Full Disclosure
Posted by endeavor on Apr 22
I’m releasing a few vulnerabilities for the WNR2000v4 Netgear router.
Netgear is currently working these issues.
Quick Fix
———
If you own a WNR2000v4, set a strong password and set security questions
to jibberish.
Timeline
——–
FEB2015 – “MW” Volunteers to be victim to router pwning games.
06MAR2015 – WNR2000v4 Arrives
12MAR2015 – Exploit complete
13MAR2015 – Exploit demoed
~01APR2015 – MW switches to DD-WRT…
Posted by Hector Marco-Gisbert on Apr 21
A security issue in Linux ASLR implementation which affects some AMD processors
has been found. The issue affects to all Linux process even if they are not
using shared libraries (statically compiled).
The problem appears because some mmapped objects (VDSO, libraries, etc.) are
poorly randomized in an attempt to avoid cache aliasing penalties for AMD
Bulldozer (Family 15h) processors.
Affected systems have reduced the mmapped files entropy…
Posted by Hector Marco-Gisbert on Apr 21
A bug in Linux ASLR implementation has been found. The issue is that the mmap
base address for processes is not properly randomized on some architectures due
to an improper bit-mask manipulation. Affected systems have reduced the mmap
area entropy of the processes by half.
The number of possible locations are reduced by 50%, which for example will
reduce the cost of brute force attacks.
PowerPC, Sparc64 and ARM have 18 bits of entropy….
Posted by Vulnerability Lab on Apr 21
Document Title:
===============
SevenIT SevDesk 3.10 – Multiple Web Vulnerabilities
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1314
Release Date:
=============
2015-03-23
Vulnerability Laboratory ID (VL-ID):
====================================
1314
Common Vulnerability Scoring System:
====================================
5.9
Product & Service Introduction:…
Posted by Vulnerability Lab on Apr 21
Document Title:
===============
PayPal Inc Bug Bounty #113 – Client Side Cross Site Scripting Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1453
Video: http://www.vulnerability-lab.com/get_content.php?id=1454
View: https://www.youtube.com/watch?v=v5egy9V_Bs0
Release Date:
=============
2015-04-18
Vulnerability Laboratory ID (VL-ID):
====================================
1453…
Posted by Vulnerability Lab on Apr 21
Document Title:
===============
Ebay Inc Xcom #7 – (Policy) Persistent Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1228
Release Date:
=============
2015-03-25
Vulnerability Laboratory ID (VL-ID):
====================================
1228
Common Vulnerability Scoring System:
====================================
4
Product & Service Introduction:
===============================…
Posted by Vulnerability Lab on Apr 21
Document Title:
===============
Ebay Inc Xcom #6 – Persistent POST Inject Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1227
Release Date:
=============
2015-03-24
Vulnerability Laboratory ID (VL-ID):
====================================
1227
Common Vulnerability Scoring System:
====================================
3.9
Product & Service Introduction:…
Posted by Vulnerability Lab on Apr 21
Document Title:
===============
Ebay Inc Xcom #4 – (Item Preview) Persistent Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1215
Release Date:
=============
2015-03-23
Vulnerability Laboratory ID (VL-ID):
====================================
1215
Common Vulnerability Scoring System:
====================================
4.1
Product & Service Introduction:…
Posted by Vulnerability Lab on Apr 21
Document Title:
===============
Wifi Drive Pro v1.2 iOS – File Include Web Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1447
Release Date:
=============
2015-03-13
Vulnerability Laboratory ID (VL-ID):
====================================
1447
Common Vulnerability Scoring System:
====================================
6.3
Product & Service Introduction:…
Posted by Vulnerability Lab on Apr 21
Document Title:
===============
Photo Manager Pro v4.4.0 iOS – File Include Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1445
Release Date:
=============
2015-03-12
Vulnerability Laboratory ID (VL-ID):
====================================
1445
Common Vulnerability Scoring System:
====================================
6.9
Product & Service Introduction:…