Showing 1 - 6 of 6

Files from Andres Blanco

First Active	2008-04-28
Last Active	2015-01-26

Android WiFi-Direct Denial Of Service: Posted Jan 26, 2015; Authored by Core Security Technologies, Andres Blanco | Site coresecurity.com; Core Security Technologies Advisory - Some Android devices are affected by a denial of service attack when scanning for WiFi Direct devices. An attacker could send a specially crafted 802.11 Probe Response frame causing the Dalvik subsystem to reboot because of an Unhandle Exception on WiFiMonitor class.; tags | exploit, denial of service; advisories | CVE-2014-0997; SHA-256 | feb52e38d88fae494e9480f07d94fba29e88f585adbd14e6a5b09a5a89af5f6c; Download | Favorite | View

Oracle VirtualBox 3D Acceleration Memory Corruption: Posted Mar 11, 2014; Authored by Core Security Technologies, Andres Blanco, Francisco Falcon | Site coresecurity.com; Core Security Technologies Advisory - Multiple memory corruption vulnerabilities have been found in the code that implements 3D Acceleration for OpenGL graphics in Oracle VirtualBox. These vulnerabilities could allow an attacker who is already running code within a Guest OS to escape from the virtual machine and execute arbitrary code on the Host OS.; tags | exploit, arbitrary, vulnerability; advisories | CVE-2014-0981, CVE-2014-0982, CVE-2014-0983; SHA-256 | 21ec84e64e681dcbf21f5213bd3356433798b0d9e50c61ad3431bb54276c747d; Download | Favorite | View

TP-Link TL-SC3171 Command Execution / Shell Upload / Bypass: Posted Jul 31, 2013; Authored by Core Security Technologies, Andres Blanco, Flavio de Cristofaro | Site coresecurity.com; Core Security Technologies Advisory - TP-Link TL-SC3171 IP Cameras suffer from OS command injection, use of hard-coded credentials, authentication bypass, and missing authentication vulnerabilities.; tags | exploit, vulnerability; advisories | CVE-2013-2578, CVE-2013-2579, CVE-2013-2580, CVE-2013-2581; SHA-256 | 65c946f42cda6e7f2e468690ba32b2210dbcd121ef351a42cfd3246f433128d2; Download | Favorite | View

FOSCAM IP-Cameras Improper Access Restrictions: Posted Jul 23, 2013; Authored by Core Security Technologies, Andres Blanco, Flavio de Cristofaro | Site coresecurity.com; Core Security Technologies Advisory - Due to improper access restrictions, the FOSCAM FI8620 device allows a remote attacker the ability to browse and access arbitrary files from the directories '/tmpfs/' and '/log/' without requiring authentication. This could allow disclosure of access credentials and more.; tags | exploit, remote, arbitrary; advisories | CVE-2013-2574; SHA-256 | adaec8a2f891fe9f46be77e8f4377c1af9e6f99fbc5b6ffa63687d17c42b396c; Download | Favorite | View

Ubiquiti airCam RTSP Service Buffer Overflow: Posted Jun 12, 2013; Authored by Core Security Technologies, Andres Blanco | Site coresecurity.com; Core Security Technologies Advisory - The Ubiquiti airCam RTSP service 'ubnt-streamer' has a buffer overflow when parsing the URI of a RTSP request message. This bug allows remote attackers to execute arbitrary code via RTSP request message.; tags | exploit, remote, overflow, arbitrary; advisories | CVE-2013-1606; SHA-256 | 3c57ac195ad89b3237ed4bcc728deeb2fada4feba9b26315e05d5e1048e8ba71; Download | Favorite | View

Core Security Technologies Advisory 2008.0320: Posted Apr 28, 2008; Authored by Core Security Technologies, Norberto Kueffner, Damian Saura, Anibal Sacco, Dario Menichelli, Andres Blanco, Rodrigo Carvalho | Site coresecurity.com; Core Security Technologies Advisory - Insufficient argument validation of hooked SSDT functions exists in BitDefender Antivirus 2008 Build 11.0.11, Comodo Firewall Pro 2.4.18.184, Sophos Antivirus 7.0.5, and Rising Antivirus 19.60.0.0 and 19.66.0.0. Older versions may be affected, but were not checked.; tags | advisory; advisories | CVE-2008-1735, CVE-2008-1736, CVE-2008-1737, CVE-2008-1738; SHA-256 | 0fa04aa1e85e203b50c317ecfa9b306142897af5e26a38640049097c9eab79fd; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days