what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Abdulrahman Nour

Deskpro Helpdesk Privilege Escalation / Remote Code Execution

Posted Apr 1, 2020

Authored by Abdulrahman Nour | Site blog.redforce.io

Deskpro on-premise helpdesk solution versions prior to 2019.8.0 were found to be prone to multiple high severity vulnerabilities that enable a remote attacker to escalate their privilege to helpdesk administrator. Moreover, it was prone to remote code execution leading to full compromise of the server.

tags | advisory, remote, vulnerability, code execution

SHA-256 | 5dd4895f525c9b7d353cbbb506267df38621858e44606b40a9ba8a1eb8d31651

Download | Favorite | View

SHAREit For Android 4.0.38 Authentication Bypass / File Download

Posted Feb 27, 2019

Authored by Abdulrahman Nour | Site redforce.io

DUMPit is an exploit for the SHAREit mobile app abusing two recently discovered vulnerabilities affecting SHAREit Android application versions 4.0.38 and below. The first one allows an attacker to bypass SHAREit device authentication mechanism, and the other one enables the authenticated attacker to download arbitrary files from the user's device. Both vulnerabilities were reported to the vendor and patches have been released.

tags | exploit, arbitrary, vulnerability

SHA-256 | dca3c57e123cd7505a079d465df0e3ed6eb0383632d057de092d08aa581a3e30

Download | Favorite | View