date:20170510

[FD] SEC Consult SA-20170510-0 :: Insecure Handling Of URI Schemes in Microsoft OneDrive iOS App

2017-05-10 Thread SEC Consult Vulnerability Lab

A short demo video is available here: https://youtu.be/0jZdM9peVSk SEC Consult Vulnerability Lab Security Advisory < 20170510-0 > === title: Insecure Handling Of URI Schemes product: Microsoft On

[FD] [CORE-2017-0001] - SAP SAPCAR Heap Based Buffer Overflow Vulnerability

2017-05-10 Thread Core Security Advisories Team

1. *Advisory Information* Title: SAP SAPCAR Heap Based Buffer Overflow Vulnerability Advisory ID: CORE-2017-0001 Advisory URL: http://www.coresecurity.com/advisories/sap-sapcar- heap-based-buffer-overflow-vulnerability Date published: 2017-05-10 Date of last update: 2017-05-10 Vendors contacted: S

[FD] [FOXMOLE SA 2017-02-23] Dolibarr ERP & CRM - Multiple Issues

2017-05-10 Thread FOXMOLE Advisories

=== FOXMOLE - Security Advisory 2017-02-23 === Dolibarr ERP & CRM - Multiple Issues ~ Affected Versions = Dolibarr 4.0.4 Issue Overview == Vulnerability Type: SQL Injection, Cross Site Scripting, Weak Hash Algor

Re: [FD] Numerous FreeTDS crashes fixed on master

2017-05-10 Thread Brandon Perry

I was asked what software this affects. PHP - http://www.freetds.org/userguide/php.htm Perl DBI - http://www.peppler.org/freeware/dbd-sybase.html Ruby DBI w/ Sybase - http://stackoverflow.com/questions/

[FD] QNAP PhotoStation 5.2.4 and MusicStation 4.8.4 Authentication Bypass

2017-05-10 Thread Kacper Szurek

# Exploit QNAP PhotoStation 5.2.4 and MusicStation 4.8.4 Authentication Bypass # Date: 10.05.2017 # Software Link: https://www.qnap.com # Exploit Author: Kacper Szurek # Contact: https://twitter.com/KacperSzurek # Website: https://security.szurek.pl/ # Category: web 1. Description `$_COOKIE[STATI

[FD] Gemalto SmartDiag Diagnosis Tool <= v2.5 - Buffer Overflow - SEH Overwrite - Code Execution

2017-05-10 Thread Majid Alqabandi

# Exploit Title: Gemalto SmartDiag Diagnosis Tool <= v2.5 - Buffer Overflow - SEH Overwrite - Code Execution # Date: 16-03-2017 # Software Link: http://support.gemalto.com/index.php?id=download_tools # Exploit Author: Majid Alqabandi # Contact: https://www.linkedin.com/in/majidalqabandi/ # CVE: CVE

[FD] Multiple Vulnerabilities in ASUS Routers [CVE-2017-5891 and CVE-2017-5892]

2017-05-10 Thread Nightwatch Cybersecurity Research

[Original post here: https://wwws.nightwatchcybersecurity.com/2017/05/09/multiple-vulnerabilities-in-asus-routers/] Summary Various models of ASUS RT routers have several CSRF vulnerabilities allowing malicious sites to login and change settings in the router; multiple JSONP vulnerabilities allow

[FD] SEC Consult SA-20170510-0 :: Insecure Handling Of URI Schemes in Microsoft OneDrive iOS App

[FD] [CORE-2017-0001] - SAP SAPCAR Heap Based Buffer Overflow Vulnerability

[FD] [FOXMOLE SA 2017-02-23] Dolibarr ERP & CRM - Multiple Issues

Re: [FD] Numerous FreeTDS crashes fixed on master

[FD] QNAP PhotoStation 5.2.4 and MusicStation 4.8.4 Authentication Bypass

[FD] Gemalto SmartDiag Diagnosis Tool <= v2.5 - Buffer Overflow - SEH Overwrite - Code Execution

[FD] Multiple Vulnerabilities in ASUS Routers [CVE-2017-5891 and CVE-2017-5892]

7 matches

Site Navigation

Mail list logo

Footer information