104 matches found
Microsoft Windows 10 - Runtime Broker ClipboardBroker Privilege Escalation
Microsoft Windows 10 - Runtime Broker ClipboardBroker Privilege Escalation Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1079 Windows: Runtime Broker ClipboardBroker EoP Platform: Windows 10 10586/14393 not tested 8.1 Update 2 Class: Elevation of Privilege Summary: The Runtime...
sokna-il-skyting.idrettenonline.no XSS vulnerability
Vulnerable URL: http://sokna-il-skyting.idrettenonline.no/Sponsor/get?placeHolder=1=200000195=996=0=0=prompt/OPENBUGBOUNTY/...
BlueHat IL 2017 Announced
Microsoft is thrilled to announce BlueHat IL 2017. This will mark the first time BlueHat is held in Tel Aviv and it will take place on January 24-25, 2017. Given its location, Israel further serves as a harness which draws in researchers from across Europe, Asia and the Middle East...
TECO AP-PCLINK 1.094 TPC File Handling Buffer Overflow Vulnerability
AP-PCLINK is the supportive software for TP03 or AP series, providing three edit modes as LADDER, IL, FBDand SFC, by which programs can be input rapidly and correctly. Every form written into the TP03 or AP series and AP-PCLINK can be monitored in the form of the data. The vulnerability is caused...
Microsoft Windows - NtUserGetClipboardAccessToken Token Leak (MS15-023)
Source: https://code.google.com/p/google-security-research/issues/detail?id=461 Windows: NtUserGetClipboardAccessToken Token Leak Redux Platform: Windows 8.1 Update, Windows 10 Build 10130 Class: Security Bypass/EoP Summary: The NtUserGetClipboardAccessToken win32k system call exposes the access...
il-santo.com XSS vulnerability
Vulnerable URL: http://www.il-santo.com/popup.php?title=Gallery Image=foo.png" onerror=alert/XSSPOSED/ /=734 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4683754 Google Pagerank|...
UBUNTU-CVE-2014-9604
libavcodec/utvideodec.c in FFmpeg before 2.5.2 does not check for a zero value of a slice height, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted Ut Video data, related to the 1 restoremedian and 2...
CVE-2014-7369
The Il Brillo Parlante aka com.wIlBrilloParlante application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7369
The CVE-2014-7369 entry concerns the Android app Il Brillo Parlante (com.wIlBrilloParlante) version 0.1, which fails to verify X.509 certificates when connecting to SSL servers. The root cause is missing certificate validation, enabling man-in-the-middle attackers to spoof servers and access sens...
MS13-005 HWND_BROADCAST PoC
No description provided by source. / ms13-005-funz-poc.cpp - Drive a Medium IL cmd.exe via a Low IL process and message broadcasted Copyright C 2013 Axel "0vercl0k" Souchet - http://www.twitter.com/0vercl0k This program is free software: you can redistribute it and/or modify it under the terms of...
MS13-005 HWND_BROADCAST PoC
Exploit for windows platform in category dos / poc / ms13-005-funz-poc.cpp - Drive a Medium IL cmd.exe via a Low IL process and message broadcasted Copyright C 2013 Axel "0vercl0k" Souchet - http://www.twitter.com/0vercl0k This program is free software: you can redistribute it and/or modify it...
Microsoft Windows - HWND_BROADCAST (PoC) (MS13-005)
Microsoft Windows - HWNDBROADCAST PoC MS13-005 / ms13-005-funz-poc.cpp - Drive a Medium IL cmd.exe via a Low IL process and message broadcasted Copyright C 2013 Axel "0vercl0k" Souchet - http://www.twitter.com/0vercl0k This program is free software: you can redistribute it and/or modify it under...
MS13-005 Proof Of Concept
/ ms13-005-funz-poc.cpp - Drive a Medium IL cmd.exe via a Low IL process and message broadcasted Copyright C 2012 Axel "0vercl0k" Souchet - http://www.twitter.com/0vercl0k This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as...
North Korea YouTube and Twitter Accounts Hacked !
In what some might call a rather bold action, hackers have managed to gain access to the Twitter and YouTube accounts of North Korea. This may come across as something unusual, particularly to those of you who already know that the people of North Korea have no internet, computers and pretty much...
North Korean government's official Twitter account hacked !
The North Korean government's official Twitter account has apparently been hacked, with the feed displaying a string of messages derogatory of leader Kim Jong-il and heir apparent Kim Jong-un, the South Korean Yonhap news agency has reported. The four most recent messages posted on Saturday morni...
CVE-2008-7199
Phoenix Contact FL IL 24 BK-PAC allows remote attackers to cause a denial of service hang via 1 unspecified manipulations as demonstrated by a Nessus scan or 2 malformed input to TCP port 502...
Input validation
Phoenix Contact FL IL 24 BK-PAC allows remote attackers to cause a denial of service hang via 1 unspecified manipulations as demonstrated by a Nessus scan or 2 malformed input to TCP port 502...
CVE-2008-7199
Phoenix Contact FL IL 24 BK-PAC allows remote attackers to cause a denial of service hang via 1 unspecified manipulations as demonstrated by a Nessus scan or 2 malformed input to TCP port 502...
CVE-2008-7199
The CVE-2008-7199 issue affects the Phoenix Contact FL IL 24 BK-PAC device. The vulnerability allows remote attackers to trigger a denial of service (hang) via two vectors: (1) unspecified manipulations demonstrated by a Nessus scan and (2) malformed input directed at TCP port 502. Evidence acros...
Xpoze Pro (home menù) <= Blind $ql Injection
No description provided by source. ■ Xpoze Pro home menù = Blind $ql Injection --------------------------------------- AuToR: XaDoS SecurityCode Team Contact M&: xados at hotmail dot it B§g: Blind $ql inJection SIte vuln: http://www.xpoze.org/ --------------------------------------- ■ ExPL0iT:...