iPhone App for Encrypted Calls and Texts

An open source software group, Open Whisper Systems, has announced the release of Signal 2.0 — the second version of its free and open source messaging application for iPhone and iPad users. Signal app is specifically designed to make secure and easy-to-use encrypted voice calling. But that’s wha...

CVE-2014-5840

CVE-2014-5840 affects the Android app forfone (com.forfone.sip) version 1.5.11, where the client does not verify X.509 certificates from SSL servers. This enables man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. The issue is documented acros...

Free Skype incoming numbers in 36 countries !!

In spite of the numerous issues with Skype, Skype continues to dominate the VoIP space. The problem with the closed nature of Skype is that it is extremely difficult or costly to reach Skype contacts from outside Skype. Currently, Skype provides SkypeIN, wherein you can buy a virtual number for...

Asterisk 1.0.12/1.2.12.1 - 'chan_skinny' Remote Heap Overflow (PoC)

!/usr/bin/perl Beyond Security Copyright Noam Rathaus The following proof of concept causes the chanskippy to crash in different locations and due to memory corruption as well as double free calls, this is based on the finding of Security-Assessment.com, and proves that the vulnerability is indee...

Asterisk 1.0.121.2.12.1 - chan_skinny Remote Heap Overflow (PoC)

Asterisk 1.0.121.2.12.1 - chanskinny Remote Heap Overflow PoC !/usr/bin/perl Beyond Security Copyright Noam Rathaus The following proof of concept causes the chanskippy to crash in different locations and due to memory corruption as well as double free calls, this is based on the finding of...