Lucene search
K

162 matches found

exploitpack
exploitpack
added 2017/05/17 12:0 a.m.39 views

Apple iOS 10.3.2 - Notifications API Denial of Service

Apple iOS 10.3.2 - Notifications API Denial of Service Exploit Title: Apple iOS 10.3.2 - Notifications API Denial of Service Date: 05-15-2017 Exploit Author: Sem Voigtländer @OxFEEDFACE, Vincent Desmurs @vincedes3 and Joseph Shenton Vendor Homepage: https://apple.com Software Link:...

4.3CVSS5.7AI score0.02394EPSS
Exploits3
0day.today
0day.today
added 2017/05/17 12:0 a.m.47 views

Apple iOS < 10.3.2 - Notifications API Denial of Service

Exploit for iOS platform in category dos / poc Exploit Title: Apple iOS 10.3.2 - Notifications API Denial of Service Date: 05-15-2017 Exploit Author: Sem Voigtländer @OxFEEDFACE, Vincent Desmurs @vincedes3 and Joseph Shenton Vendor Homepage: https://apple.com Software Link:...

4.3CVSS6.6AI score0.02394EPSS
Exploits3
Exploit DB
Exploit DB
added 2017/05/17 12:0 a.m.39 views

Apple iOS &lt; 10.3.2 - Notifications API Denial of Service

Exploit Title: Apple iOS 10.3.2 - Notifications API Denial of Service Date: 05-15-2017 Exploit Author: Sem Voigtländer @OxFEEDFACE, Vincent Desmurs @vincedes3 and Joseph Shenton Vendor Homepage: https://apple.com Software Link: https://support.apple.com/en-us/HT207798 Version: iOS 10.3.2 Tested o...

5.5CVSS6.3AI score0.02394EPSS
Exploits3
ThreatPost
ThreatPost
added 2017/05/08 1:55 p.m.13 views

HandBrake for Mac Compromised with Proton Spyware

The handlers of the open source HandBrake video transcoder are warning anyone who recently downloaded the Mac version of the software that they’re likely infected with malware. HandBrake warned users on Saturday of a compromise of one of its mirror download servers, and said anyone who grabbed th...

1.8AI score
Exploits0References4
FireEye
FireEye
added 2017/03/08 12:15 p.m.27 views

Introduction to Reverse Engineering Cocoa Applications

While not as common as Windows malware, there has been a steady stream of malware discovered over the years that runs on the OS X operating system, now rebranded as macOS. February saw three particularly interesting publications on the topic of macOS malware: a Trojan Cocoa application that sends...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/21 12:0 a.m.64 views

Atlassian Confluence AppFusions Doxygen 1.3.0 Path Traversal

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: AppFusions Doxygen for Atlassian Confluence Vendor URL: www.appfusions.com Type: Path Traversal CWE-22 Date found: 2016-06-23 Date published: - CVSSv3 Score: 6.3...

0.1AI score
Exploits0
CNVD
CNVD
added 2016/11/16 12:0 a.m.5 views

Objective Development Little Snitch Buffer Overflow Vulnerability

Objective Development Little Snitch is a suite of personal security software for Mac from the Austrian company Objective Development. A buffer overflow vulnerability exists in Objective Development Little Snitch versions 3.0 through 3.6.1. A local attacker can exploit this vulnerability to gain...

8.4CVSS7.2AI score0.00417EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2016/07/25 12:0 a.m.33 views

SOL77323091 - Objective Systems ASN1C Compiler vulnerability CVE-2016-5080

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

10CVSS2.7AI score0.10064EPSS
Exploits0References4
Cisco
Cisco
added 2016/07/21 7:0 p.m.33 views

Vulnerability in Objective Systems ASN1C Compiler Affecting Cisco Products

A vulnerability in the ASN1C compiler by Objective Systems affects Cisco ASR 5000 devices running StarOS and Cisco Virtualized Packet Core VPC systems. The vulnerability could allow an unauthenticated, remote attacker to create a denial of service DoS condition or potentially execute arbitrary...

10CVSS9AI score0.10064EPSS
Exploits0References1
myhack58
myhack58
added 2016/07/21 12:0 a.m.23 views

Security Bulletin: ASN. 1 coding in the presence of a heap memory corruption vulnerability-vulnerability warning-the black bar safety net

! ! 1. Security Bulletin information Title: Objective system integrated Co., Ltd. The design of the ASN. 1 coding specification in the presence of one can lead to heap memory corruption vulnerabilities. Vulnerability CVE number: CVE-2 0 1 6-5 0 8 0 Announcement of the URL address:...

Exploits0
NVD
NVD
added 2016/07/19 10:59 p.m.27 views

CVE-2016-5080

Integer overflow in the rtxMemHeapAlloc function in asn1rta.lib in Objective Systems ASN1C for C/C++ before 7.0.2 allows context-dependent attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow, on a system running an application compiled by ASN1C, via crafted...

10CVSS8.7AI score0.10064EPSS
Exploits0References11
CVE
CVE
added 2016/07/19 10:0 p.m.44 views

CVE-2016-5080

CVE-2016-5080 affects Objective Systems ASN1C for C/C++ (asn1rt_a.lib, rtxMemHeapAlloc). The vulnerability is an integer overflow in ASN1C-generated code prior to version 7.0.2, allowing context-dependent attackers to potentially execute arbitrary code or cause a heap-based DoS via crafted ASN.1 ...

10CVSS9.1AI score0.10064EPSS
Exploits0References11Affected Software1
CERT
CERT
added 2016/07/19 12:0 a.m.36 views

Objective Systems ASN1C generates code that contains a heap overflow vulnerability

Overview ASN.1 is a standard representation of data for networking and telecommunications applications. Objective System's ASN1C compiler generates C and C++ code that may be vulnerable to heap overflow. Description CWE-122: Heap-based Buffer Overflow - CVE-2016-5080ASN1C is used to generate...

10CVSS9.3AI score0.10064EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2016/07/12 1:51 p.m.12 views

Little Snitch Bug Leaves Some Mac Systems Open to Attack

Trusted Mac OS X firewall Little Snitch is vulnerable to local privilege escalation attacks that could give criminals the ability plant rootkits and keyloggers on some El Capitan systems. The Little Snitch firewall vulnerability was found by Synack Director of Research and well-known OS X hacker...

0.2AI score
Exploits0
hackapp
hackapp
added 2016/04/01 9:42 a.m.9 views

Zombie Objective - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Zombie Objective published at the 'play' market has multiple vulnerabilities...

0.9AI score
Exploits0References1Affected Software1
FireEye
FireEye
added 2016/01/27 8:0 a.m.29 views

Hot or Not? The Benefits and Risks of iOS Remote Hot Patching

Introduction Apple has made a significant effort to build and maintain a healthy and clean app ecosystem. The essential contributing component to this status quo is the App Store, which is protected by a thorough vetting process that scrutinizes all submitted applications. While the process is...

6.6AI score
Exploits0
FireEye
FireEye
added 2015/11/04 1:0 p.m.16 views

iBackDoor: High-Risk Code Hits iOS Apps

Introduction FireEye mobile researchers recently discovered potentially “backdoored” versions of an ad library embedded in thousands of iOS apps originally published in the Apple App Store. The affected versions of this library embedded functionality in iOS apps that used the library to display...

0.8AI score
Exploits0
0day.today
0day.today
added 2015/09/11 12:0 a.m.35 views

OS X Install.framework suid Helper Privilege Escalation Vulnerability

Exploit for macOS platform in category local exploits Source: https://code.google.com/p/google-security-research/issues/detail?id=314 The private Install.framework has a few helper executables in /System/Library/PrivateFrameworks/Install.framework/Resources, one of which is suid root: -rwsr-sr-x ...

9.3CVSS5.3AI score0.09301EPSS
Exploits1
Exploit DB
Exploit DB
added 2015/09/10 12:0 a.m.26 views

Apple Mac OSX - Install.framework suid Helper Privilege Escalation

Source: https://code.google.com/p/google-security-research/issues/detail?id=314 The private Install.framework has a few helper executables in /System/Library/PrivateFrameworks/Install.framework/Resources, one of which is suid root: -rwsr-sr-x 1 root wheel 113K Oct 1 2014 runner Taking a look at i...

7.4AI score
Exploits0
Hacker One
Hacker One
added 2015/08/04 3:45 p.m.25 views

Coinbase: Runtime manipulation iOS app breaking the PIN

I was able to bypass your pin protection by doing runtime manipulation in iOS app 1.Installed the snoop it in device 2.By going snoop it tool settings choose the coinbase app 3.I already set the the pin in coinbase app 4.Open the coinbase app it is asking for PIN 5.Now browsing the snoopit...

6.7AI score
Exploits0
Rows per page
Query Builder