88 matches found
SP8DE Token (SPX) Integer Overflow Vulnerability
SP8DE Token SPX is a smart contract that runs on Ether. An integer overflow vulnerability exists in the mint function in SP8DE Token SPX. An attacker could use this vulnerability to arbitrarily retrieve a minted token...
Useless Ethereum Token Information Disclosure Vulnerability
Useless Ethereum Token UET is a virtual currency. A security vulnerability exists in the 'transferFrom' function implemented by smart contract in UET, which stems from the program's failure to correctly compute calculations containing the 'value' parameter. The vulnerability can be exploited by a...
Microsoft Windows - NtImpersonateAnonymousToken AC to Non-AC Privilege Escalation
Microsoft Windows - NtImpersonateAnonymousToken AC to Non-AC Privilege Escalation Windows: NtImpersonateAnonymousToken AC to Non-AC EoP Platform: Windows 10 1703 and 1709 Class: Elevation of Privilege Summary: The check for an AC token when impersonating the anonymous token doesn’t check...
CVE-2016-0790
Jenkins before 1.650 and LTS before 1.642.2 do not use a constant-time algorithm to verify API tokens, which makes it easier for remote attackers to determine API tokens via a brute-force approach...
X (Formerly Twitter): Token remains alive ever after logging out!
Please check the video for Full Proof of Concept...
Joomla! < 1.5.16 Multiple Vulnerabilities (deprecated)
Binary data 5518.prm...
Immunity Canvas: MSIMPERSONATE
Name| msimpersonate ---|--- CVE| CVE-2004-0894 Exploit Pack| CANVAS Description| msimpersonate MS04-044 Notes| CVE Name: CVE-2004-0894 VENDOR: Microsoft MSADV: MS04-044 Discovered By: Cesar Cerrudo MSRC: http://www.microsoft.com/technet/security/bulletin/MS04-044.mspx CVE Url:...
Timing attack vector for remember me token
The current rememberme token verification process leaves the application open to a timing attack. Since the default is for the token to be stored as a cookie and for cookies to be encrypted, an attacker would have to know the application secret to exploit this. However, should a custom guard be...