[FD] Executable installers are vulnerable^WEVIL (case 4): InstallShield's wrapper and setup.exe

Hi @ll, executable installers [°] created with InstallShield (see alias ) are vulnerable: 1. Their wrappers/self-extractors load and execute a rogue/bogus/ mali

Re: [FD] Executable installers are vulnerable^WEVIL (case 26): the installer of GIMP for Windows allows arbitrary (remote) and escalation of privilege

"Jernej Simončič" wrote: > On 23. februar 2016, 17:37:54, Stefan Kanthak wrote: > >> Proof of concept/demonstration: >> ~~~ >[snip] >> PWNED! > > Can't reproduce - tested on Windows XP SP3, Windows 7 x64 SP1 and > Windows 10 x64 (10586.104), and I tested not only with

[FD] Executable installers are vulnerable^WEVIL (case 26): the installer of GIMP for Windows allows arbitrary (remote) and escalation of privilege

Hi @ll, the executable installer gimp-2.8.16-setup-1.exe (and of course older versions too) available from loads and executes UXTheme.dll from its "application directory". For software downloaded with a web browser the application directory is typically the user's

[FD] Various Linux Kernel USERNS Issues

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello List, Here are some issues recently discovered: * Overlayfs over Fuse Privilege Escalation: On some systems, e.g. Ubuntu Wily, it is possible to place an USERNS overlayfs mount over a fuse (file system in userspace) mount. Inactive SUID binarie

[FD] [CVE-2015-5345] Information disclosure vulnerability in Apache Tomcat

Information disclosure vulnerability in Apache Tomcat Web version at: http://www.qcsec.com/blog/CVE-2015-5345-apache-tomcat-vulnerab

[FD] Hacking Passwords, Lesson 11, Available Now!

Hi, Hacking Passwords, Lesson 11 just released! It's an ebook on hacking and security written exclusively for young adults. Free, open source download here: http://hackerhighschool.org/lessons.html Sincerely, -pete. -- Pete Herzog - Managing Director - p...@isecom.org ISECOM - Institute for S

Re: [FD] Cisco ASA VPN - Zero Day Exploit

According to Cisco it is CVE-2014-2120, which indicates that much like the code sort of gave away, it is a bad attempt by a 1337 hax0r to push their crappy 'exploitpack.com' instead of you know, finding anything useful. Indeed it is a damn XSS with minimal utility. The crappy code is just the icin

Re: [FD] Executable installers are vulnerable^WEVIL (case 26): the installer of GIMP for Windows allows arbitrary (remote) and escalation of privilege

On 23. februar 2016, 17:37:54, Stefan Kanthak wrote: > Proof of concept/demonstration: > ~~~ [snip] > PWNED! Can't reproduce - tested on Windows XP SP3, Windows 7 x64 SP1 and Windows 10 x64 (10586.104), and I tested not only with gimp-2.8.16-setup-1.exe, but also with

[FD] XSSer v1.7b: "ZiKA-47 Swarm!" released....

=== XSSer v1.7b: "ZiKA-47 Swarm!" - 2011/2016 - (GPLv3.0) -> by psy --- Cross Site "Scripter" is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

[FD] D-Link, Netgear Router Vulnerabiltiies

Hello, We’d like to report several vulnerabilities in embedded devices developed by D-Link and Netgear, which were discovered using our FIRMADYNE framework for emulation and dynamic analysis of Linux-based embedded devices. For more information, refer to our academic paper and open-source relea

[FD] CVE-2015-6541 : Multiple CSRF in Zimbra Mail interface

== Multiple CSRF in Zimbra Mail interface == CVE-2015-6541 Description === Multiple CSRF vulnerabilities have been found in the Mail interface of Zimbra 8.0.9 GA Release, enabling to change account preferences like

[FD] CVE ID Request : Proxmox VE Insecure hostname checking (remote root exploit)

= Proxmox VE 3/4 Insecure Hostname Checking (Remote Root Exploit, XSS, Privileges escalation) = Description === Proxmox is a popular virtualization solut

[FD] CVE ID Request : Centreon remote code execution

Unauthenticated Remote Command Execution in Centreon Web Interface == Description === Centreon is a popular monitoring solution. A critical vulnerability has been found in the Centreon logging class allowing remote users to

[FD] Ubiquiti Networks UniFi v3.2.10 Generic CSRF Protection Bypass

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION --- Product:Ubiquiti Networks UniFi Vendor URL: www.ubnt.com Type: Cross-Site Request Forgery [CWE-353] Date found: 2015-03-19 Date published: 2016-02-23 CVSSv3 Score: 6.3 (A

[FD] CSNC-2016-002 - Open Redirect in OpenAM

# # # COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html # # # CSNC ID: CSNC-2016-002 # Product: OpenAM [1] # Vendor: For

[FD] CSNC-2016-001 - XSS in OpenAM

# # # COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html # # # CSNC ID: CSNC-2016-001 # Product: OpenAM [1] # Vendor: For

[FD] CVE-2015-0955 - Stored XSS in Adobe Experience Manager (AEM)

# # # COMPASS SECURITY ADVISORY http://www.csnc.ch/ # # # CSNC ID: CSNC-2015-011 # CVE ID :CVE-2015-0955 # Product: Adobe Experience Manager