I’ve published another security advisory about a remote code execution vulnerability with a CVSS score of 10,0 today. Affected are all available versions of the GetGo Download Manager, so if […]
VideoCharge Studio v2.12.3.685 GetHttpResponse() Remote Code Execution
I’m focusing on exploit development at the moment and it’s time to raise the level to my personal next challenge: I’ve rm -rf’ed my Windows XP virtual machine! Now I’m happy […]
Mandriva, Netcup, Teamdrive and Wallstreet-Online Fix XSS Vulnerabilities
It’s 2014 and I have to tidy up my discovery archive a bit . Before joining the Internetwache.org project I have coordinated all found vulnerabilities by myself and these are […]
All About Surveillance: My Impressions of the #30C3
Hello Readers, The rocket landed in Hamburg again ! I’ve attended the last Chaos Communication Congress in December and need to say thank you to the organizers of the congress […]
CVE-2013-3934: Kingsoft Office Writer v2012 8.1.0.3385 Buffer Overflow SafeSEH Bypass Exploit
Hello readers, Pop a calculator here, pop one there! I’m focusing on exploit development at the moment, because I love calculators ;-). My exploit targets the vulnerability described in CVE-2013-3934: […]
CVE-2013-6356: Avira Secure Backup v1.0.0.1 Buffer Overflow – Anatomy of a Vulnerability
Hello Followers, Avira is one of the leading Anti-Virus vendors and also the biggest one in Germany. Security is their daily business and they’ve done a quite nice job in […]
CVE-2013-5702: Watchguard Server Center v11.7.4 Multiple XSS Vulnerabilities
Great news from the vulnerability front! I’m happy to see that the quality of vulnerability coordination with Watchguard evolved to my satisfaction during the past few months and the following new […]
PayPal Bug Bounty: PayPaltech.com E-Mail Injection
Bag the bug! I’ve reported another interesting vulnerability to the PayPal site security team in May 2013 affecting their domain www.paypaltech.com, which is in scope of the official Bug Bounty […]
CVE-2013-5701: Watchguard Server Center v11.7.4 wgpr.dll Local Privileges Escalation Vulnerability
Hello readers, this is my first article in a series about vulnerabilities in Watchguard products. Watchguard is a self-proclaimed NextGen Security vendor building security appliances for complete network protection. As […]
Inshell Goes RCE – Upgraded and Rebooted
I am happy to announce some really awesome changes! Do you quit while you’re ahead? I’ve been blogging on Inshell.net for about 1,5 years now, and during this time I […]
