DShankle - Security Researcher - Exploit Intelligence Platform

CVE-2022-22814 NOMISEC CRITICAL WORKING POC

MyASUS < 3.1.2.0 - Privilege Escalation via System Diagnosis Service

The System Diagnosis service of MyASUS before 3.1.2.0 allows privilege escalation.

CVSS 9.8

View Code

CVE-2022-28381 NOMISEC CRITICAL WORKING POC

ALLMediaServer <1.6 - Buffer Overflow

Mediaserver.exe in ALLMediaServer 1.6 has a stack-based buffer overflow that allows remote attackers to execute arbitrary code via a long string to TCP port 888, a related issue to CVE-2017-17932.

CVSS 9.8

View Code

CVE-2021-25801 NOMISEC HIGH WRITEUP

VLC Media Player 3.0.11 - Out-of-bounds Read in __Parse_indx

A buffer overflow vulnerability in the __Parse_indx component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.

CVSS 7.1

View Code

CVE-2021-25804 NOMISEC HIGH WRITEUP

VLC Media Player 3.0.11 - Denial of Service via NULL Pointer Dereference in AVI Open Function

A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service (DOS) in the application.

CVSS 7.5

View Code