Zoom Linux Client 2.0.106600.0904 Buffer Overflow

Zoom Linux Client 2.0.106600.0904 Buffer Overflow

The binary /opt/zoom/ZoomLauncher is vulnerable to a buffer overflow because it concatenates a overly long user input to a stack variable without checking if the destination buffer is long enough to hold the data. The binary also has important security features like canary turned off. The client registers a scheme handler (zoommtg://) and this makes […]

The post Zoom Linux Client 2.0.106600.0904 Buffer Overflow appeared first on MondoUnix.

SyncBreeze 10.1.16 SEH GET Overflow

SyncBreeze 10.1.16 SEH GET Overflow

There exists an unauthenticated SEH based vulnerability in the HTTP server of Sync Breeze Enterprise version 10.1.16, when sending a GET request with an excessive length it is possible for a malicious user to overwrite the SEH record and execute a payload that would run under the Windows NT AUTHORITYSYSTEM account. The SEH record is […]

The post SyncBreeze 10.1.16 SEH GET Overflow appeared first on MondoUnix.