| Email address | private |
|---|---|
| Website | hyp3rlinx.altervista.org |
| First Active | 2015-04-28 |
| Last Active | 2018-06-08 |
OfficeScan XG version 11.0 suffers from an unauthorized change prevention bypass vulnerability.
e3ce9faee8d067f82b6d929d3dff7cdaMicrosoft FxCop versions 10 through 12 are vulnerable to XML injection attacks allowing local file ex-filtration and or NTLM hash theft. Tested in Windows 7 and Windows 10 download SDK it works in both.
e4970e9fdb7dbc2ea52471b6d0a8c531Easy Hosting Control Panel version 0.37.12.b suffers from an unverified password change vulnerability.
791e45e8fcd14b89a834a308b18cccdeEasy Hosting Control Panel version 0.37.12.b suffers from a clear-text password storage vulnerability.
6e7d491189d0efa9d471a5da0de2a069Easy Hosting Control Panel version 0.37.12.b suffers from an insecure cryptography vulnerability.
2956ee490bcd7d4912aa51b2ecb60372Easy Hosting Control Panel version 0.37.12.b suffers from multiple cross site request forgery vulnerabilities.
0a8f15401bb9cce8379d7f12c69069b1Easy Hosting Control Panel version 0.37.12.b suffers from a cross site scripting vulnerability that allows you to steal the cookie.
f74bbe3371ad692d1039c540fe5a5060Easy Hosting Control Panel version 0.37.12.b suffers from a cross site scripting vulnerability that allows you to add a backdoor FTP account.
966a2022afa674527a1084c1d9a1eedfDeviceLock Plug and Play Auditor version 5.72 suffers from a unicode buffer overflow vulnerability.
e1efa280720a5cbabeff9a9ab68b5ae1Microsoft Internet Explorer version 11.371.16299.0 suffers from a denial of service vulnerability.
b95fe4c66578b78c338a2d385f6635b6Sophos Endpoint Protection version 10.7 control panel authentication uses a weak unsalted unicoded cryptographic hash (SHA1) function. Not using a salt allows attackers that gain access to hash ability to conduct faster cracking attacks using pre-computed dictionaries, e.g. rainbow tables. This can potentially result in unauthorized access that could allow for changing of settings, whitelist or unquarantine files.
17d6f74a89bfb18403ee901bf2ed270dSophos Endpoint Protection version 10.7 suffers from a tamper protection bypass vulnerability.
81f02a8434690f8501645852069a7be1Microsoft Exchange suffers from an open redirect vulnerability.
50d79a092d794c779a0fa7f12fdb4853DEWESoft X3 suffers from a remote internal command access vulnerability.
45f984eff3502fa768d2b3fbeb988e12WebLog Expert Web Server Enterprise version 9.4 has a weak permission vulnerability that allows for authentication bypass.
8c78785fe4472e8e995940803360bf13WebLog Expert Web Server Enterprise version 9.4 suffers from a denial of service vulnerability.
e86a626a5d9a7984fbd9900209bb8f45Softros Network Time System Server version 2.3.4 suffers from a denial of service vulnerability.
8399908f436c56ef779abd559a2fef0aDualDesk version 20 suffers from a denial of service vulnerability.
59ec64eeacec6aea9d386384dbbb463dSegger embOS/IP FTP Server version 3.22 suffers from a denial of service vulnerability.
674d6ed13de3b9db5b5f2c11ee037041This Metasploit module exploits a stack-based buffer overflow vulnerability in the CloudMe Sync version 1.10.9 client application. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
41dab942f2886640903e2e9e54f5e2e7NTCrackPipe is a basic local Windows account cracking tool.
8ce40f865cb88712052d4f9ea1c811eaNAT32 build 22284 suffers from code execution and cross site request forgery vulnerabilities.
49c0a8a084c7998bc4e286750e176f76NAT32 Build 22284 suffers from a remote command execution vulnerability.
d782ad11ffc709c5a0e961ea5e585448CloudMe Sync versions 1.10.9 and below suffer from an unauthenticated remote buffer overflow vulnerability.
e6cc573f3f01ea0671021866a42d3b05WINCVS 2009R2 suffers from a dll hijacking vulnerability.
23a65c64af1bf05b3c7e8655d9e0b8ee
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed