5 matches found
CVE-2018-3927
An exploitable information disclosure vulnerability exists in the crash handler of the hubCore binary of the Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. When hubCore crashes, Google Breakpad is used to record minidumps, which are sent over an insecure HTTPS connection to the...
Samsung SmartThings Hub hubCore Information Disclosure Vulnerability
Samsung SmartThings Hub is a smart home management device from Samsung South Korea. A security vulnerability exists in the crash handler of the hubCore binary in Samsung SmartThings Hub, which originates from a program that sends logged minidumps to the backtrace.io service over an insecure HTTPS...
Samsung SmartThings Hub hubCore Google Breakpad backtrace.io information disclosure vulnerability(CVE-2018-3927)
Summary An exploitable information disclosure vulnerability exists in the crash handler of the hubCore binary of the Samsung SmartThings Hub. When hubCore crashes, Google Breakpad is used to record minidumps, which are sent over an insecure HTTPS connection to the backtrace.io service, leading to...
Samsung SmartThings Hub hubCore Google Breakpad backtrace.io information disclosure vulnerability
Summary An exploitable information disclosure vulnerability exists in the crash handler of the hubCore binary of the Samsung SmartThings Hub. When hubCore crashes, Google Breakpad is used to record minidumps, which are sent over an insecure HTTPS connection to the backtrace.io service, leading to...
Internet Bug Bounty: Bad Write in TTF font parsing (win32k.sys)
This bug was originally reported through Project Zero at Google. Alex Rice suggested to me that I could potentially receive a bounty through Hacker One so I am also opening a report here. The vulnerability reference numbers are MS15-010 CVE-2015-0059 The original bug report is...