Posted by Mark Koek on Sep 15
Well, ‘remote root’… The PoC asks for a working MySQL user name and
password.
And I don’t really get how that account can re-set the logfile location
without SUPER privileges?
Am I wrong in thinking that this is really “just” a MySQL admin -> root
privilege escalation? Don’t get me wrong, still a very nice exploit, but…
Mark
Posted by Nguyen Anh Quynh on Sep 15
Greetings,
(cc: Thanh Nguyen, VNSecurity)
We are excited to release Keypatch 2.0, a better assembler for IDA Pro!
This new version of Keypatch brings some important features, as follows.
– Fix some issues with ARM architecture (including Thumb mode)
– Better support for Python 2.6 & older IDA versions (confirmed to work on
IDA 6.4)
– Save original instructions (before patching) in IDA comments.
– NOP padding also works when new instruction…
Posted by MustLive on Sep 15
Hello list!
There are multiple vulnerabilities in ASUS Wireless Router RT-N10. There are
Code Execution, Cross-Site Scripting and URL Redirector Abuse
vulnerabilities.
————————-
Affected products:
————————-
Vulnerable are the next models: ASUS RT-N10, RT-N10E, RT-N10LX and RT-N10U
with different versions of firmware. I checked in RT-N10 with firmware
version 1.9.2.7.
Asus ignored vulnerabilities in RT-G32,…
Posted by Nightwatch Cybersecurity on Sep 15
Summary
Android applications developed with Adobe AIR send data back to Adobe
servers without HTTPS while running. This can allow an attacker to
compromise the privacy of the applications’ users. This has been fixed
in Adobe AIR SDK release v23.0.0.257.
Details
Adobe AIR is a…
Posted by Curesec Research Team (CRT) on Sep 15
Security Advisory – Curesec Research Team
1. Introduction
Affected Product: Peel Shopping 8.0.2
Fixed in: 8.0.3
Fixed Version Link: www.peel-shopping.com
Vendor Website: www.peel-shopping.com
Vulnerability Type: Object Injection
Remote Exploitable: Yes
Reported to vendor: 04/11/2016
Disclosed to public: 09/15/2016
Release mode: Coordinated Release
CVE: n/a
Credits Tim Coen of Curesec…
Posted by Curesec Research Team (CRT) on Sep 15
Security Advisory – Curesec Research Team
1. Introduction
Affected Product: Kajona 4.7
Fixed in: 5.0
Fixed Version Link: https://www.kajona.de/en/Downloads/
downloads.get_kajona.html
Vendor Website: https://www.kajona.de/
Vulnerability Type: XSS & Directory Traversal
Remote Exploitable: Yes
Reported to vendor: 04/11/2016
Disclosed to public: 09/15/2016
Release mode: Coordinated Release
CVE:…
Posted by Curesec Research Team (CRT) on Sep 15
Security Advisory – Curesec Research Team
1. Introduction
Affected Product: MyBB 1.8.6
Fixed in: not fixed
Fixed Version Link: n/a
Vendor Website: http://www.mybb.com/
Vulnerability Type: CSRF, Weak Hashing, Plaintext Passwords
Remote Exploitable: Yes
Reported to vendor: 01/29/2016
Disclosed to public: 09/15/2016
Release mode: Full Disclosure / Informational
CVE: n/a
Credits Tim Coen of…
Posted by Curesec Research Team (CRT) on Sep 15
Security Advisory – Curesec Research Team
1. Introduction
Affected Product: MyBB 1.8.6
Fixed in: 1.8.7
Fixed Version Link: http://resources.mybb.com/downloads/mybb_1807.zip
Vendor Website: http://www.mybb.com/
Vulnerability Type: SQL Injection
Remote Exploitable: Yes
Reported to vendor: 01/29/2016
Disclosed to public: 09/15/2016
Release mode: Coordinated Release
CVE: n/a
Credits Tim…
Posted by Curesec Research Team (CRT) on Sep 15
Security Advisory – Curesec Research Team
1. Introduction
Affected Product: MyBB 1.8.6
Fixed in: 1.8.7
Fixed Version Link: http://resources.mybb.com/downloads/mybb_1807.zip
Vendor Website: http://www.mybb.com/
Vulnerability Type: Improper validation of data passed to eval
Remote Exploitable: Yes
Reported to vendor: 01/29/2016
Disclosed to public: 09/15/2016
Release mode: Coordinated Release
CVE: n/a…
Researchers say a proof-of-concept attack using Windows Safe Mode can lead to credential theft and allow hackers to move laterally within a corporate network.