Claymore Dual Gpu Miner <= 10.5 Format Strings Vulnerability
===
product: Claymore's Dual Miner
vulnerable version: <= 10.5
fixed version: 10.6
CVE number: - CVE-2018–6317
impact:
- RECON MONTREAL 2018 -
0xE - CFP - Training Registration - Conference - Submit! - PGP key
║││■■││║
╠┐└■└┐│■│■┤──╚╝──╔╗┌┬──┐ ■│├┤│╔╗│├┤│■ ┌──┬┐╔╗──╚╝──├■│■│┌┘■┘┌╣
╠■─╔═╗┘││■┤──■ ┌─╚╝├┘▄─┘┌──┤├┤├╣╠┤├┤├──┐└─▄└┤╚╝─┐
# Exploit Title: IPSwitch MoveIt Stored Cross Site Scripting (XSS)
# Date: 1-31-2017
# Software Link: https://www.ipswitch.com/moveit
# Affected Version: 8.1-9.4 (only confirmed on 8.1 but other versions
prior to 9.5 may also be vulnerable)
# Exploit Author: 1N3@CrowdShield -
Hi,
Since Windows 10 Fall Creators Update, Microsoft added protection for
Ransomware in their product ‘Windows Defender’
By default, Office executables are included in the whitelist so these
programs could make changes in protected folders without restrictions.
This access level is granted even
# Call for Papers: EuroSec 2018
11th European Workshop on Systems Security
Porto, Portugal - April 23, 2018
- Web: http://www.sharcs-project.eu/eurosec-2018/
- Twitter: @EuroSecWorkshop
- Hashtag: #eurosec2018
## Important Dates
- Extended paper submission deadline: *February 9, 2018
Hello list!
There are Cross-Site Request Forgery and URL Redirector Abuse
vulnerabilities in D-Link DIR-100. This is my second advisory for DIR-100.
-
Affected products:
-
Vulnerable is the next model: D-Link DIR-100, Firmware v1.01. All other
There's some detail in the Vulnerability magazine link, reproducing here so
there's a record
We discovered an anomaly in the hologram section of the new printed 20€ &
50€ banknotes. The security sign on the banknotes are produced with a
transparent film. In the middle of the new hologram of the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
ESA-2018-015: EMC RecoverPoint Command Injection Vulnerabilities
EMC Identifier: ESA-2018-015
CVE Identifier: CVE-2018-1184, CVE-2018-1185
Severity Rating: See below for individual scores
Affected products:
* EMC RecoverPoint for Virtual
[STX]
Subject: Geovision Inc. IP Camera/Video/Access Control Multiple Remote Command
Execution - Multiple Stack Overflow - Double free - Unauthorized Access
Attack vector: Remote
Authentication: Anonymous (no credentials needed)
Researcher: bashis (November 2017)
PoC:
Hi List,
Description:
A buffer overflow vulnerability in "Add command" functionality exists in
Flexense’s SyncBreeze Enterprise <= 10.3.14. The vulnerability can be triggered
by an authenticated attacker who submits more than 5000 characters as the
command name. It will cause termination of
10 matches
Mail list logo