Mostafa Soliman

13 exploits Active since May 2017
CVE-2017-6079 NOMISEC CRITICAL WORKING POC
Edgewater Networks Edgemarc - Command Injection
The HTTP web-management application on Edgewater Networks Edgemarc appliances has a hidden page that allows for user-defined commands such as specific iptables routes, etc., to be set. You can use this page as a web shell essentially to execute commands, though you get no feedback client-side from the web application: if the command is valid, it executes. An example is the wget command. The page that allows this has been confirmed in firmware as old as 2006.
18 stars
CVSS 9.8
CVE-2018-2879 NOMISEC CRITICAL WORKING POC
Oracle Fusion Middleware 11.1.2.3.0-12.2.1.3.0 - Unauthenticated RCE
Vulnerability in the Oracle Access Manager component of Oracle Fusion Middleware (subcomponent: Authentication Engine). Supported versions that are affected are 11.1.2.3.0 and 12.2.1.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Access Manager. While the vulnerability is in Oracle Access Manager, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle Access Manager. Note: Please refer to Doc ID <a href="http://support.oracle.com/CSP/main/article?cmd=show&type=NOT&id=2386496.1">My Oracle Support Note 2386496.1 for instructions on how to address this issue. CVSS 3.0 Base Score 9.0 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H).
11 stars
CVSS 9.0
CVE-2018-11701 WRITEUP HIGH WRITEUP
Faststone Image Viewer - Memory Corruption
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x005cb509, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVSS 7.8
CVE-2018-11702 WRITEUP HIGH WRITEUP
Faststone Image Viewer - Memory Corruption
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00578cb3, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVSS 7.8
CVE-2018-11703 WRITEUP HIGH WRITEUP
Faststone Image Viewer - Memory Corruption
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00402d6a, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVSS 7.8
CVE-2018-11704 WRITEUP HIGH WRITEUP
Faststone Image Viewer - Memory Corruption
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00402d7d, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVSS 7.8
CVE-2018-11705 WRITEUP HIGH WRITEUP
Faststone Image Viewer - Memory Corruption
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00578cc4, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVSS 7.8
CVE-2018-11706 WRITEUP HIGH WRITEUP
Faststone Image Viewer - Memory Corruption
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00578dd8, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVSS 7.8
CVE-2018-11707 WRITEUP HIGH WRITEUP
Faststone Image Viewer - Memory Corruption
FastStone Image Viewer 6.2 has a User Mode Read and Execute AV at 0x0057898e, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVSS 7.8
CVE-2018-14332 WRITEUP MEDIUM WRITEUP
Clementine Music Player 1.3.1 - Memory Corruption
An issue was discovered in Clementine Music Player 1.3.1. Clementine.exe is vulnerable to a user mode write access violation due to a NULL pointer dereference in the Init call in the MoodbarPipeline::NewPadCallback function in moodbar/moodbarpipeline.cpp. The vulnerability is triggered when the user opens a malformed mp3 file.
CVSS 5.5
CVE-2018-20013 WRITEUP HIGH WRITEUP
UrBackup <2.2.6 - DoS
In UrBackup 2.2.6, an attacker can send a malformed request to the client over the network, and trigger a fileservplugin/CClientThread.cpp CClientThread::ProcessPacket metadata_id!=0 assertion, leading to shutting down the client application.
CVSS 7.5
CVE-2018-20014 WRITEUP HIGH WRITEUP
UrBackup <2.2.6 - Use After Free
In UrBackup 2.2.6, an attacker can send a malformed request to the client over the network, and trigger a fileservplugin/CClientThread.cpp CClientThread::GetFileHashAndMetadata NULL pointer dereference, leading to shutting down the client application.
CVSS 7.5
CVE-2024-24485 WRITEUP HIGH WRITEUP
Silex Technology DS-600 Firmware <1.4.1 - Info Disclosure
An issue discovered in silex technology DS-600 Firmware v.1.4.1 allows a remote attacker to obtain sensitive information via the GET EEP_DATA command.
CVSS 7.5