Aggregator
TA505 exploits SolarWinds Serv-U vulnerability (CVE-2021-35211) for initial access
1 year 9 months ago
TA505: A Brief History Of Their Time
1 year 9 months ago
Sysinternals SDelete: When Secure Delete Fails
1 year 9 months ago
SysPWN – VR for Pwn2Own
1 year 9 months ago
SysAid Helpdesk blind SQL injection
1 year 9 months ago
SysAid Helpdesk Pro – Blind SQL Injection
1 year 9 months ago
SysAid Helpdesk stored XSS
1 year 9 months ago
Symantec Messaging Gateway SSH with backdoor user account + privilege escalation to root due to very old Kernel
1 year 9 months ago
Symantec PC Anywhere Remote Code Extecution
1 year 9 months ago
Symantec Messaging Gateway Easy CSRF to add a backdoor-administrator (for example)
1 year 9 months ago
Symantec Messaging Gateway Out of band stored XSS delivered by email
1 year 9 months ago
Symantec Messaging Gateway – Unauthorised SSH access
1 year 9 months ago
Symantec Messaging Gateway Arbitrary file download is possible with a crafted URL (authenticated)
1 year 9 months ago
Symantec Messaging Gateway – Out of band stored XSS via email
1 year 9 months ago
Symantec Messaging Gateway – Unauthenticated detailed version disclosure
1 year 9 months ago
Symantec Messaging Gateway – Addition of a backdoor adminstrator via CSRF
1 year 9 months ago
Symantec Messaging Gateway – Authenticated arbritary file download
1 year 9 months ago
Symantec Message Filter Session Hijacking via session
1 year 9 months ago
Symantec Message Filter Unauthenticated verbose software version information disclosure
1 year 9 months ago