Explore >> Select a destination

You are here

 y4y.space
Learning JNDI Injection From CVE-2021-21985 - !
| | www.thezdi.com
Zero Day Initiative - A Series of Unfortunate Images: Drupal 1-click to RCE Exploit Chain Detailed
15.2 parsecs away

Travel
| |
| | positive.security
Windows 10 RCE: The exploit is in the link | Positive Security
16.5 parsecs away

Travel
| | Chaining a misconfiguration in IE11/Edge Legacy with an argument injection in a Windows 10/11 default URI handler and a bypass for a previous Electron patch, we developed a drive-by RCE exploit for Windows 10. The main vulnerability in the ms-officecmd URI handler has not been patched yet and can also be triggered through other browsers (requires confirmation of an inconspicuous dialog) and desktop applications that allow URI opening.
| | www.veracode.com
Exploiting JNDI Injections in Java | Veracode blog
6.0 parsecs away

Travel
| | Java Naming and Directory Interface (JNDI) is a Java API that allows clients to discover and look up data and objects via a name. These objects can be stored in different naming or directory services, such as Remote Method Invocation (RMI), Common Object Request Broker Architecture (CORBA), Lightweight Directory Access Protocol (LDAP), or Domain Name Service (DNS).
| | blog.fuzzing-project.org
How Optionsbleed wasn't found in 2014 | The Fuzzing Project
68.6 parsecs away

Travel
|