smbgrind.exe suffers from a buffer overflow vulnerability.
Monthly Archives: February 2016
Microsoft AFD.SYS Dangling Pointer Privilege Escalation
Microsoft afd.sys version 6.1.7600.16385 suffers from a dangling pointer privilege escalation vulnerability. This exploit demonstrates the vulnerability discussed in MS14-040.
Critical glibc Vulnerability Puts All Linux Machines at Risk
A critical vulnerability in glibc, the GNU C library, affects all Linux machines and many web frameworks, opening the door to remote code execution.
Manage Engine OPutils 8.0 Authorization Bypass
Manage Engine OPutils version 8.0 suffers from an authorization bypass vulnerability due to a missing function level access control.
Manage Engine OPutils 8.0 Privilege Escalation
Manage Engine OPutils version 8.0 suffers from a privilege escalation vulnerability.
Ntpd ntp-4.2.6p5 ctl_putdata() Buffer Overflow
Ntpd versions ntp-4.2.6p5 and below ctl_putdata() buffer overflow exploit.
Manage Engine OPutils 8.0 Cross Site Request Forgery / Cross Site Scripting
Manage Engine OPutils version 8.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
How to bypass this LG smartphone’s fingerprint security in just 30 seconds
A troubling vulnerability has been uncovered that may make you think twice about ever even temporarily allowing a friend, partner or acquaintance to use your new LG V10 Android smartphone.
The post How to bypass this LG smartphone’s fingerprint security in just 30 seconds appeared first on We Live Security.
CVE-2016-2386
SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Security Note 2101079.
CVE-2016-2387
Cross-site scripting (XSS) vulnerability in the Java Proxy Runtime ProxyServer servlet in SAP NetWeaver 7.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SAP Security Note 2220571.