[FD] Executable installers are vulnerable^WEVIL (case 53): escalation of privilege with QNAP's installers for Windows

Hi @ll, the executable installer QNAPQsyncClientWindows-4.2.1.0602.exe, available from , has (like almost all executable installers) multiple vulnerabilities: #1: arbitrary (remote) code execution WITH escalation of privilege

[FD] CVE-2017-6327: Symantec Messaging Gateway <= 10.6.3-2 unauthenticated root RCE

Hello, This is an advisory for CVE-2017-6327 which is an unauthenticated remote code execution flaw in the web interface of Symantec Messaging Gateway prior to and including version 10.6.3-2, which can be used to execute commands as root. Symantec Messaging Gateway, formerly known as Brightmail,

[FD] NoviFlow NoviWare <= NW400.2.6 multiple vulnerabilities

NoviFlow NoviWare <= NW400.2.6 multiple vulnerabilities Introduction == NoviWare is a high-performance OpenFlow 1.3, 1.4 and 1.5 compliant switch software developed by NoviFlow and available for license to network equipment manufacturers. Multiple vulnerabilities were identified in the

[FD] NetRipper - Smart Traffic Sniffing - Support for x64

NetRipper is a post exploitation tool targeting Windows systems which uses API hooking in order to intercept network traffic and encryption related functions from a low privileged user, being able to capture both plain-text traffic and encrypted traffic before encryption/after decryption.