Posts by: Maurizio Agazzini (aka inode)
CVE-2016-8919 – IBM WebSphere deserialization of untrusted data
IBM WebSphere deserialization of untrusted data: http://lab.mediaservice.net/advisory/2016-03-websphere.txt [crayon-5e8449c505962894566232/]
CVE-2016-7065 – Red Hat JBoss EAP deserialization of untrusted data
Red Hat JBoss EAP deserialization of untrusted data Advisory URL: http://lab.mediaservice.net/advisory/2016-05-jboss.txt [crayon-5e8449c505fb3725130011/]
CVE-2016-5983 – IBM WebSphere deserialization of untrusted data
IBM WebSphere deserialization of untrusted data Advisory url: http://lab.mediaservice.net/advisory/2016-02-websphere.txt [crayon-5e8449c506218462861125/]
McAfee VirusScan Enterprise security restrictions bypass
McAfee VirusScan Enterprise security restrictions bypass Advisory URL: http://lab.mediaservice.net/advisory/2016-01-mcafee.txt [crayon-5e8449c50644c300825125/]
VPN Brute forcer
vpnc-brute is a modified version of the VPNC client (https://www.unix-ag.uni-kl.de/~massar/vpnc/) that add capabilities to automatically check a combination of user and password . The source code has been patched to…
Windows To Go on USB 3.0 controllers
Some days ago we decided to test Windows To Go. After installing Windows 8.1 on a Sandisk Extreme USB 3.0 64 GB key we incurred into a problem. The system…