Twenty Year Anniversary
Showing 1 - 25 of 59 RSS Feed

Files from laginimaineb

First Active2016-05-02
Last Active2018-06-28
Android media.metrics Service Race Condition
Posted Jun 28, 2018
Authored by Google Security Research, laginimaineb

Android suffers from multiple race condition vulnerabilities in the media.metrics service.

tags | exploit, vulnerability
MD5 | 06121632506dfafd6c92c75072b912b0
Chromium memory_instrumentation::mojom::Coordinator Information Disclosure
Posted Mar 12, 2018
Authored by Google Security Research, laginimaineb

Chromium suffers from an information disclosure vulnerability via the memory_instrumentation::mojom::Coordinator interface in the resource_coordinator service.

tags | exploit, info disclosure
advisories | CVE-2018-6080
MD5 | aecbddca95d8cb30c1fb09dfe42056f3
Chromium mojo::WrapSharedMemoryHandle Insufficient Call
Posted Mar 12, 2018
Authored by Google Security Research, laginimaineb

Chromium suffers from an issue where calling mojo::WrapSharedMemoryHandle is insufficient to produce read-only descriptors for IPC.

tags | exploit
advisories | CVE-2018-6063
MD5 | 473c674fc42d6772752e1711e882dd1f
Chromium Android Writable SharedMemory Descriptors
Posted Mar 12, 2018
Authored by Google Security Research, laginimaineb

Chromium suffers from an issues where read-only SharedMemory descriptors on Android are writable.

tags | exploit
advisories | CVE-2018-6057
MD5 | 08491d011bf32134fe1395fcf9073825
Chromium Incorrect Size Calculation Out-Of-Bounds Access
Posted Mar 4, 2018
Authored by Google Security Research, laginimaineb

A Chromium incorrect size calculation when deserializing Mojo "Event" messages can lead to out-of-bounds access.

tags | exploit
MD5 | 94356d5538990c64e559c1b0258aa0c0
Android KeyStore Permission Bypass
Posted Feb 6, 2018
Authored by Google Security Research, laginimaineb

The keystore binder service ("android.security.IKeystoreService") allows users to issue several commands related to key management, including adding, removing, exporting and generating cryptographic keys. The service is accessible to many SELinux contexts, including application contexts, but also unprivileged daemons such as "media.codec". A permission bypass vulnerability exists in the KeyStore service due to getpidcon.

tags | exploit, bypass
advisories | CVE-2017-13236
MD5 | 6217b7e5a6f72a1a4284d0fb186f9daf
Chromium filesystem::mojom::Directory Sandbox Escape
Posted Jan 31, 2018
Authored by Google Security Research, laginimaineb

Chromium suffers from a sandbox escape vulnerability via an exposed filesystem::mojom::Directory mojo interface in the catalog service.

tags | exploit
advisories | CVE-2018-6055
MD5 | 29596ace8468f827cee80ea00a7fe425
Android Hardware Service Manager Arbitrary Service Replacement
Posted Jan 11, 2018
Authored by Google Security Research, laginimaineb

Android hardware service manager suffers from an arbitrary service replacement issue due to getpidcon.

tags | exploit, arbitrary
advisories | CVE-2017-13209
MD5 | e737a1fadbe0b195095c2575bb8694b4
Android ashmem Race Condition
Posted Jan 10, 2018
Authored by Google Security Research, laginimaineb

The Android MemoryIntArray class allows processes to share an in-memory array of integers backed by an "ashmem" file descriptor. As the class implements the Parcelable interface, it can be inserted into a Parcel, and optionally placed in a Bundle and transferred via binder to remote processes.

tags | exploit, remote
advisories | CVE-2017-13216
MD5 | dcf0633cc886152f7601ff53e754aa73
Broadcom ICMPv6 Information Leak
Posted Oct 2, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from an information leak vulnerability in ICMPv6 router advertisement offloading.

tags | advisory
advisories | CVE-2017-11122
MD5 | aeacfa2846109e67de9614fdd20990e3
Broadcom TCP KeepAlive Offloading DoS / Out-Of-Bounds Read
Posted Sep 27, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from denial of service and out-of-bounds read vulnerabilities in TCP KeepAlive Offloading.

tags | advisory, denial of service, tcp, vulnerability
advisories | CVE-2017-7066
MD5 | 879a8ac244f3f3230f4a9c7db76d35f4
Broadcom 802.11r (FT) Reassociation Response Overflows
Posted Sep 26, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from multiple overflow vulnerabilities when handling 802.11r (FT) Reassociation Response.

tags | advisory, overflow, vulnerability
advisories | CVE-2017-11121
MD5 | 1e78093fdd782872ab115f5141a79346
Broadcom 802.11k Neighbor Report Response Out-Of-Bounds Write
Posted Sep 26, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from an out-of-bounds write when handling 802.11k Neighbor Report Response.

tags | exploit
advisories | CVE-2017-11120
MD5 | c66159611f52d4704833cd26af2fd32d
Broadcom 802.11v WNM Sleep Mode Response Heap Overflow
Posted Sep 26, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from a heap overflow vulnerability when handling 802.11v WNM Sleep Mode Response.

tags | advisory, overflow
advisories | CVE-2017-7065
MD5 | 48eb86c5a0494efa869be0836999b41c
Apple WLC_E_COUNTRY_CODE_CHANGED Information Leak
Posted Sep 22, 2017
Authored by Google Security Research, laginimaineb

Apple products suffers from an information leak when handling WLC_E_COUNTRY_CODE_CHANGED event packets.

tags | advisory
systems | apple
advisories | CVE-2017-7116
MD5 | 18dfa8691803d310aeb0e9d26cfe8d89
Apple PCIe Message Ring Protocol Race Conditions
Posted Sep 22, 2017
Authored by Google Security Research, laginimaineb

The Apple PCIe Message Ring protocol suffers from multiple race conditions that can lead to out-of-bounds read and writes.

tags | advisory, protocol
systems | apple
advisories | CVE-2017-7115
MD5 | bcd86287d34d775562104062a30c316c
Apple setVendorIE Heap Overflow / Information Disclosure
Posted Sep 22, 2017
Authored by Google Security Research, laginimaineb

Heap overflow and information disclosure vulnerabilities exist in Apple's setVendorIE when handling ioctl results.

tags | advisory, overflow, vulnerability, info disclosure
systems | apple
advisories | CVE-2017-7110
MD5 | 3777e2aae23fd65779213ee09ccc433b
Apple Out-Of-Bounds NUL Byte Write
Posted Sep 22, 2017
Authored by Google Security Research, laginimaineb

Apple products suffer from an issue where an out-of-band NUL byte write occurs when handling WLC_E_TRACE event packets.

tags | advisory
systems | apple
advisories | CVE-2017-7112
MD5 | 2d276b709454a0e3d3f8f98a100310a0
Apple updateRateSetAsyncCallback Heap Overflow
Posted Sep 22, 2017
Authored by Google Security Research, laginimaineb

A heap overflow vulnerability exists in Apple's updateRateSetAsyncCallback when handling ioctl results.

tags | advisory, overflow
systems | apple
advisories | CVE-2017-7108
MD5 | 1e92daae67494ac51cfa3e9e9cd67bce
Apple assembleBGScanResults Heap Overflow
Posted Sep 22, 2017
Authored by Google Security Research, laginimaineb

There is a heap overflow vulnerability in Apple's assembleBGScanResults when handling ioctl results.

tags | advisory, overflow
systems | apple
advisories | CVE-2017-7105
MD5 | 92a298553ffecc17b336c053ef27d831
Apple AppleBCMWLANCore Driver Heap Overflow
Posted Sep 21, 2017
Authored by Google Security Research, laginimaineb

There is a heap overflow in Apple's AppleBCMWLANCore driver when handling Completed Firmware Timestamp messages (0x27).

tags | advisory, overflow
systems | apple
advisories | CVE-2017-7103
MD5 | 9e2eb777a0c25de2a642bb1b840b9f64
Samsung Trustonic Trustlet Revocation
Posted Jul 21, 2017
Authored by Google Security Research, laginimaineb

Trustonic's Trusted Execution Environment (TEE) OS fails to perform revocation of trustlets.

tags | exploit
MD5 | 9c01feb9f591e95fb6fa6abb1652bfcc
Android Device QSEE Trustlet Revocation
Posted Jun 6, 2017
Authored by Google Security Research, laginimaineb

Multiple Android devices do not revoke known-bad QSEE trustlets.

tags | exploit
MD5 | f1989c1a9bceca35c689beccaef68246
Broadcom wldev_ioctl Information Leak
Posted May 23, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from a host to dongle information leak via wldev_ioctl.

tags | advisory
advisories | CVE-2017-0633
MD5 | 4920ccd54f1c8e49e101f7bf4b8b956b
Broadcom bcmdhd Memory Corruption
Posted Apr 9, 2017
Authored by Google Security Research, laginimaineb

Broadcom suffers from multiple memory corruption vulnerabilities in bcmdhd when handling WLFC information.

tags | advisory, vulnerability
advisories | CVE-2017-0571
MD5 | 1403eebce5cd8e3ea8172f5a69f31803
Page 1 of 3
Back123Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

August 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    19 Files
  • 2
    Aug 2nd
    17 Files
  • 3
    Aug 3rd
    16 Files
  • 4
    Aug 4th
    1 Files
  • 5
    Aug 5th
    1 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    15 Files
  • 8
    Aug 8th
    9 Files
  • 9
    Aug 9th
    7 Files
  • 10
    Aug 10th
    10 Files
  • 11
    Aug 11th
    1 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    14 Files
  • 14
    Aug 14th
    18 Files
  • 15
    Aug 15th
    38 Files
  • 16
    Aug 16th
    16 Files
  • 17
    Aug 17th
    22 Files
  • 18
    Aug 18th
    3 Files
  • 19
    Aug 19th
    3 Files
  • 20
    Aug 20th
    21 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close