Monthly Archives: March 2015

Full Disclosure

724CMS 5.01 Multiple Information Leakage Security Vulnerabilities

Posted by Jing Wang on Mar 16

*724CMS 5.01 Multiple Information Leakage Security Vulnerabilities*

Exploit Title: 724CMS Multiple Information Leakage Security Vulnerabilities

Vendor: 724CMS

Product: 724CMS

Vulnerable Versions: 3.01 4.01 4.59 5.01

Tested Version: 5.01

Advisory Publication: March 14, 2015

Latest Update: March 14, 2015

Vulnerability Type: Information Exposure [CWE-200]

CVE Reference: *

Impact CVSS Severity (version 2.0):

CVSS v2 Base Score: 5.0…

Full Disclosure

724CMS 5.01 Directory (Path) Traversal Security Vulnerabilities

Posted by Jing Wang on Mar 16

*724CMS 5.01 Directory (Path) Traversal Security Vulnerabilities*

Exploit Title: 724CMS /section.php Module Parameter Directory Traversal
Security Vulnerabilities
Vendor: 724CMS
Product: 724CMS
Vulnerable Versions: 3.01 4.01 4.59 5.01
Tested Version: 5.01
Advisory Publication: March 14, 2015
Latest Update: March 14, 2015
Vulnerability Type: Improper Limitation of a Pathname to a Restricted
Directory (‘Path Traversal’) [CWE-22]…

Full Disclosure

724CMS 5.01 Multiple SQL Injection Security Vulnerabilities

Posted by Jing Wang on Mar 16

*724CMS 5.01 Multiple SQL Injection Security Vulnerabilities*

Exploit Title: 724CMS Multiple SQL Injection Security Vulnerabilities
Vendor: 724CMS
Product: 724CMS
Vulnerable Versions: 3.01 4.01 4.59 5.01
Tested Version: 5.01
Advisory Publication: March 14, 2015
Latest Update: March 14, 2015
Vulnerability Type: Improper Neutralization of Special Elements used in an
SQL Command (‘SQL Injection’) [CWE-89]
CVE Reference: *
Impact…

Full Disclosure

724CMS 5.01 Multiple XSS (Cross-site Scripting) Security Vulnerabilities

Posted by Jing Wang on Mar 16

*724CMS 5.01 Multiple XSS (Cross-site Scripting) Security Vulnerabilities*

Exploit Title: 724CMS Multiple XSS (Cross-site Scripting) Security
Vulnerabilities
Vendor: 724CMS
Product: 724CMS
Vulnerable Versions: 3.01 4.01 4.59 5.01
Tested Version: 5.01
Advisory Publication: March 15, 2015
Latest Update: March 15, 2015
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: *
Impact CVSS Severity (version 2.0):
CVSS v2 Base Score:…

Full Disclosure

Multiple Buffer Overflows in .NetFramework v4.03 – Win 8.0 Pro – x64

Posted by Nick Prowse on Mar 16

Multiple Buffer Overflows in .NetFramework v4.03
Researcher: Nicholas Prowse
Filename: ngen.exe
MD5: ca72696a9861f14cf76f1637b8e6bc44File size: 139264 bytes
Operating System: Windows 8.0
OS Version: Pro
Architecture: x64
Description: MS Common Language Runtime Native Compiler
Image Path: C:Windows.Microsoft.NETFrameworkv4.0.30319ngen.exe
Operations (Registry Activity): RegQueryValue and RegEnumKey
Registry Keys referenced:
-…

Full Disclosure

Multiple Buffer Overflows in Diagnostic Troubleshooting Wizard – msdt.exe – Win 8.0 Pro – x64

Posted by Nick Prowse on Mar 16

Multiple Buffer Overflows in Diagnostic Troubleshooting Wizard
Researcher: Nicholas Prowse
Filename:     msdt.exe
MD5:   (coming soon)
File size:  1024000 bytes Operating System:     Windows 8.0
OS Version:     Pro
Architecture:     x64
Description field in Procmon: Buffer Overflow
Operations (FileSystem Activity):
– QuerySecurityFile
– QueryAllInformationFile
Paths:
– C:WindowsSystem32msdt.exe
-…

Microsft

3046310 – Improperly Issued Digital Certificates Could Allow Spoofing – Version: 1.0

Revision Note: V1.0 (March 16, 2015): Advisory published.
Summary: Microsoft is aware of an improperly issued SSL certificate for the domain “live.fi” that could be used in attempts to spoof content, perform phishing attacks, or perform man-in-the-middle attacks. This issue affects all supported releases of Microsoft Windows. Microsoft is not currently aware of attacks related to this issue.