BlueBorne BlueTooth buffer overflow proof of concept exploit that causes a denial of service vulnerability on Linux kernels prior to 4.13.1.
Source: BlueBorne BlueTooth Buffer Overflow Proof Of Concept
The post BlueBorne BlueTooth Buffer Overflow Proof…
This Metasploit module exploits the command injection vulnerability of DenyAll Web Application Firewall. Unauthenticated users can execute a terminal command under the context of the web server user.
Source: DenyAll Web Application Firewall Remote Code…
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability.
Source: phpMyFAQ 2.9.8 Cross Site Scripting
The post phpMyFAQ 2.9.8 Cross Site Scripting appeared first on MondoUnix.
This Metasploit module exploits an SEH buffer overflow in Disk Pulse Enterprise version 9.9.16. If a malicious user sends a crafted HTTP GET request it is possible to execute a payload that would run under the Windows NT AUTHORITYSYSTEM account.
Source…
SUSE/Portus version 2.2 suffers from a persistent cross site scripting vulnerability.
Source: SUSE/Portus 2.2 Cross Site Scripting
The post SUSE/Portus 2.2 Cross Site Scripting appeared first on MondoUnix.
DlxSpot Player4 LED video wall has a hardcoded password that allows you to ssh in and escalate to root.
Source: DlxSpot Hardcoded Password
The post DlxSpot Hardcoded Password appeared first on MondoUnix.
DlxSpot Player4 LED video wall suffers from a remote shell upload vulnerability. Versions greater than 1.5.10 are affected.
Source: DlxSpot Shell Upload
The post DlxSpot Shell Upload appeared first on MondoUnix.
DlxSpot Player4 LED video wall suffers from a remote SQL injection vulnerability that allows for authentication bypass. Versions greater than 1.5.10 are affected.
Source: DlxSpot SQL Injection
The post DlxSpot SQL Injection appeared first on MondoUnix.
There is a security issue in Microsoft Edge related to how HTML documents are loaded. If Edge displays a HTML document from a slow HTTP server, it is possible that a part of the document is going to be rendered before the server has finished sending the document. It is also possible that some JavaScript […]
The post Microsoft Edge Partial Page Loading Memory Corruption appeared first on MondoUnix.
The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in win32k!NtQueryCompositionSurfaceBinding.
Source: Microsoft Windows Kernel win32k!NtQueryCompositionSurfaceBinding Memory Disclosure
The post Microsoft Windows Kernel w…
