Lucene search
K

5615 matches found

0day.today
0day.today
added 2018/06/04 12:0 a.m.73 views

WebKit not_number defineProperties Use-After-Free Exploit

Exploit for multiple platform in category dos / poc This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WebKit notnumber defineProperties UAF', 'Description' = %q This module exploits a UAF...

9.3CVSS0.66788EPSS
Exploits13
Malwarebytes
Malwarebytes
added 2018/05/22 4:0 p.m.50 views

Malwarebytes CrackMe 2: contest summary

About three weeks ago, we published our second CrackMe. It triggered a lot of interest, and we got many high-quality write-ups. Choosing the winner was really difficult! In this post, I am going to summarize the contest and comment on the received submissions. CrackMe 2 challenge The topic of the...

0.3AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2018/05/18 12:0 a.m.6 views

The vulnerability of the Qualcomm XBL Android operating system’s loader allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Qualcomm XBL Android operating system’s loader is related to authentication errors during the loading of device configuration. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...

10CVSS5.6AI score0.02307EPSS
Exploits0References4Affected Software1
Kitploit
Kitploit
added 2018/05/05 1:12 p.m.29 views

SpookFlare v2.0 - Loader, Dropper Generator With Multiple Features For Bypassing Client-Side And Network-Side Countermeasures

SpookFlare has a different perspective to bypass security measures and it gives you the opportunity to bypass the endpoint countermeasures at the client-side detection and network-side detection. SpookFlare is a loader/dropper generator for Meterpreter, Empire, Koadic etc. SpookFlare has...

7.8AI score
Exploits0References6
n0where
n0where
added 2018/05/02 4:46 a.m.22 views

Meterpreter Loader Generator: SpookFlare

SpookFlare has a different perspective to bypass security measures and it gives you the opportunity to bypass the endpoint countermeasures at the client-side detection and network-side detection. SpookFlare is a loader/dropper generator for Meterpreter, Empire, Koadic etc. SpookFlare has...

0.3AI score
Exploits0References1
OSV
OSV
added 2018/04/24 7:29 p.m.1 views

DEBIAN-CVE-2017-2904

An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.hdr' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...

7.8CVSS8AI score0.01866EPSS
Exploits1References1
OSV
OSV
added 2018/04/24 7:29 p.m.1 views

DEBIAN-CVE-2017-2901

An exploitable integer overflow exists in the IRIS loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.iris' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the applicatio...

7.8CVSS8.5AI score0.01866EPSS
Exploits1References1
OSV
OSV
added 2018/04/24 7:29 p.m.1 views

DEBIAN-CVE-2017-2902

An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

7.8CVSS8.5AI score0.01866EPSS
Exploits1References1
OSV
OSV
added 2018/04/24 7:29 p.m.3 views

UBUNTU-CVE-2017-2901

An exploitable integer overflow exists in the IRIS loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.iris' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the applicatio...

8.8CVSS7.7AI score0.01866EPSS
Exploits1References4
OSV
OSV
added 2018/04/24 7:29 p.m.2 views

UBUNTU-CVE-2017-2902

An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

8.8CVSS7.7AI score0.01866EPSS
Exploits1References4
OSV
OSV
added 2018/04/24 7:29 p.m.2 views

UBUNTU-CVE-2017-2900

An exploitable integer overflow exists in the PNG loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.png' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

8.8CVSS7.7AI score0.01866EPSS
Exploits1References4
OSV
OSV
added 2018/04/24 7:29 p.m.3 views

UBUNTU-CVE-2017-2903

An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

8.8CVSS7.7AI score0.01995EPSS
Exploits1References4
OSV
OSV
added 2018/04/24 7:29 p.m.7 views

UBUNTU-CVE-2017-2899

An exploitable integer overflow exists in the TIFF loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.tif' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

8.8CVSS7.7AI score0.01824EPSS
Exploits1References4
FireEye
FireEye
added 2018/04/23 3:0 p.m.39 views

Loading Kernel Shellcode

In the wake of recent hacking tool dumps, the FLARE team saw a spike in malware samples detonating kernel shellcode. Although most samples can be analyzed statically, the FLARE team sometimes debugs these samples to confirm specific functionality. Debugging can be an efficient way to get around...

7.6AI score
Exploits0References11
FireEye
FireEye
added 2018/04/23 11:0 a.m.512 views

Loading Kernel Shellcode

In the wake of recent hacking tool dumps, the FLARE team saw a spike in malware samples detonating kernel shellcode. Although most samples can be analyzed statically, the FLARE team sometimes debugs these samples to confirm specific functionality. Debugging can be an efficient way to get around...

7.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2018/04/20 12:0 a.m.5 views

The vulnerability of the S Boot loader of the Samsung mobile operating system allows a hacker to execute arbitrary code.

The vulnerability of the S Boot loader of the Samsung mobile operating system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a hacker to execute arbitrary code...

8.4CVSS5.8AI score0.00424EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/04/19 2:29 a.m.4 views

CVE-2018-2848

Vulnerability in the Oracle Hospitality Simphony First Edition component of Oracle Hospitality Applications subcomponent: Client Application Loader. Supported versions that are affected are 1.6 and 1.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP ...

7.5CVSS5.8AI score0.01977EPSS
Exploits0References2
NVD
NVD
added 2018/04/19 2:29 a.m.19 views

CVE-2018-2853

Vulnerability in the Oracle Hospitality Simphony First Edition component of Oracle Hospitality Applications subcomponent: Operations, Client Application Loader. Supported versions that are affected are 1.6 and 1.7. Easily exploitable vulnerability allows low privileged attacker with network acces...

5.5CVSS4.2AI score0.00796EPSS
Exploits0References2
OSV
OSV
added 2018/04/19 2:29 a.m.6 views

CVE-2018-2802

Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications subcomponent: Client Application Loader. Supported versions that are affected are 2.8 and 2.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

5.4CVSS7.3AI score0.00828EPSS
Exploits0References2
Prion
Prion
added 2018/04/19 2:29 a.m.18 views

Buffer overflow

Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications subcomponent: Client Application Loader. Supported versions that are affected are 2.8 and 2.9. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

5.5CVSS4.7AI score0.00828EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder