Alexander Antipov

**Name of the Vulnerable Software and Affected Versions** HK1 Box S905X3 TV Box (affected versions not specified) **Description** The issue allows a local unprivileged user to escalate to root using the /system/xbin/su binary. This can be achieved via a serial port (UART) connection or using adb. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Skype (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in a server hang, via unknown vectors related to sending long URIs. It is claimed to be actively exploited. The vendor states that this issue is separate from the sign-on issues that reduced Skype service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.