AIEngine is a packet inspection engine with capabilities of learning without any human intervention. It helps network/security professionals to identify traffic and develop signatures for use them on NIDS, Firewalls, Traffic classifiers and so on.
ea9ff3fb24e8583466771348051186ca6b2ef4082149fe5e8d15e38b320506e5
The Microsoft MsMpEng mpengine x86 emulator suffers from a heap corruption vulnerability in VFS API.
46362a2418387131b284b6f99ffbd92b63a52b28cf6850b31bc0119ebc171b9f
Microsoft Edge suffers from a type confusion vulnerability in CssParser::RecordProperty.
1aa785f1fd6f0eb74b2354c469073d303a744ebbead37d6b9b3783902311bdfb
Adobe Flash suffers from a heap corruption vulnerability in the ATF parser.
aa2b6fd4f44a098e6ecba7504988e0d89a5e75e3bc29a11c164bf7ac741679b8
Adobe Flash suffers from an image decoding out-of-bounds read vulnerability.
ed9044e4b79f06703ef40af5da53a9e9a388c8c9448c95d856dc28954cdd4c1a
Adobe Flash suffers from an avc edge processing out-of-bounds read vulnerability.
d111143f959eac16a5ac31bce6622f40e6dd0f4a712d9c78aedc9111f504fb20
This Metasploit module exploits a POST buffer overflow in the Easy File Sharing FTP Server 7.2 software.
4a93277c80577e51f05d3a867109d74d266c265a7afc0d44a519a77e90b3dcd1
This Metasploit module exploits the command injection vulnerability of Symantec Messaging Gateway product. An authenticated user can execute a terminal command under the context of the web server user which is root. backupNow.do endpoint takes several user inputs and then pass them to the internal service which is responsible for executing operating system command. One of the user input is being passed to the service without proper validation. That cause an command injection vulnerability. But given parameters, such a SSH ip address, port and credentials are validated before executing terminal command. Thus, you need to configure your own SSH service and set the required parameter during module usage. This Metasploit module was tested against Symantec Messaging Gateway 10.6.2-7.
65388a1ffa6f7c2c3a870b20d908b020bed384530b6eb97b4dccaaf421a58506
This Metasploit module exploits a command injection vulnerability in NETGEAR DGN2200v1/v2/v3/v4 routers by sending a specially crafted post request with valid login details.
1fec4e5211012852df5a0c5522fb686d79ac9dee14476e919180c9eb884159d8
Eltek SmartPack has backdoor accounts that are disclosed via some json files.
35314e73b316d0100a38a94bd56fbfe77f2b0f17b9eae437dbc56ea636f9b4ef
This whitepaper gives an introduction to honeypots. Written in Arabic.
358326e486f7f83b93ee8d5c46ee9b94fcfa15682c2ad182d0a826b620d3b182