Xiaomi Android Devices Hit by Multiple Flaws Across Apps and System Components

Multiple security vulnerabilities have been disclosed in various applications and system components within Xiaomi devices running Android. "The vulnerabilities in Xiaomi led to access to arbitrary activities, receivers and services with system privileges, theft of arbitrary files with system...

ASB-A-231496105

In sOpAllowSystemRestrictionBypass of AppOpsManager.java, there is a possible leak of location information due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

New malware fraudulently subscribes victims to premium phone services

By Sudais Asif If you believe you may have been affected by WAPDropper malware, you should uninstall any suspicious applications and inspect your billing records. This is a post from HackRead.com Read the original post: New malware fraudulently subscribes victims to premium phone services...

Design/Logic Flaw

A vulnerability in the TCP stack of Cisco SocialMiner could allow an unauthenticated, remote attacker to cause a denial of service DoS condition in the notification system. The vulnerability is due to faulty handling of new TCP connections to the affected application. An attacker could exploit th...

CVE-2018-0290

A vulnerability in the TCP stack of Cisco SocialMiner could allow an unauthenticated, remote attacker to cause a denial of service DoS condition in the notification system. The vulnerability is due to faulty handling of new TCP connections to the affected application. An attacker could exploit th...

Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 - Denial of Service Exploit

Exploit for hardware platform in category dos / poc !/usr/bin/python Exploit Title: CVE-2017-6552 - Local DoS Buffer Overflow Livebox 3 Date: 09/03/2017 Exploit Author: Quentin Olagne Vendor Homepage: http://www.orange.fr/ Version: SG30sip-fr-5.15.8.1 Tested on: Livebox 3 - Sagemcom CVE :...

Palestine : Hackers have taken down phone and Internet services

Palestine : Hackers have taken down phone and Internet services The main phone network in the West Bank and Gaza has suffered a sustained attack by computer hackers, the Palestinian Authority PA says. Mashour Abou Daqqa, the Palestinian telecoms minister, said the disruptions, which began Tuesday...

trixbox Cisco Phone Services PhoneDirectory.php ID Parameter SQL Injection

The version of the Cisco Phone Services phone directory script 'cisco/services/PhoneDirectory.php' installed as part of the web interface for trixbox or Asterisk@Home, as it was formerly known and hosted on the remote web server fails to sanitize input to the 'ID' parameter before using it in a...