Mail Thread Index

• Date Index

• [FD] Multiple vulnerabilities in Gotenberg <= 6.2.0, Błażej Adamczyk
• [FD] Multiple vulnerabilities found in Rock RMS including RCE and account takeover, Cyber Security Research Group via Fulldisclosure
• [FD] Stored XSS In Hyland's Enterprise Search, johnkennedy
• [FD] BACKDOOR.WIN32.BNLITE / Remote Heap Corruption, malvuln
• [FD] Phorpiex / Insecure permissions EoP, malvuln
• [FD] TROJAN.WIN32.JORIK.DMSPAMMER.SZ / Remote Memory Corruption, malvuln
• [FD] HEUR.RISKTOOL.WIN32.BITMINER.GEN / Remote Memory Corruption, malvuln
• [FD] Backdoor.Win32.Zombam.j / Remote Stack Buffer Overflow, malvuln
• [FD] BACKDOOR.WIN32.REMOTEMANIPULATOR / Insecure Permissions, malvuln
• [FD] BACKDOOR.WIN32.ADVERBOT / Remote Stack Corruption, malvuln
• [FD] [KIS-2020-11] qdPM <= 9.1 (executeExport) PHP Object Injection Vulnerability, Egidio Romano
• [FD] Trojan:Win32/Alyak.B / Remote Stack Corruption, malvuln
• [FD] Email-Worm.Win32.Zhelatin.ago / Remote Stack Buffer Overflow, malvuln
• [FD] Trojan.Win32.Bayrob.cgau / Insecure Permissions EoP (SYSTEM), malvuln
• [FD] Trojan.Win32.Barjac / Remote Stack Buffer Overflow., malvuln
• [FD] Backdoor.Win32.Infexor.b / Remote Buffer Overflow, malvuln
• [FD] WIN32 BACKDOOR - 2019-02-ARTRADOWNLOADER / Remote SEH Buffer Overflow and Insecure Permissions, malvuln
• [FD] Threat: Trojan.Win32.Antavka.bz / Insecure Permissions EoP, malvuln
• [FD] CVE-2020-24386: IMAP hibernation allows accessing other peoples mail, Aki Tuomi
  • <Possible follow-ups>
  • [FD] CVE-2020-24386: IMAP hibernation allows accessing other peoples mail, Aki Tuomi
• [FD] Files.com - Auth Bypass (Fat Client), Balázs Hambalkó
• [FD] Backdoor.Win32.Zombam.k / Remote Stack Buffer Overflow, malvuln
• [FD] [KIS-2021-01] IPS Community Suite <= 4.5.4 (Downloads REST API) SQL Injection Vulnerability, Egidio Romano
• [FD] Backdoor.Win32.Agent.dcbh / Insecure Permissions EoP, malvuln
• [FD] Backdoor.Win32.Xtreme.yvp / Insecure Permissions EoP, malvuln
  • Re: [FD] Backdoor.Win32.Xtreme.yvp / Insecure Permissions EoP, bo0od
  • <Possible follow-ups>
  • Re: [FD] Backdoor.Win32.Xtreme.yvp / Insecure Permissions EoP, network.mp4 via Fulldisclosure
• [FD] Backdoor.Win32.NinjaSpy.c / Remote Stack Buffer Overflow, malvuln
  • Re: [FD] Backdoor.Win32.NinjaSpy.c / Remote Stack Buffer Overflow, Matthew Fernandez
  • <Possible follow-ups>
  • Re: [FD] Backdoor.Win32.NinjaSpy.c / Remote Stack Buffer Overflow, network.mp4 via Fulldisclosure
• [FD] Open-Xchange Security Advisory 2021-01-07, Martin Heiland via Fulldisclosure
• [FD] Trovent Security Advisory 2010-01 / CVE-2020-28208: Rocket.Chat email address enumeration vulnerability, Stefan Pietsch
• [FD] Multiple vulnerabilities found in FiberHome HG6245D routers, Pierre Kim
• [FD] Envira Gallery - Lite Edition - Version 1.8.3.2 CVE-2020-35581 CVE-2020-35582, Rodolfo Augusto do Nascimento Tavares
• Re: [FD] Trovent Security Advisory 2010-01 [updated] / CVE-2020-28208: Rocket.Chat email address enumeration vulnerability, Stefan Pietsch
  • Re: [FD] Trovent Security Advisory 2010-01 [updated] / CVE-2020-28208: Rocket.Chat email address enumeration vulnerability, Stefan Pietsch
• [FD] Advisory: ES2021-01 - Loopback access control bypass in coturn by using 0.0.0.0, [::1] or [::] as the peer address, Sandro Gauci
• [FD] Backdoor.Win32.Ketch.b / Remote Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Levelone.a / Remote Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Levelone.b / Remote Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Zombam.a / Remote Stack Buffer Overflow, malvuln
• [FD] SEC Consult SA-20210113-0 :: Multiple vulnerabilities in Pepperl+Fuchs IO-Link Master Series, SEC Consult Vulnerability Lab
• [FD] SEC Consult SA-20210113-1 :: Multiple vulnerabilities in flatCore CMS, SEC Consult Vulnerability Lab
• [FD] BACKDOOR.WIN32.KURBADUR.A / Remote Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Ketch.i / SEH Remote Stack Buffer Overflow, malvuln
• [FD] BACKDOOR.WIN32.KETCH.A / Remote SEH Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Ncx.bt / Remote Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Nucleroot.bi - MaskPE 2.0 / File Based Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Nucleroot.t - MaskPE 1.6 / File Based Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Latinus.b / Remote Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Whgrx / Remote Host Header Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Mnets / Remote Stack Buffer Overflow - (UDP Datagram Proto), malvuln
• [FD] Newfuture Trojan V.1.0 BETA 1 / Insecure Permissions, malvuln
• [FD] Constructor.Win32.SMWG.a / Insecure Permissions, malvuln
  • Re: [FD] Constructor.Win32.SMWG.a / Insecure Permissions, Garrett Skjelstad
• [FD] Constructor.Win32.SMWG.c / Insecure Permissions, malvuln
• [FD] Email-Worm.Win32.Agent.gi / Remote Stack Buffer Overflow - (UDP Datagram), malvuln
• [FD] Backdoor.Win32.NetBull.11.a / Remote Buffer Overflow, malvuln
• [FD] CVE-2020-20269 - Caret Editor v4.0.0-rc21 Remote Code Execution, Manuel Bua
• [FD] [REVIVE-SA-2021-001] Revive Adserver Vulnerabilities, Matteo Beccati via Fulldisclosure
• [FD] Backdoor.Win32.Zombam.geq / Remote Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Whirlpool.10 / Remote Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Whisper.b / Remote Stack Corruption, malvuln
• [FD] Backdoor.Win32.Zxman / Missing Authentication, malvuln
• [FD] Backdoor.Win32.WinShell.30 / Remote Stack Buffer Overflow / Missing Authentication, malvuln
• [FD] Backdoor.Win32.Onalf / Missing Authentication, malvuln
• [FD] Backdoor.Win32.Verify.f / Missing Authentication, malvuln
• [FD] Backdoor.Win32.Xel / Remote Authentication Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Hupigon.adef / Remote Stack Buffer Overflow, malvuln
• [FD] Backdoor.Win32.Kraimer.11 / Missing Authentication, malvuln
• [FD] Backdoor.Win32.Noknok.60 / Insecure Permissions, malvuln
• [FD] Backdoor.Win32.Noknok.50 / Insecure Permissions, malvuln
• [FD] Backdoor.Win32.Jokerdoor (TDC Mail Spy 1.0) / Insecure Permissions, malvuln
• [FD] Trojan.Win32.Xocry.ff / Insecure Permissions, malvuln
• [FD] Backdoor.Win32.Wollf.16 / Weak Hardcoded Password, malvuln
• [FD] Backdoor.Win32.DarkKomet.bhfh / Insecure Permissions, malvuln
• [FD] Backdoor.Win32.Wollf.c / Hardcoded Backdoor Password, malvuln
• [FD] [REVIVE-SA-2021-002] Revive Adserver Vulnerabilities, Matteo Beccati via Fulldisclosure
• [FD] Baron Samedit: Heap-based buffer overflow in Sudo (CVE-2021-3156), Qualys Security Advisory
• [FD] APPLE-SA-2021-01-26-1 iOS 14.4 and iPadOS 14.4, Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-01-26-2 tvOS 14.4, Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-01-26-3 watchOS 7.3, Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2021-01-26-4 Xcode 12.4, Apple Product Security via Fulldisclosure