RCE Security

RCE Security

Reverse Engineering sometimes results in Remote Code Execution

Menu

  • Vulnerabilities
  • References
  • Disclosure Policy
  • About:Me
  • Imprint/Data Protection Policy

Month: April 2012

SUSE fixes XSS flaw

SUSE fixes XSS flaw

Some days ago…I have found a Cross-Site Scripting Vulnerability on www.suse.com – the home of the famous Linux distribution. Using this bug, an attacker could temporarily inject arbitrary code with required user interaction into the context of the website and

MrTuxracer April 30, 2012September 1, 2012 Vulnerabilities No Comments Read more

Webmasters moving security reports to /dev/null ?

Webmasters moving security reports to /dev/null ?

Hello readers, There are good and there are bad “webmasters”. I suppose that everyone who has ever reported (or better: tried to report) a security issue on a website to the responsible webmaster, faces at least one time in his

MrTuxracer April 29, 2012May 4, 2013 Playground 1 Comment Read more

Free WMA MP3 Converter v1.6 still vulnerable

Free WMA MP3 Converter v1.6 still vulnerable

Just a short notice as an addendum to IA2: A new version (1.6) of the “Free WMA MP3 Converter” by eusing.com has been released which is still vulnerable to the same issue like all versions before. The interesting part here

MrTuxracer April 21, 2012September 26, 2014 Vulnerabilities No Comments Read more

sachsen-anhalt.de – Cross-Site Scripting Vulnerability

sachsen-anhalt.de – Cross-Site Scripting Vulnerability

This time I have found a non-persistent xss vulnerability on one of Germany’s country-government websites. Immediatley after the finding (on 2012-03-11), I have noticed the webmaster about the vulnerability, but….no reaction. I noticed them 2 further times each time by

MrTuxracer April 11, 2012September 1, 2012 Vulnerabilities No Comments Read more

Categories

  • Bug Bounties
  • Certifications
  • Conferences
  • CTFs
  • Exploits
  • Papers
  • Playground
  • RCE
  • Reversing
  • Security News
  • Site News
  • SLAE
  • Tutorials
  • Vulnerabilities

Tags

0-day 0day advisory assembly BSidesHH buffer overflow bug bounty bypass csrf CVE-2014-2206 eip esp exam exploit hacking hackme IDA ignorance inshell LFI linux local Metasploit nmap Off-Topic PoC privileges escalation python RCE remote reporting ret ROP SafeSEH shellcode SLAE SQLi sqlmap SSRF stack surveillance trunk vlan WinALL XSS

Archives

  • June 2018
  • May 2018
  • November 2017
  • October 2017
  • August 2017
  • March 2017
  • January 2017
  • December 2016
  • September 2016
  • June 2016
  • April 2016
  • February 2016
  • December 2015
  • September 2015
  • August 2015
  • July 2015
  • January 2015
  • December 2014
  • November 2014
  • August 2014
  • July 2014
  • May 2014
  • April 2014
  • March 2014
  • February 2014
  • January 2014
  • November 2013
  • October 2013
  • September 2013
  • August 2013
  • July 2013
  • June 2013
  • May 2013
  • April 2013
  • March 2013
  • February 2013
  • January 2013
  • December 2012
  • November 2012
  • October 2012
  • September 2012
  • August 2012
  • July 2012
  • June 2012
  • May 2012
  • April 2012
  • March 2012
  • February 2012
  • January 2012
  • December 2011
  • November 2011

Follow Me

Copyright © 2019 RCE Security. Powered by WordPress. Theme: Spacious by ThemeGrill.