New 0days for the win

I have 3 new 0days. A remote code exec in a web server, an admin bypass in a mail server, and a crappy XSS in some heldesk  webapp.

I’ve alerted the proper people a couple weeks back. They have another couple weeks left to patch before I go public and all the fun begins.

Expect them to be released here as well as bugtraq.

Leave a Reply