-
```
When you install TrendMicro Antivirus on Windows, by default a component called
Password Manager is also installed and automatically launched on startup.
http://www.trendmicro.com/us/home/produc…
-
```
When you install TrendMicro Antivirus on Windows, by default a component called
Password Manager is also installed and automatically launched on startup.
http://www.trendmicro.com/us/home/produc…
-
```
The fusermount binary calls setuid(geteuid()) to reset the ruid when
it invokes /bin/mount so that it can use privileged mount options that
are normally restricted if ruid != euid. That's acceptab…
-
```
There is an obvious path traversal in Kaspersky Virtual Keyboard, a hosting
website can simply do element.GetGraphics("../../../../whatever") to read any
png file on the victims computer.
x = d…
-
```
Kaspersky requested that I start sending them raw fuzz output, in order to more
rapidly get reports. I agreed, and sent them the first batch of crashes after
verifying they all reproduced with t…
-
```
Avast will render the commonName of X.509 certificates into an HTMLLayout frame
when your MITM proxy detects a bad signature. Unbelievably, this means
CN="really?!?!?" actually works, and is pre…
-
```
The ACL on %PROGRAMDATA%\Kaspersky Lab allows BUILTIN\Users to create new
files. This can be abused to create new plugins and modules during update, and
other filesystem races to gain elevated p…
-
```
When Kaspersky https inspection is enabled, temporary certificates are created
in %PROGRAMDATA% for validation. I observed that the naming pattern is
{CN}.cer.
I created a certificate with CN=…
-
```
The fusermount binary calls setuid(geteuid()) to reset the ruid when
it invokes /bin/mount so that it can use privileged mount options that
are normally restricted if ruid != euid. That's acceptab…
-
```
The ACL on %PROGRAMDATA%\Kaspersky Lab allows BUILTIN\Users to create new
files. This can be abused to create new plugins and modules during update, and
other filesystem races to gain elevated p…