what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Juan Caillava

MikroTik RouterOS SMB Buffer Overflow

Posted Mar 15, 2018

Authored by Core Security Technologies, Juan Caillava, Maximiliano Vidal | Site coresecurity.com

A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is possible for an unauthenticated remote attacker to exploit it.

tags | exploit, remote, overflow, code execution

advisories | CVE-2018-7445

SHA-256 | f596977ec0c838a1e24c8e7b3ba40756d8c45733524c4820e426799d27f008d3

Download | Favorite | View

Apache OFBiz Cross Site Scripting

Posted Jan 20, 2013

Authored by Marcos Garcia, Juan Caillava

Apache OFBiz versions 10.04.05 and below and 11.04.01 and below suffer from a reflected cross site scripting vulnerability. Full exploitation details provided.

tags | exploit, xss

advisories | CVE-2013-0177

SHA-256 | de3b53f54188361189213bbc769aa0b03d6bdceb3374bb700d55cbda2a8f3328

Download | Favorite | View

Apache OFBiz 11.04.01 / 10.04.04 Cross Site Scripting

Posted Jan 19, 2013

Authored by Marcos Garcia, Juan Caillava | Site ofbiz.apache.org

Apache OFBiz versions 11.04.01 and 10.04.04 suffer from reflective cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss

advisories | CVE-2013-0177

SHA-256 | 3c9f6192cc77dba64d6b0b5e7c44426c420c4b521505da89f12f97bfba4f3b24

Download | Favorite | View