multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2019-01-31 macOS < 10.14.3 / iOS < 12.1.3 XNU - 'vm_map_copy' Optimization which Requires Atomicity isn't Atomic
  • dos
    		•  Google Security Research
    2019-01-31 macOS < 10.14.3 / iOS < 12.1.3 - Sandbox Escapes due to Type Confusions and Memory Safety Issues in iohideventsystem
  • dos
    		•  Google Security Research
    2019-01-31 macOS < 10.14.3 / iOS < 12.1.3 - Arbitrary mach Port Name Deallocation in XPC Services due to Invalid mach Message Parsing in _xpc_serializer_unpack
  • dos
    		•  Google Security Research
    2019-01-30 iOS/macOS 10.13.6 – ‘if_ports_used_update_wakeuuid()’ 16-byte Uninitialized Kernel Stack Disclosure
  • dos
    		•  Google Security Research
    2019-01-28 LogonBox Limited / Hypersocket Nervepoint Access Manager – (Unauthenticated) Insecure Direct Object Reference
  • webapps
    		•  0v3rride
    2019-01-25 iOS/macOS – ‘task_swap_mach_voucher()’ Use-After-Free
  • dos
    		•  Google Security Research
    2019-01-25 Lua 5.3.5 – ‘debug.upvaluejoin’ Use After Free
  • dos
    		•  Fady Mohammed Osman
    2019-01-18 SCP Client – Multiple Vulnerabilities (SSHtranger Things)
  • remote
    		•  Mark E. Haase
    2019-01-17 Oracle Reports Developer Component 12.2.1.3 – Cross-site Scripting
  • webapps
    		•  Mohamed M.Fouad
    2019-01-16 WebKit JSC JIT – GetIndexedPropertyStorage Use-After-Free
  • dos
    		•  Google Security Research
    2019-01-16 Google Chrome V8 JavaScript Engine 71.0.3578.98 – Out-of-Memory in Invalid Array Length
  • dos
    		•  Bogdan Kurinnoy
    2019-01-13 Serv-U FTP Server < 15.1.7 - Local Privilege Escalation (2)
  • local
    		•  bcoles
    2019-01-13 S-nail < 14.8.16 - Local Privilege Escalation
  • local
    		•  bcoles
    2019-01-12 ASAN/SUID – Local Privilege Escalation
  • local
    		•  bcoles
    2019-01-11 OpenSSH SCP Client – Write Arbitrary Files
  • remote
    		•  Harry Sintonen
    2019-01-10 OpenSource ERP 6.3.1. – SQL Injection
  • webapps
    		•  Emre ÖVÜNÇ
    2019-01-09 Google Chrome V8 JavaScript Engine 71.0.3578.98 – Out-of-Memory. Denial of Service (PoC)
  • dos
    		•  Bogdan Kurinnoy
    2019-01-08 Wireshark – ‘get_t61_string’ Heap Out-of-Bounds Read
  • dos
    		•  Google Security Research
    2019-01-02 WebKit JSC – ‘JSArray::shiftCountWithArrayStorage’ Out-of-Bounds Read/Write
  • dos
    		•  Google Security Research
    2019-01-02 WebKit JSC – ‘AbstractValue::set’ Use-After-Free
  • dos
    		•  Google Security Research
    2018-12-30 Deepin Linux 15 – ‘lastore-daemon’ Local Privilege Escalation
  • local
    		•  bcoles
    2018-12-30 VMware Workstation/Player < 12.5.5 - Local Privilege Escalation
  • local
    		•  bcoles
    2018-12-21 Netatalk 3.1.12 – Authentication Bypass (PoC)
  • dos
    		•  Tenable NS
    2018-12-21 Netatalk 3.1.12 – Authentication Bypass
  • remote
    		•  Jacob Baines