[Full-disclosure] [CVE-2013-5701] Watchguard Server Center v11.7.4 wgpr.dll Insecure Library Loading Local Privilege Escalation Vulnerability

: Uncontrolled Search Path Element [CWE-427] Date found: 2013-07-29 Date published: 2013-08-09 CVSSv2 Score: 6,6 (AV:L/AC:M/Au:S/C:C/I:C/A:C) CVE:CVE-2013-5701 2. CREDITS -- This vulnerability was discovered and researched by Julien Ahrens from RCE Security. 3. VERSIONS

[Full-disclosure] [CVE-2013-6356] Avira Secure Backup v1.0.0.1 Multiple Registry Key Value Parsing Local Buffer Overflow Vulnerability

published: 2013-11-16 CVSSv2 Score: 4,4 (AV:L/AC:M/Au:N/C:P/I:P/A:P) CVE:CVE-2013-6356 2. CREDITS -- This vulnerability was discovered and researched by Julien Ahrens from RCE Security. 3. VERSIONS AFFECTED Avira Secure Backup v1.0.0.1 Build 3616

Re: [Full-disclosure] [CVE-2013-6356] Avira Secure Backup v1.0.0.1 Multiple Registry Key Value Parsing Local Buffer Overflow Vulnerability

, Nov 16, 2013 at 03:23:07PM +0100, Julien Ahrens wrote: A buffer overflow vulnerability has been identified in Avira Secure Backup v1.0.0.1 Build 3616. An attacker needs to force the victim to import an arbitrary .reg file in order to exploit the vulnerability. Could you please elaborate on why

[Full-disclosure] VideoCharge Studio v2.12.3.685 cc.dll CHTTPResponse::GetHttpResponse() Buffer Overflow Remote Code Execution

: 7,6 (AV:N/AC:H/Au:N/C:C/I:C/A:C) CVE:- 2. CREDITS -- This vulnerability was discovered and researched by Julien Ahrens from RCE Security. 3. VERSIONS AFFECTED VideoCharge Studio v2.12.3.685 (latest) and other older versions may be affected too. 4

[Full-disclosure] [CVE-2014-2206] GetGo Download Manager HTTP Response Header Buffer Overflow Remote Code Execution

: 10,0 (AV:N/AC:L/Au:N/C:C/I:C/A:C) CVE:CVE-2014-2206 2. CREDITS -- This vulnerability was discovered and researched by Julien Ahrens from RCE Security. 3. VERSIONS AFFECTED GetGo Download Manager v4.9.0.1982 (latest) GetGo Download Manager v4.8.2.1346