SolarWinds Serv-u File Server Command Injection EIP-2020-0032The Serv-U File Server supports site specific commands which may not be universa... 2021-09-27 17:57:53 | 阅读: 38 | 收藏 | blog.exodusintel.com 0032 exodus servu exodusintel sponsorship

McAfee DLP Agent Stack Buffer Overflow RCE EIP-2015-0041The vulnerability affects both Data Loss Prevention (DLP) Endpoint for Windows a... 2021-09-18 02:00:56 | 阅读: 56 | 收藏 | blog.exodusintel.com 0041 dlp exodus mcafee readers

Adobe Acrobat Reader Base URI Unicode String Heap Buffer Overflow EXP-2021-0014A heap buffer overflow vulnerability exists in the IA32.api module of Adobe Acro... 2021-09-17 22:22:00 | 阅读: 36 | 收藏 | blog.exodusintel.com acrobat exodus 0014 overflow helpx

Foxit PhantomPDF ConvertToPDF Arbitrary File Write Remote Code Execution Vulnerability EIP-2019-0007The vulnerability exists within an RPC interface listening on TCP port 6000, exp... 2021-08-25 06:00:48 | 阅读: 57 | 收藏 | blog.exodusintel.com exodus phantompdf 0007 foxit

Foxit PhantomPDF CombineFiles Arbitrary File Write Remote Code Execution Vulnerability EIP-2019-0006The vulnerability exists within an RPC interface listening on TCP port 6000, exp... 2021-08-25 05:55:12 | 阅读: 49 | 收藏 | blog.exodusintel.com exodus phantompdf 0006 foxit security

Foxit PhantomPDF ConnectedPDF DocSearch_Locator_Table SQL Injection Remote Code Execution Vulnerability EIP-2018-0081The vulnerability exists within the ConnectedPDF service, implemented by the Fox... 2021-08-25 05:53:10 | 阅读: 45 | 收藏 | blog.exodusintel.com exodus 0081 sanitize identifiers resides

Foxit PhantomPDF ConnectedPDF ConnectedPDF_DRM_Table SQL Injection Remote Code Execution Vulnerability EIP-2018-0080The vulnerability exists within the ConnectedPDF service, implemented by the Fox... 2021-08-25 05:51:18 | 阅读: 41 | 收藏 | blog.exodusintel.com exodus 0080 foxit

Foxit PhantomPDF ConnectedPDF DocUpdate_Notify_Table SQL Injection Remote Code Execution Vulnerability EIP-2018-0057The vulnerability exists within the ConnectedPDF service, implemented by the Fox... 2021-08-25 05:50:01 | 阅读: 36 | 收藏 | blog.exodusintel.com 0057 exodus phantompdf 1007

Foxit PhantomPDF extractPages Arbitrary File Write Remote Code Execution Vulnerability EIP-2018-0046The vulnerability exists within the JavaScript PDF API exposed by Foxit PhantomP... 2021-08-25 05:47:28 | 阅读: 39 | 收藏 | blog.exodusintel.com 0046 phantompdf exodus foxit 27th

Foxit PhantomPDF loadHtmlView Context Level Bypass Vulnerability EIP-2018-0045The vulnerability exists within the JavaScript PDF API exposed by Foxit PhantomPD... 2021-08-24 06:03:21 | 阅读: 28 | 收藏 | blog.exodusintel.com foxit security attacker phantompdf

Vulnerability Development Courses for 2021 We are pleased to announce that the researchers of Exodus Intelligence will be providing public... 2021-08-17 09:54:23 | 阅读: 46 | 收藏 | blog.exodusintel.com attendees reverse python progressive

Analysis of a Heap Buffer-Overflow Vulnerability in Microsoft Windows Address Book By Eneko Cruz ElejaldeOverviewThis post analyzes a heap-buffer overflow in Microsoft Wi... 2021-08-05 21:26:46 | 阅读: 44 | 收藏 | blog.exodusintel.com wab windows security composite

Analysis of a Heap Buffer-Overflow Vulnerability in Adobe Acrobat Reader DC By Sergi MartinezThis post analyzes and exploits CVE-2021-21017, a heap buffer overflow repo... 2021-06-28 19:46:25 | 阅读: 267 | 收藏 | blog.exodusintel.com memory arraybuffer allocations dataview

Analysis of a use-after-free Vulnerability in Adobe Acrobat Reader DC By Sergi MartinezThis post analyses CVE-2020-9715, a use-after-free vulnerability affecting... 2021-04-21 02:11:55 | 阅读: 367 | 收藏 | blog.exodusintel.com esobject esstring arraybuffer dv memory

2021 Disclosure Policy March 17, 2021... 2021-03-18 01:16:48 | 阅读: 162 | 收藏 | blog.exodusintel.com informed whichever crowd exodusintel

Firefox Vulnerability Research Part 2 By Arthur Gerkis and David BarksdaleThis series of posts makes public some old Firefox rese... 2020-11-11 02:59:20 | 阅读: 151 | 收藏 | blog.exodusintel.com xul mozilla nsxpconnect privileged payload

Firefox Vulnerability Research By Arthur Gerkis and David BarksdaleThis series of posts makes public some old Firefox rese... 2020-10-21 01:54:01 | 阅读: 155 | 收藏 | blog.exodusintel.com cx mozilla 4d0f0000 funcindex

A EULOGY FOR PATCH-GAPPING CHROME Authors: István Kurucsai and Vignesh S RaoIn 2019 we looked at patch gapping Chrome on two... 2020-02-24 23:01:33 | 阅读: 113 | 收藏 | blog.exodusintel.com receiver jscreate proxy inferred

Patch-gapping Google Chrome Patch-gapping is the practice of exploiting vulnerabilities in open-source software that are al... 2019-09-09 17:57:00 | 阅读: 98 | 收藏 | blog.exodusintel.com fixedarray confusion transitions

Pwn2Own 2019: Microsoft Edge Sandbox Escape (CVE-2019-0938). Part 2 This is the second part of the blog post on the Microsoft Edge full-chain exploit. It provides... 2019-05-27 18:31:32 | 阅读: 119 | 收藏 | blog.exodusintel.com download 0000005d edgeiso 00007ffe emodel