Posted by Rio Sherri on Dec 09
# Date : 07/12/2016
# Author : R-73eN
# Tested on: Dual DHCP DNS Server 7.29 on Windows 7 SP1 (32bit)
# Vendor : http://dhcp-dns-server.sourceforge.net/
# Software :
https://sourceforge.net/projects/dhcp-dns-server/files/Dual%20DHCP%20DNS%20Server/DualServerInstallerV7.29.exe/download
# Vulnerability Description:
# The software crashes when it tries to write to an invalid address.
#
# MOV EBX,DWORD PTR SS:[EBP+8] -> EBP+8 is part of our…
Posted by Joshua on Dec 09
Gstreamer ID3v2 v1.0 – Out of Bounds Read
A maliciously crafted ID3v2-tagged file enables an out-of-bounds memory read against Gstreamer 1.0.
The Gstreamer ID3v2 implementation uses arbitrarily supplied data to generate buffers for the ID3v2 object and frames.
By providing a maliciously crafted file with a null length in the ID3v2 header and an arbitrarily set length in the
succeeding frame it is possible to generate an out of bounds read. An…
Posted by Berend-Jan Wever on Dec 09
Since November I have been releasing details on all vulnerabilities I
found in web-browsers that I had not released before. I will try to
continue to publish all my old vulnerabilities, including those not in
web-browser, as long as I can find some time to do so. If you find this
information useful, you can help me make more time available by donating
bitcoin to 183yyxa9s1s1f7JBpPHPmzQ346y91Rx5DX.
This is the twenty-sixth entry in the…
Posted by Berend-Jan Wever on Dec 09
Since November I have been releasing details on all vulnerabilities I
found that I have not released before. This is the twenty-seventh entry
in the series. This information is available in more detail on my blog
at http://blog.skylined.nl/20161207001.html. There you can find a repro
that triggered this issue in addition to the information below.
Today’s release is not very interesting, because it was one of the first
bugs I found and…
Posted by Berend-Jan Wever on Dec 09
Since November I have been releasing details on all vulnerabilities I
found that I have not released before. This is the twenty-eighth entry
in the series. This information is available in more detail on my blog
at http://blog.skylined.nl/20161208001.html. There you can find a repro
that triggered this issue in addition to the information below.
Today’s release is again not very interesting, because it also was one
of the first bugs I found…
Posted by Francesco Oddo on Dec 09
( , ) (,
. ‘.’ ) (‘. ‘,
). , (‘. ( ) (
(_,) .’), ) _ _,
/ _____/ / _ ____ ____ _____
____ ==/ /_ _/ ___/ _ /
/ / | \ __( <_> ) Y Y
/______ /___|__ / ___ >____/|__|_| /
/ /.-. / /:wq
(x.0)
‘=.|w|.=’
_=”””=….
Alonzo Knowles was sentenced to five years in prison after being found guilty in a separate case involving the hacking of female celebrities’ online accounts
The post Hacker who stole celebrity emails, sex videos, movie scripts gets five years in prison appeared first on WeLiveSecurity
Django 1.8.x before 1.8.16, 1.9.x before 1.9.11, and 1.10.x before 1.10.3 use a hardcoded password for a temporary database user created when running tests with an Oracle database, which makes it easier for remote attackers to obtain access to the database server by leveraging failure to manually specify a password in the database settings TEST dictionary. (CVSS:7.5) (Last Update:2016-12-14)
Django before 1.8.x before 1.8.16, 1.9.x before 1.9.11, and 1.10.x before 1.10.3, when settings.DEBUG is True, allow remote attackers to conduct DNS rebinding attacks by leveraging failure to validate the HTTP Host header against settings.ALLOWED_HOSTS. (CVSS:6.8) (Last Update:2016-12-14)
PHP FormMail Generator VU#494015 Multiple Security Vulnerabilities