Whitepaper called Windows Kernel Exploitation Tutorial Part 7: Uninitialized Heap Variable.
0f7117becee933190a4fe8f829c42735c8bb565e9d8903096b32fff8dbe74cb5LDAP Account Manager version 6.2 suffers from cross site scripting vulnerabilities.
4cbe981a1951b494e2c807b35bf3ba8c5217f9572789e6414e9ba5ed46ffdc94Domaintrader version 2.5.3 suffers from a cross site scripting vulnerability.
cf451e6c04c419e3e0c7546510171cecbf3b5442d83d853bb4b579d85754ef66This is a whitepaper providing a Linux kernel hacking introduction. Written in Korean.
70b905774f039dbf1b79d316a75a314dd09b5e5f02ba71bf7dc495772f69434cOpen-AuditIT Professional version 2.1 suffers from a cross site request forgery vulnerability.
8e6847c5839288e1e3fdceee5be2bc421a1c945832bfd25a52a7ecc4ee5afa44Proof-of-concept exploit for the Ledger Nano S that hides the non-genuine user interface confirmation. Intentionally unreliable to avoid weaponization. It should be trivial to adapt to the Ledger Blue.
6cfcc12e16811027480ebacc4a36f5fcc88bbc466900a68ce5c618f75206bf74Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.
78aafb025e3d93f58a61b9e3956371e2e8829b26f8edbd5ae14641076d5ce1bdThe Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in the win32kbase!CoreMessagingK interface.
8dcbc258eb4cff8c549b61edff03052d3a172f7d662be25b80dc2bb65f8e00a9Microsoft Windows suffers from a Desktop Bridge Virtual Registry NtLoadKey arbitrary file read / write privilege escalation vulnerability.
8f2f9e0389c7548dbde759deeba68e5cd3a12fc66f9fb82eef907f69b1ca9eb7Microsoft Windows suffers from a Desktop Bridge Virtual Registry arbitrary file read / write privilege escalation vulnerability.
e524422547b177b8b51dff37c1fe898479cd8d33e5a29bcaa8940ba138b96b32Google software updater suffers from a local privilege escalation vulnerability on MacOS due to unsafe use of Distributed Objects.
822ce848f9f1b05721b777be30e35ae0e8bf4ac89fae50e6d3282fdb215603ceThe Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in nt!NtWaitForDebugEvent.
a87daf5a396000b2f7e664a0f2d8619c5af1d39b19c91e2e18446fbd8511d484The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in win32k!XDCOBJ::RestoreAttributes.
743612dfc5adb2afb95d3bb3ee40d4802c64e811db5c9c184e8b15f712978ebfThe Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in win32k!UMPDOBJ::LockSurface.
a8589c8253463a8c9957512bb202ba0c20cfa843c9dd3bdfa38fb973effac60bThe Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability in win32k!PROXYPORT::SendRequest.
119acd7871890c34ae09087667cd36aa8bd6b2ce66a1ff14d13a2a5a53437781The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_REQUIREMENTS_LIST registry values.
1550cc46fe7a3f57880f07c2504a93b23de2428f61b09def06cbb61cf5b64e8aThe Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_LIST registry values (videoprt.sys descriptors).
69b444dc190f17c0fe398e83b60a8120337dbed1b5a38f5316df706a0d50461dThe Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_LIST registry values (CmResourceTypeDevicePrivate entries).
2f32ed721390c6207af8dde961475d5f6dd8d7e5007722aeec53608034508481The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!KiDispatchException.
3508f1ab03eafadda6666b45fe4e78b03c008fb28fd328748b2730d2681b11e5The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in msrpc!LRPC_CASSOCIATION::AlpcSendCancelMessage.
e15e5df1c47b5a1461e7294316b51f3a24c220e91c4dcbe7cd69ab6642ddcd19The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in NtQueryInformationThread(ThreadBasicInformation).
2c54704b6392044c91905395b077ff12a66991f3ecdad28a2cd4cfc297d6ed93Microsoft Internet Explorer 11 suffers from a RegExp.lastMatch memory disclosure vulnerability.
d31d4d807418c373074dddb6b109a04ac380f06cff4cdd96d51d28909dfa8524The Microsoft Window kernel suffers from a 64-bit pool memory disclosure vulnerability in NtQueryVirtualMemory(MemoryMappedFilenameInformation).
91bb1fe9d340829a19346fa19e5989ef6a06aec3e99365e37e32fada68de945bThe handling of the VFS for desktop bridge applications can allow an application to create virtual files in system folder which can result in elevation of privilege.
a19e1b19f8aafc317248316e6dedc0294e0aa633edb99ce6a44a6cd7d11f45c5Crashmail version 1.6 suffers from a buffer overflow vulnerability.
72b5c7d1b766f470a4442575cddacd62886be8f487d3aa3e49019afcfcf0323c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed