4614 matches found
CVE-2017-14980
Buffer overflow in Sync Breeze Enterprise 10.0.28 allows remote attackers to have unspecified impact via a long username parameter to /login...
CVE-2017-14980
CVE-2017-14980 — Sync Breeze Enterprise vulnerable to a stack-based buffer overflow in the web login interface (Sync Breeze Enterprise 10.0.28). A remote, unauthenticated attacker can cause memory corruption and achieve remote code execution via a long username parameter to /login. Public PoCs an...
Sync Breeze Enterprise 10.0.28 Buffer Overflow
Exploit Title: SyncBreeze POST username overflow Date: 30-Sep-2017 Exploit Author: Owais Mehtab Vendor Homepage: http://www.syncbreeze.com Software Link: http://www.syncbreeze.com/setups/syncbreezeentsetupv10.0.28.exe Version: 10.0.28 Tested on: Windows 7 !/usr/bin/python import socket import os...
Sync Breeze Enterprise 10.0.28 - Remote Buffer Overflow
Sync Breeze Enterprise 10.0.28 - Remote Buffer Overflow Exploit Title: SyncBreeze POST username overflow Date: 30-Sep-2017 Exploit Author: Owais Mehtab Vendor Homepage: http://www.syncbreeze.com Software Link: http://www.syncbreeze.com/setups/syncbreezeentsetupv10.0.28.exe Version: 10.0.28 Tested...
Sync Breeze Enterprise 10.0.28 - Denial of-Service (PoC)
!/usr/bin/python import socket import sys try: server = sys.argv1 port = 80 size = 800 inputBuffer = b"A" size content = b"username=" + inputBuffer + b"&password=A" buffer = b"POST /login HTTP/1.1\r\n" buffer += b"Host: " + server.encode + b"\r\n" buffer += b"User-Agent: Mozilla/5.0 X11; Linux866...
iTunes < 12.7 Data Sync Vulnerability (Mac OS)
The version of iTunes installed on the remote Mac OS X host is older than 12.7. It is, therefore, affected by a data sync vulnerability. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid103508; scriptversion"1.6"; scriptcvsdate"Date: 2019/11/12";...
syncinteractive.com XSS vulnerability
Vulnerable URL: https://www.syncinteractive.com/portfolio.php?categoryid=1%27%22%3E%3Csvg/onload=confirm/OPENBUGBOUNTY/%3E=77 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...
The vulnerability of the svn:externals and svn:sync-from-url services in the centralized version control system Subversion allows a perpetrator to execute arbitrary shell commands.
The vulnerability of the svn:externals and svn:sync-from-url services in the centralized version control system Subversion exists due to insufficient checking of input data file://, http://, plain untunneled svn://. Exploiting this vulnerability allows a malicious actor to execute any shell comma...
DEBIAN-CVE-2017-14406
A NULL pointer dereference was discovered in syncbuffer in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...
About the security content of iTunes 12.7
About the security content of iTunes 12.7 This document describes the security content of iTunes 12.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
Command Injection
Overview Affected versions of dns-sync have an arbitrary command execution vulnerability in the resolve method. Recommendation - Use an alternative dns resolver - Do not allow untrusted input into dns-sync.resolve References - Issue 1 - Commit d9abaae...
Moderate: Red Hat Security Advisory: satellite and spacewalk security and bug fix update
An update for satellite-schema, spacewalk-backend, spacewalk-java, and spacewalk-schema is now available for Red Hat Satellite 5.8 and Red Hat Satellite 5.8 ELS. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base...
Sync Breeze Enterprise 9.9.16 - Buffer Overflow (SEH) Exploit
Exploit for windows platform in category remote exploits !/usr/bin/env python Exploit Title: Sync Breeze Enterprise v9.9.16 Remote SEH Buffer Overflow Date: 2017-08-25 Exploit Author: Nipun Jaswal & Anurag Srivastava Author Homepage: www.pyramidcyber.com Vendor Homepage: http://www.syncbreeze.com...
Sync Breeze Enterprise 9.9.16 - Remote Buffer Overflow (SEH)
!/usr/bin/env python Exploit Title: Sync Breeze Enterprise v9.9.16 Remote SEH Buffer Overflow Date: 2017-08-25 Exploit Author: Nipun Jaswal & Anurag Srivastava Author Homepage: www.pyramidcyber.com Vendor Homepage: http://www.syncbreeze.com Software Link:...
Sync Breeze Enterprise 9.9.16 Buffer Overflow
!/usr/bin/env python Exploit Title: Sync Breeze Enterprise v9.9.16 Remote SEH Buffer Overflow Date: 2017-08-25 Exploit Author: Nipun Jaswal & Anurag Srivastava Author Homepage: www.pyramidcyber.com Vendor Homepage: http://www.syncbreeze.com Software Link:...
Sync Breeze Enterprise 9.9.16 - Remote Buffer Overflow (SEH)
Sync Breeze Enterprise 9.9.16 - Remote Buffer Overflow SEH !/usr/bin/env python Exploit Title: Sync Breeze Enterprise v9.9.16 Remote SEH Buffer Overflow Date: 2017-08-25 Exploit Author: Nipun Jaswal & Anurag Srivastava Author Homepage: www.pyramidcyber.com Vendor Homepage: http://www.syncbreeze.c...
Sync Breeze Enterprise 9.9.16 Buffer Overflow
!/usr/bin/python Exploit Title : Sync Breeze Enterprise 9.9.16 - 'Import Command' Buffer Overflow Discovery by : Anurag Srivastava Email : [email protected] Website : www.pyramidcyber.com Discovery Date : 21/08/2017 Software Link :...
Sync Breeze Enterprise 9.9.16 Buffer Overflow Exploit
Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title : Sync Breeze Enterprise 9.9.16 - 'Import Command' Buffer Overflow Discovery by : Anurag Srivastava Email : email protected Website : www.pyramidcyber.com Discovery Date : 21/08/2017 Software Link :...
Error : Sync not permitted. Account doesn't have permission to sync with the mail server.
Error : Sync not permitted. You account doesn't have permission to sync with the mail server...
tigervnc and fltk security, bug fix, and enhancement update
fltk 1.3.4-1 - Re-base to 1.3.4 + sync with Fedora tigervnc 1.8.0-1 - Update to 1.8.0 Resolves: bz1388620 1.7.90-2 - Make RandR callbacks optional Resolves: bz1444948 1.7.90-1 - Update to 1.7.90 Resolves: bz1388620 1.7.1-3 - Delete underlying ssecurity in SSecurityVeNCrypt CCVE-2017-7392 Resolves...