[FD] Vulnerabilities in the Samsung SNS Provider application for Android [STIC-2015-0511]

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Fundación Dr. Manuel Sadosky - Programa STIC Advisory www.fundacionsadosky.org.ar *Vulnerabilities in the Samsung SNS Provider application for Android* 1. *Advisory Information* Title: Vulnerabilities in the Samsung SNS Prov

Re: [FD] [CVE-2015-1474]Integer overflow leading to heap corruption while unflattening GraphicBuffer

Correct the format # # # QIHU 360 SOFTWARE CO. LIMITED http://www.360safe.com/ # # # # CVE ID: CVE-2015-1474 # Product: Android # Vendor:

Re: [FD] [CVE-2015-1530]An integer overflow in Android media could be exploited to get media_server permission

Correct the format # # # QIHU 360 SOFTWARE CO. LIMITED http://www.360safe.com/ # # # # CVE ID: CVE-2015-1530 # Product: Android # Vendor:

[FD] Raritan PowerIQ known session secret

Raritan PowerIQ versions 4.1, 4.2, and 4.3 ship with a Rails 2 web interface with a hardcoded session secret of 8e238c9702412d475a4c44b7726a0537. This can be used to achieve unauthenticated remote code execution as the nginx user on vulnerable systems. msf exploit(rails_secret_deserialization) >

[FD] [CVE-2015-1530]An integer overflow in Android media could be exploited to get media_server permission

# # # QIHU 360 SOFTWARE CO. LIMITED http://www.360safe.com/ # # # # CVE ID: CVE-2015-1530 # Product: Android # Vendor: Google # Subject:

[FD] [CVE-2015-1474]Integer overflow leading to heap corruption while unflattening GraphicBuffer

# # # QIHU 360 SOFTWARE CO. LIMITED http://www.360safe.com/ # # # # CVE ID: CVE-2015-1474 # Product: Android # Vendor: Google # Subject:

[FD] Capstone disassembly engine 3.0.2 is out!

Greetings, We are pleased to announce version 3.0.2 of Capstone disassembly framework! This stable release brings some important bugfixes for X86, Arm, Mips & Cython binding. All users are encouraged to upgrade. Further information is available at http://capstone-engine.org/Version-3.0.2.html T