Posts by: Maurizio Agazzini (aka inode)
CVE-2016-8919 – IBM WebSphere deserialization of untrusted data
IBM WebSphere deserialization of untrusted data: http://lab.mediaservice.net/advisory/2016-03-websphere.txt [crayon-61642654db443557410470/]
CVE-2016-7065 – Red Hat JBoss EAP deserialization of untrusted data
Red Hat JBoss EAP deserialization of untrusted data Advisory URL: http://lab.mediaservice.net/advisory/2016-05-jboss.txt [crayon-61642654db93e397930635/]
CVE-2016-5983 – IBM WebSphere deserialization of untrusted data
IBM WebSphere deserialization of untrusted data Advisory url: http://lab.mediaservice.net/advisory/2016-02-websphere.txt [crayon-61642654dbb7a791544235/]
McAfee VirusScan Enterprise security restrictions bypass
McAfee VirusScan Enterprise security restrictions bypass Advisory URL: http://lab.mediaservice.net/advisory/2016-01-mcafee.txt [crayon-61642654dbd4b197455580/]
VPN Brute forcer
vpnc-brute is a modified version of the VPNC client (https://www.unix-ag.uni-kl.de/~massar/vpnc/) that add capabilities to automatically check a combination of user and password . The source code has been patched to…
Windows To Go on USB 3.0 controllers
Some days ago we decided to test Windows To Go. After installing Windows 8.1 on a Sandisk Extreme USB 3.0 64 GB key we incurred into a problem. The system…