The vulnerability of the Android operating system’s loader from the CAF repository allows a hacker to execute arbitrary code within the kernel context.

The vulnerability of the Android operating system’s loader from the CAF repository is caused by a numerical overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code within the kernel context...

EulerOS 2.0 SP2 : glibc (EulerOS-SA-2017-1200)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A stack overflow vulnerability was found in nan functions that could cause applications, which process long strings with the nan function, to cra...

EulerOS 2.0 SP1 : glibc (EulerOS-SA-2017-1199)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A stack overflow vulnerability was found in nan functions that could cause applications, which process long strings with the nan function, to cra...

DEBIAN-CVE-2017-2862

An exploitable heap overflow vulnerability exists in the gdkpixbufjpegimageloadincrement functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulnerability...

Monitoring Windows Console Activity (Part 1)

Introduction While performing incident response, Mandiant encounters attackers actively using systems on a compromised network. This activity often includes using interactive console programs via RDP such as the command prompt, PowerShell, and sometimes custom command and control C2 console tools...

Hijacking Autoloader

symfony/class-loader is susceptible to the hijacking of the autoloader. The vulnerability exists because it does not prevent the ability to access the loader instance, resulting in the auto-outputting or revealing unwanted information...

UBUNTU-CVE-2017-13133

In ImageMagick 7.0.6-8, the loadlevel function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service loadtile memory exhaustion via a crafted file...

Scientific Linux Security Update : glibc on SL7.x x86_64 (20170801)

Security Fixes : - A stack overflow vulnerability was found in nan functions that could cause applications, which process long strings with the nan function, to crash or, potentially, execute arbitrary code. CVE-2014-9761 - It was found that out-of-range time values passed to the strftime functio...

Threat Analysis: Carbon Black Threat Research Dissects PNG Dropper

UPDATE 8/14/17: After posting the original analysis, the Carbon Black Threat Research team received numerous requests for the tools to extract the second stage payload from the initial PNGdropper file. As a result, the source code and compiled binaries are being made public and are posted to the...

Amazon Linux AMI : graphite2 (ALAS-2017-872)

Vulnerabilities in the Graphite 2 library MFSA 2017-16 A heap-based buffer overflow flaw related to 'lz4::decompress' has been reported in graphite2. An attacker could exploit this issue to cause a crash or, possibly, execute arbitrary code. CVE-2017-7778 Heap-buffer-overflow write...

RedHat Update for glibc RHSA-2017:1916-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: load_elf_ binary() does not take account of the need to allocate sufficient space for the entire binary

A flaw was found in the way the Linux kernel loaded ELF executables. Provided that an application was built as Position Independent Executable PIE, the loader could allow part of that application's data segment to map over the memory area reserved for its stack, potentially resulting in memory...

Moderate: Red Hat Security Advisory: glibc security, bug fix, and enhancement update

An update for glibc is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

WSSAT - Web Service Security Assessment Tool

WSSAT is an open source web service security scanning tool which provides a dynamic environment to add, update or delete vulnerabilities by just editing its configuration files. This tool accepts WSDL address list as input file and for each service, it performs both static and dynamic tests again...

Exploit for CVE-2017-8570

Introduction By Temesgen Yibeltal [email protected] Bas...

IdeaCMS microstore config_loader.asp has SQL injection vulnerability

IdeaCMS Micro Mall Management System is a PC+Mobile+WeChat integrated mall system developed by Sampi Network Technology Co. A SQL injection vulnerability exists in IdeaCMS Micro Mall configloader.asp. An attacker can exploit this vulnerability to obtain sensitive information from the database...

InsomniaX 2.1.8 Arbitrary Kernel Extension Loading Vulnerability

It was found that the loader application bundled with InsomniaX can be used to load arbitrary Kernel Extensions kext. The loader is normally used to load a kext file that is needed to disable the Lid Sleep. A flaw has been found in the loader that allows a local attacker to load or unload any...

WordPress Advanced AJAX Page Loader plugin <= 2.7.4 - Arbitrary File Upload Vulnerability

WordPress Advanced AJAX Page Loader plugin = 2.7.4 is prone to An Arbitrary File Upload Vulnerability. The vulnerability allows an attacker to upload an arbitrary file. When you access /wp-admin/admin-post.php page, the function adminmenuAAPL is caused to run. This function calls...

InsomniaX 2.1.8 Arbitrary Kernel Extension Loading

------------------------------------------------------------------------ InsomniaX loader allows loading of arbitrary Kernel Extensions ------------------------------------------------------------------------ Yorick Koster, April 2017...

graphite2: use of uninitialized memory "graphite2::GlyphCache::Loader::read_glyph"

The use of uninitialized memory related to "graphite2::GlyphCache::Loader::readglyph" has been reported in graphite2. An attacker could possibly exploit this flaw to negatively impact the execution of an application using graphite2 in unknown ways...