[FD] Defense in depth -- the Microsoft way (part 62): Windows shipped with end-of-life components

Hi @ll, since Microsoft Server 2003 R2, Microsoft dares to ship and install the abomination known as .NET Framework with every new version of Windows. Among other components current versions of Windows and .NET Framework include C# compiler

[FD] LPE and RCE in OpenSMTPD's default install (CVE-2020-8794)

Qualys Security Advisory LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) == Contents == Summary Analysis ... Acknowledgments

[FD] [TZO-19-2020] - AVIRA Generic AV Bypass (ISO Container) - CVE-2020-9320

From the low-hanging-fruit-department AVIRA Generic Malformed Container bypass (ISO Container) Release mode: Coordinated

[FD] Comtrend VR-3033 Multiple Command Injection vulnerability

##Timeline : *Bug sent to vendor : 17-02-2020 *No Response after 10 days * Public disclosure: 27-02-020 The Comtrend VR-3033 is prone to Multiple Authenticated Command Injection vulnerability via ping and traceroute diagnostic page. Remote attackers are able to get full control and compromise the

[FD] [TZO-23-2020] - AVAST Generic Archive Bypass (ZIP)

From the low-hanging-fruit-department Avast Generic Malformed Archive Bypass (ZIP GFlag) Release mode: Coordinated

[FD] [TZO-16-2020] - F-SECURE Generic Malformed Container bypass (GZIP)

From the low-hanging-fruit-department F-SECURE Generic Malformed Container bypass (GZIP) Ref : [TZO-16-2020] -