3 matches found
Windows 10 Privilege-Escalation Zero-Day Gets Unofficial Fix
A partially unpatched security bug in Windows that could allow local privilege escalation from a regular user to System remains unaddressed fully by Microsoft – but an unofficial micropatch from oPatch has hit the scene. The bug CVE-2021-34484 was originally disclosed and patched as part of...
Directory traversal vulnerability in phpimglist
DESCRIPTION: There is a vulnerability in phpimglist which allows a user to traverse through directories outside the web root. It only shows directories and image files although there might be a way around this. Exploit: http://www.site.com/images/?cwd=../../../../ -or-...
AIM-dos.txt
As all Ascii-Symbols can be displayed in &XXX; format, where XXX are numbers from 0-255, AIM seems not to check the XXX for higher values and some strings above 255 result in aim crashing completly or in part. E.g. the string ̂ will result in crashing the whole aim, but ̃ will crash only the...