Category Archives: Full Disclosure

Full Disclosure

Apple iOS v10.1 & 10.1.1 – iCloud & Device Lock Bypass on Activate via local Buffer Overflow Vulnerability (Wifi Network)

December 1, 2016 007admin

Posted by Vulnerability Lab on Dec 01

Title: Apple iOS v10.1 & 10.1.1 – iCloud & Device Lock Bypass on
Activate via local Buffer Overflow Vulnerability (Wifi Network)

URL: https://www.youtube.com/watch?v=yygvBJBFy4s

Ref: https://www.vulnerability-lab.com/get_content.php?id=2018

Note: Using the rotate function and night shift to merge the mask,
allows as well to bypass the protection for iOS v10.1.1 like in the
video demonstrated.

Full Disclosure

Cross-Site Request Forgery in Insert Html Snippet WordPress Plugin

November 29, 2016 007admin

Posted by Summer of Pwnage on Nov 29

————————————————————————
Cross-Site Request Forgery in Insert Html Snippet WordPress Plugin
————————————————————————
Yorick Koster, July 2016

————————————————————————
OVE ID
————————————————————————
OVE-20160724-0027…

Full Disclosure

Re: Tenda, Dlink & Tplink TD-W8961ND – DHCP XSS Vulnerability

November 28, 2016 007admin

Posted by Simon Waters (Surevine) on Nov 28

XSS in DHCP name has been reported on the Full Disclosure mailing list for other models of TP-Link Router before.

Seems to be generic to many TP-Link models.

My model has a regular line wrap to the DHCP hostname field, so you need to insert a comment into HTML or JS every N
characters into any exploit code, but it is fully exploitable, and you can write arbitrary JS in that space with a
little effort.

The attacker would have to inject…

Full Disclosure

CFP – BloomCON 0x02 – March 24-25, 2017 Bloomsburg, PA

November 28, 2016 007admin

Posted by Philip Polstra on Nov 28

The second BloomCON Forensics and Security conference will be held March
24-25, 2017 in Bloomsburg, PA (USA).

We are now officially accepting presentation and workshop submissions. We
will hosting multiple speaking and workshop tracks.

We are looking for talks of 25 or 50 minutes in length and 2-hr or 4-hr
workshops.

If you have something you would like to share please send the following to:
drphil () bloomcon com

* your name or…

Full Disclosure

[ndhXV] Call For Paper – 15th anniversary – 24-25 June 2017

November 28, 2016 007admin

Posted by Freeman on Nov 28

If you have some l33t skillz, just follow the link :
https://submit.hackerzvoice.net

For the lazy ones, just keep scrolling

CALL FOR PAPERS – #ndhXV – 15th anniversary – 24-25 June 2017

IN A NUTSHELL

Conference format : 45min, including 5 to 10min of Q&A
Submission : https://submit.hackerzvoice.net
Deadline : April 5th, 2017
Announcement : April 20th, 2017
Beer,…

Full Disclosure

CVE-2016-0063: MSIE 8-11 MSHTML DOMImplementation type confusion details

November 28, 2016 007admin

Posted by Berend-Jan Wever on Nov 28

Throughout November, I plan to release details on vulnerabilities I
found in web-browsers which I’ve not released before. This is the
twentieth entry in that series. Unfortunately I won’t be able to
publish everything within one month at the current rate, so I may
continue to publish these through December and January.

The below information is available in more detail on my blog at
http://blog.skylined.nl/20161128001.html. There you…

Full Disclosure

SEC Consult SA-20161128-0 :: DoS & heap-based buffer overflow in Guidance Software EnCase Forensic

November 28, 2016 007admin

Posted by SEC Consult Vulnerability Lab on Nov 28

SEC Consult Vulnerability Lab Security Advisory < 20161128-0 >
=======================================================================
title: Denial of service & heap-based buffer overflow
product: Guidance Software EnCase Forensic Imager & EnCase Forensic
vulnerable version: EnCase Forensic Imager<= 7.10
EnCase Forensic (tested with version 7.08.00.137)
fixed version: -…

Full Disclosure