CVE-2015-5770

MobileInstallation in Apple iOS before 8.4.1 does not ensure the uniqueness of universal provisioning profile bundle IDs, which allows attackers to replace arbitrary extensions via a crafted enterprise app...

PyPhisher - A Simple Python Tool for Phishing

If you are looking to make a phishing testing or demonstration you can check PyPhisher. This tool was created for the purpose of phishing during a penetration test. This tool is python based that provide user a way to send emails with a customized template that he design. you can have an html...

Lenovo System Update Download File Replacement Vulnerability

Lenovo System Update is a system upgrade tool for Lenovo. Lenovo System Update system downloads application updates to a writable directory, allowing local users to replace downloaded files and elevate permissions...

Concrete CMS: Self Xss on File Replace

In File manager there is an Replace option to replace files from three resources . 1. from computer 2.incoming 3.Remote files For remote files if we put http://example.com/" in the url box It reflects xss. Poc: https://www.dropbox.com/s/m7pb9wiwxix1oyu/replacexss.mkv?dl=0 Thanks...

DSS TFTP Server <= 1.0 Path Traversal Vulnerability - Active Check

DSS TFTP Server is prone to a path traversal vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2014-4654

The sndctlelemadd function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not check authorization for SNDRVCTLIOCTLELEMREPLACE commands, which allows local users to remove kernel controls and cause a denial of service use-after-free and system...

DEBIAN-CVE-2014-4655

The sndctlelemadd function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the userctlcount value, which allows local users to cause a denial of service integer overflow and limit bypass by leveraging /dev/snd/controlCX acces...

UBUNTU-CVE-2014-4655

The sndctlelemadd function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the userctlcount value, which allows local users to cause a denial of service integer overflow and limit bypass by leveraging /dev/snd/controlCX acces...

Mozilla Suite/Firefox JavaScript Lambda Replace Heap Memory Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12988/info Mozilla Suite/Firefox are reported prone to a memory-disclosure vulnerability. This issue can allow a remote attacker to access arbitrary heap memory. Due to an error in the way 'replace' handles lambda...

PostgreSQL 8.3.6 Low Cost Function Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34069/info PostgreSQL is prone to an information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. PostgreSQL 8.3.6 is vulnerable; other...

Flatnuke3 File Manager Module Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26155/info Flatnuke3 is prone to an unauthorized-access vulnerability because it fails to adequately verify administrative credentials while logging in via the 'File Manager' module. An attacker can exploit this...

PHPnuke 8.2 - Remote Upload File Exploit

Title : PHPnuke 8.2 Remote Upload File Exploit Author : Net.Edit0r Location : Iran Dork : "POWERED BY PHPNUKE.IR" Category : Remote Email : [email protected] [email protected] Special Thanks To :NetQurd For help in finding bugs Email :[email protected] InformatioN 1.Save code html format ...

Google Chrome 8.0.552.237 - .replace DoS

No description provided by source. html head Exploit Title: Google Chrome v8.0.552.237 .replace DOS Date: January 30 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://www.google.com/chrome Version: v8.0.552.237 Tested on: Windows xp sp3 ,windows 7 ,linux running on VMware Fusion 3....

openssl security update

0.9.8e-27.3 - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability 0.9.8e-27.1 - replace expired GlobalSign Root CA certificate in ca-bundle.crt...

CVE-2014-1741

CVE-2014-1741 refers to multiple integer overflow issues in Blink/Chromium, specifically in the CharacterData implementation (CharacterData.cpp) used by Chromium/Google Chrome prior to version 34.0.1847.137. The vulnerability arises from integer overflow in the DOM data handling (replace-data pat...

UBUNTU-CVE-2014-1741

Multiple integer overflows in the replace-data functionality in the CharacterData interface implementation in core/dom/CharacterData.cpp in Blink, as used in Google Chrome before 34.0.1847.137, allow remote attackers to cause a denial of service or possibly have unspecified other impact via vecto...

XVI32 - Freeware Hex Editor

XVI32 is a freeware hex editor running under Windows 9x/NT/2000/XP/Vista/7. The name XVI32 is derived from XVI, the roman notation for the number 16. XVI32 and all of its components are developed by myself. The current release 2.55 is available since June 26, 2012. It comes with a complete online...

haneWIN DNS Server Denial Of Service Vulnerability

This host is running haneWIN DNS server and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbhanewindnsserverdosvuln.nasl 6769 2017-07-20 09:56:33Z teissa $ haneWIN DNS Server Denial Of Service Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2014 Greenbone...

SSL/TLS: Certificate Too Long Valid

The remote server SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.103958";...

CVE-2013-5725

The Metaclassy Byword app 2.x before 2.1 for iOS does not require confirmation of Replace file actions, which allows remote attackers to overwrite arbitrary files via the name and text parameters in a byword://replace URL...