MiniDVBLinux 5.4 SVDRP Control
MiniDVBLinux versions 5.4 and below allows the usage of the SVDRP protocol/commands to be sent by a remote attacker to manipulate and/or remotely control the TV.
View ArticleMiniDVBLinux 5.4 Change Root Password
MiniDVBLinux versions 5.4 and below root password changing proof of concept exploit.
View ArticleUbuntu Security Notice USN-5683-1
Ubuntu Security Notice 5683-1 - It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A...
View ArticleBackdoor.Win32.DarkSky.23 MVID-2022-0648 Buffer Overflow
Backdoor.Win32.DarkSky.23 malware suffers from a buffer overflow vulnerability.
View ArticleGentoo Linux Security Advisory 202210-05
Gentoo Linux Security Advisory 202210-5 - Multiple vulnerabilities have been discovered in virglrenderer, the worst of which could result in remote code execution. Versions less than 0.10.1 are affected.
View ArticleNullcon Berlin 2023 Call For Papers
The Nullcon Berlin 2023 Call For Papers is open. It will take place March 9th through the 10th, 2023 in Berlin, Germany.
View ArticleGentoo Linux Security Advisory 202210-06
Gentoo Linux Security Advisory 202210-6 - Multiple vulnerabilities have been discovered in libvirt, the worst of which could result in denial of service. Versions less than 8.2.0 are affected.
View ArticleMiniDVBLinux 5.4 Unauthenticated Stream Disclosure
MiniDVBLinux versions 5.4 and below suffer from an unauthenticated live stream disclosure when /tpl/tv_action.sh is called and generates a snapshot in /var/www/images/tv.jpg through the Simple VDR...
View ArticleWebile 1.0.1 Directory Traversal
Webile version 1.0.1 suffers from a directory traversal vulnerability.
View ArticleGentoo Linux Security Advisory 202210-07
Gentoo Linux Security Advisory 202210-7 - A vulnerability has been found in Deluge which could result in XSS. Versions less than 2.1.1 are affected.
View ArticleSpring Cloud Gateway 3.1.0 Remote Code Execution
This Metasploit module exploits an unauthenticated remote code execution vulnerability in Spring Cloud Gateway versions 3.0.0 through 3.0.6 and 3.1.0. The vulnerability can be exploited when the...
View ArticlepfSense pfBlockerNG 2.1.4_26 Shell Upload
This Metasploit module leverages a remote shell upload vulnerability in pfSense pfBlockerNG plugin versions 2.1.4_26 and below. Note that version 3.x is unaffected.
View ArticleGNU Privacy Guard 2.2.40
GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management...
View ArticleGNU Privacy Guard 2.3.8
GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management...
View ArticleMiniDVBLinux 5.4 Remote Root Command Injection
MiniDVBLinux version 5.4 suffers from an OS command injection vulnerability. This can be exploited to execute arbitrary commands with root privileges.
View ArticleBackdoor.Win32.Redkod.d MVID-2022-0649 Hardcoded Credential
Backdoor.Win32.Redkod.d malware suffers from a hardcoded credential vulnerability.
View ArticleWiFi File Transfer 1.0.8 Cross Site Scripting
WiFi File Transfer version 1.0.8 suffers from a cross site scripting vulnerability.
View ArticleMiniDVBLinux 5.4 Remote Root Command Execution
MiniDVBLinux version 5.4 suffers from an OS command execution vulnerability. This can be exploited to execute arbitrary commands as root through the command GET parameter in /tpl/commands.sh.
View ArticleUbuntu Security Notice USN-5680-1
Ubuntu Security Notice 5680-1 - It was discovered that gThumb did not properly managed memory when processing certain image files. If a user were tricked into opening a specially crafted JPEG file, an...
View ArticleRRX IOB LP 1.0 DNS Cache Snooping
RRX IOB LP version 1.0 suffers from a DNS cache snooping vulnerability.
View Article
