Fearing WannaCry-Level Danger, Enterprises Wrestle with BlueKeep

The nightmare vision of a “mega-worm” global BlueKeep infection could be closer to becoming reality as working exploits are now becoming available to the public, and there’s evidence that adversaries are actively scanning for the vulnerability. Researchers weighed in with Threatpost about how...

Immunity Debugger Stack Overflow Vulnerability – PoC

Title : Immunity Debugger – Crash POC Name: Immunity Debugger v1.85 SEH Chain Stack Overflow Discoverer: Veysel HATAŞ email protected Vendor: Immunity Inc Systems Affected: Windows Risk: Low Status: Not Fixed Discovered: 05 January 2014 Reported: 06 January 2014 Published: 20 March 2014...

Java 7u11 Update Addresses Only One of Two Zero-Day Vulnerabilities

Microsoft can take some solace that it is not alone in sending out security updates that don’t fully address a zero-day vulnerability. A researcher at Immunity Inc., put Oracle on a similar hot seat this week when he reported that a recent out-of-band Java update repaired only one of two Java fla...

FreeBSD : java 7.x -- security manager bypass (d5e0317e-5e45-11e2-a113-c48508086173)

US CERT reports : Java 7 Update 10 and earlier versions of Java 7 contain a vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. The Java JRE plug-in provides its own Security Manager. Typically, a web applet runs with a security manage...

java 7.x -- security manager bypass

US CERT reports: Java 7 Update 10 and earlier versions of Java 7 contain a vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. The Java JRE plug-in provides its own Security Manager. Typically, a web applet runs with a security manager...

Oracle Releases Fix For Java CVE-2012-4681 Flaw

Oracle on Thursday released a new version of Java that included a fix for the CVE-2012-4681 vulnerability that has been used in limited targeted attacks in the last couple of weeks. The release of Java 7 update 7 comes about four days after the Java flaw was publicly disclosed, but several months...

MySQL 5.5.20 Unspecified RCE Vulnerability

MySQL is prone to an unspecified remote code execution RCE vulnerability. This VT has duplicated the VT MySQL SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...

Dave Aitel Discusses Hacking Groups' Agendas

It has come to this: CNN is now running segments on the attacks attributed to LulzSec, Anonymous and other groups and the FBI raids on suspected members of those crews. The network had Dave Aitel of Immunity Inc. on this morning to discuss the effects of the recent arrests and what the groups’...

NGS00016 Technical Advisory: Immunity Debugger Buffer Overflow

======= Summary ======= Name: Immunity Debugger Buffer Overflow Release Date: 22 March 2011 Reference: NGS00016 Discoverer: Paul Harrington Vendor: Immunity Inc Vendor Reference: Support 3171 Systems Affected: Windows Risk: Low Status: Fixed ======== TimeLine ======== Discovered: 28 October 2010...

Immunity Canvas: MS09_002

Name| ms09002 ---|--- CVE| CVE-2009-0075 Exploit Pack| CANVAS Description| MS09002 Notes| CVE Name: CVE-2009-0075 VENDOR: Microsoft Notes: This does not require a fromcreatethread listener. Repeatability: One shot MSADV: MS09-002 References: http://isc.sans.org/diary.html?storyid=5884&rss CVE Url...

MS Windows (WINS) Remote Buffer Overflow Exploit (v.3)

No description provided by source. / Windows Internet Name Service WINS Remote Heap Buffer Overflow ------------------------------------ ------------------------------------ Advisory credits: ---------------- Nicolas Waisman of Immunity Inc. www.immunitysec.com Advisory link: ----------------...

Immunity Canvas: MSWINSTCP

Name| mswinstcp ---|--- CVE| CVE-2004-1080 Exploit Pack| CANVAS Description| WINS Pointer hijacking exploit MS04-045 Notes| CVE Name: CVE-2004-1080 VENDOR: Microsoft MSADV: MS04-045 MSRC: http://www.microsoft.com/technet/security/bulletin/MS04-045.mspx NOTE: Tested on Win2000 SP Date public: Not...