4613 matches found
Description of the security update for SharePoint Enterprise Server 2016: June 12, 2018
Description of the security update for SharePoint Enterprise Server 2016: June 12, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see...
CVE-2017-16100
dns-sync is a sync/blocking dns resolver. If untrusted user input is allowed into the resolve method then command injection is possible...
CVE-2017-16100
dns-sync is a Node.js library that can execute arbitrary commands when untrusted input is provided to the resolve() method, enabling remote code execution. The vulnerability is confirmed in multiple sources, notably the IBM Datapower Operations Dashboard advisory describing an impact on DataPower...
CVE-2017-16024
The sync-exec module is used to simulate childprocess.execSync in node versions 0.11.9. Sync-exec uses tmp directories as a buffer before returning values. Other users on the server have read access to the tmp directory, possibly allowing an attacker on the server to obtain confidential informati...
CVE-2017-16024
The sync-exec module is used to simulate childprocess.execSync in node versions 0.11.9. Sync-exec uses tmp directories as a buffer before returning values. Other users on the server have read access to the tmp directory, possibly allowing an attacker on the server to obtain confidential informati...
Buffer overflow
The sync-exec module is used to simulate childprocess.execSync in node versions 0.11.9. Sync-exec uses tmp directories as a buffer before returning values. Other users on the server have read access to the tmp directory, possibly allowing an attacker on the server to obtain confidential informati...
CVE-2017-16024
The sync-exec module is used to simulate childprocess.execSync in node versions 0.11.9. Sync-exec uses tmp directories as a buffer before returning values. Other users on the server have read access to the tmp directory, possibly allowing an attacker on the server to obtain confidential informati...
CVE-2017-16024
The CVE-2017-16024 entry concerns the sync-exec module, used to simulate Node.js child_process.execSync in Node versions
CloudMe Sync 1.11.0 - Buffer Overflow (SEH) (DEP Bypass)
CloudMe Sync 1.11.0 - Buffer Overflow SEH DEP Bypass Exploit: CloudMe Sync netstat -nao | find "8888" TCP 0.0.0.0:8888 0.0.0.0:0 LISTENING 2640 C:\tasklist | find "2640" CloudMe.exe 2640 Console 1 36,632 K Attacking Machine: root@kali:/Desktop python cloudme.py CloudMe Sync v1.10.9 Buffer Overflo...
CloudMe Sync < 1.11.0 - Buffer Overflow (SEH) (DEP Bypass)
Exploit: CloudMe Sync netstat -nao | find "8888" TCP 0.0.0.0:8888 0.0.0.0:0 LISTENING 2640 C:\tasklist | find "2640" CloudMe.exe 2640 Console 1 36,632 K Attacking Machine: root@kali:/Desktop python cloudme.py CloudMe Sync v1.10.9 Buffer Overflow with DEP Bypass + CloudMe Target IP 192.168.12.4...
Exploit for Improper Input Validation in Flexense Syncbreeze
Flexense HTTP Server Server-Enable web server on port. Module...
Trustjacking: iTunes’ Wi-Fi Sync Feature Vulnerable to Exploitation
By Waqas Hackers can exploit the vulnerability in iTunes' Wi-Fi Sync feature and This is a post from HackRead.com Read the original post: Trustjacking: iTunes' Wi-Fi Sync Feature Vulnerable to Exploitation...
'iTunes Wi-Fi Sync' Feature Could Let Attackers Hijack Your iPhone, iPad Remotely
Be careful while plugging your iPhone into a friend's laptop for a quick charge or sharing selected files. Researchers at Symantec have issued a security warning for iPhone and iPad users about a new attack, which they named "TrustJacking," that could allow someone you trust to remotely take...
'iTunes Wi-Fi Sync' Feature Could Let Attackers Hijack Your iPhone, iPad Remotely
Be careful while plugging your iPhone into a friend's laptop for a quick charge or sharing selected files. Researchers at Symantec have issued a security warning for iPhone and iPad users about a new attack, which they named "TrustJacking ," that could allow someone you trust to remotely take...
New vulnerability: hackers can use the iTunes Wi-Fi sync feature to take over your iPhone-bug warning-the black bar safety net
United States Time 4 May 19, according to foreign media reports, Symantec researchers found that the Apple eco in a loophole, as long as the user of the iPhone with the Mac workstation or laptop pairing, the hacker could use the vulnerability Trustjacking)surreptitiously“take over”the user...
RSA 2018 | via iOS Trustjacking vulnerability remote penetration iPhone-vulnerability warning-the black bar safety net
! Symantec researchers found a iPhone and Mac workstation and laptop pairing vulnerability. They stated that an attacker can use this is called Trustjacking of Vulnerability, in the no information case to take over the device. Trustjacking vulnerability from iTunes comes with the“iTunes Wi-Fi...
CloudMe Sync 1.11.0 Local Buffer Overflow Exploit
Exploit for windows platform in category local exploits Exploit Title: Local Buffer Overflow on CloudMe Sync v1.11.0 Date: 08.03.2018 Vendor Homepage: https://www.cloudme.com/en Software Link: https://www.cloudme.com/downloads/CloudMe1110.exe Category: Local Exploit Discovery: Prasenjit Kanti Pau...
CloudMe Sync 1.11.0 Local Buffer Overflow
Exploit Title: Local Buffer Overflow on CloudMe Sync v1.11.0 Date: 08.03.2018 Vendor Homepage: https://www.cloudme.com/en Software Link: https://www.cloudme.com/downloads/CloudMe1110.exe Category: Local Exploit Discovery: Prasenjit Kanti Paul Web: http://hack2rule.wordpress.com/ Version: 1.11.0...
CloudMe Sync 1.11.0 - Local Buffer Overflow
CloudMe Sync 1.11.0 - Local Buffer Overflow Exploit Title: Local Buffer Overflow on CloudMe Sync v1.11.0 Date: 08.03.2018 Vendor Homepage: https://www.cloudme.com/en Software Link: https://www.cloudme.com/downloads/CloudMe1110.exe Category: Local Exploit Discovery: Prasenjit Kanti Paul Web:...
CloudMe Sync 1.11.0 - Local Buffer Overflow
Exploit Title: Local Buffer Overflow on CloudMe Sync v1.11.0 Date: 08.03.2018 Vendor Homepage: https://www.cloudme.com/en Software Link: https://www.cloudme.com/downloads/CloudMe1110.exe Category: Local Exploit Discovery: Prasenjit Kanti Paul Web: http://hack2rule.wordpress.com/ Version: 1.11.0...