11 matches found
Hikvision Hybrid SAN Ds-a71024 Firmware - Multiple Remote Code Execution Exploit
Exploit Title: Hikvision Hybrid SAN Ds-a71024 Firmware - Multiple Remote Code Execution Exploit Author: Thurein Soe CVE : CVE-2022-28171 Vendor Homepage: https://www.hikvision.com Software Link: N/A Refence Link: https://cve.report/CVE-2022-28171 Version: Filmora 12: Ds-a71024 Firmware, Ds-a71024...
Wondershare Dr Fone 12.9.6 Weak Permissions / Privilege Escalation
Executive Summary: Product Name: Wondershare Dr. Fone Vendor Home Page: https://drfone.wondershare.com Affected Versions: Dr Fone version 12.9.6 Vulnerability Type: Execution with Unnecessary Privileges CWE-250 CVE Reference: CVE-2023-27010. Credit: Thurein Soe Vendor Description: Wondershare Dr...
Hikvision Remote Code Execution / XSS / SQL Injection Vulnerabilities
Some Hikvision Hybrid SAN products were vulnerable to multiple remote code execution command injection vulnerabilities, including reflected cross site scripting, Ruby code injection, classic and blind SQL injection resulting in remote code execution that allows an adversary to execute arbitrary...
mRemoteNG 1.76.20 Privilege Escalation
mRemoteNG mRemoteNG v1.76.20 Privilege Escalation Detailed Information ------------------------------------------------------------------------------------------------------------------------------------------------------------------------ Product Name: mRemoteNG Vendor Home Page:...
soe-canon.com Cross Site Scripting vulnerability OBB-3000453
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Threat Outbreak Alert RuleID28316: Email Messages Distributing Malicious Software on March 15, 2017
Medium Alert ID: 53040 First Published: 2017 March 15 17:52 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID28316 may contain the following files: Name | Si...
KNet Web Server 1.04b - Buffer Overflow SEH
No description provided by source. !/usr/bin/ruby Exploit Title: KNet Web Server Buffer Overflow SEH Date: 2013-03-27 Exploit Author: Myo Soe, http://yehg.net/ Software Link: http://www.softpedia.com/progDownload/KNet-Download-20137.html Version: KNet 1.04b Tested on: Windows 7 require 'net/http'...
zFTPServer - 'cwd/stat' Remote Denial of Service
!/usr/bin/python Exploit Title: zFTP Server "cwd" Remote Denial-of-Service Date: 2011-10-24 Author: Myo Soe Version: 2011-04-13 08:59 Tested on: Windows XP, 2K3 import socket import sys import time author = 'c Myo Soe ' server server = 'zFTP Server version 2011-04-13 08:59' title = ' "cwd" Remote...
smallftpd <= 1.0.3-fix | Connection Saturation Remote Denial of Service Vulnerability
smallftpd = 1.0.3-fix | Connection Saturation Remote Denial of Service Vulnerability 1. OVERVIEW The smallftpd FTP server is found to be vulnerable to denial of service in handling multiple connection requests regardless of its maximum connection settings. Upon successful DoS exploit, the smallft...
Sony Hiring Information Security Engineers & Facebook Hire George Hotz
Sony Hiring Information Security Engineers After 14 Hacks, Finally Sony open job recruitment for "Sr Application Security Analyst". Sony Estimates 171 Million Dollar Loss due to PSN Hack. Also Sony CEO sorry for PSN hack, offers data theft insurance. Social network Facebook has hired a computer...
Sony Says Additional 25m Customers Exposed in Breach
A breach that started with the PlayStation Network has also affected Sony Online Entertainment’s 25 million customers, the company acknowledged on Tuesday. The electronics giant posted a press release on the Website of its Sony Online Entertainment division that provided additional details behind...