Lucene search
+L

209 matches found

NVD
NVD
added 2023/12/19 11:15 p.m.29 views

CVE-2023-49147

An issue was discovered in PDF24 Creator 11.14.0. The configuration of the msi installer file was found to produce a visible cmd.exe window when using the repair function of msiexec.exe. This allows an unprivileged local attacker to use a chain of actions e.g., an oplock on faxPrnInst.log to open...

7.8CVSS0.00483EPSS
Exploits2References3
Prion
Prion
added 2023/12/19 11:15 p.m.22 views

Code injection

An issue was discovered in PDF24 Creator 11.14.0. The configuration of the msi installer file was found to produce a visible cmd.exe window when using the repair function of msiexec.exe. This allows an unprivileged local attacker to use a chain of actions e.g., an oplock on faxPrnInst.log to open...

4.3CVSS6.8AI score0.00483EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2023/12/19 12:0 a.m.39 views

CVE-2023-49147

An issue was discovered in PDF24 Creator 11.14.0. The configuration of the msi installer file was found to produce a visible cmd.exe window when using the repair function of msiexec.exe. This allows an unprivileged local attacker to use a chain of actions e.g., an oplock on faxPrnInst.log to open...

7.6AI score0.00483EPSS
Exploits2References3
SUSE CVE
SUSE CVE
added 2023/12/02 2:0 a.m.6 views

SUSE CVE-2023-47039

A vulnerability was found in Perl. This security issue occurs while Perl for Windows relies on the system path environment variable to find the shell cmd.exe. When running an executable that uses the Windows Perl interpreter, Perl attempts to find and execute cmd.exe within the operating system...

7.8CVSS7.7AI score0.00414EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/11/27 12:0 p.m.55 views

CVE-2023-47039

A vulnerability was found in Perl. This security issue occurs while Perl for Windows relies on the system path environment variable to find the shell cmd.exe. When running an executable that uses the Windows Perl interpreter, Perl attempts to find and execute cmd.exe within the operating system...

7.8CVSS7.8AI score0.00414EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/11/25 12:0 a.m.7 views

Perl Security Vulnerabilities

Perl is a general-purpose, interpreted, dynamic, cross-platform programming language from the PERL community. A security vulnerability exists in Perl, which can be exploited to execute arbitrary code when running an executable that uses the Windows Perl interpreter, due to a path search order iss...

7.8CVSS7.7AI score0.00414EPSS
Exploits0References5
Veracode
Veracode
added 2023/05/16 2:41 a.m.10 views

Remote Code Execution (RCE)

github.com/mutagen-io/mutagen is vulnerable to Remote Code Execution RCE. The vulnerability only applies on Windows, because %ComSpec% is the official mechanism for shell specification on Windows but does not require an absolute path. An attacker can specify a relative path pointing to a maliciou...

7.4AI score
Exploits0
Github Security Blog
Github Security Blog
added 2023/05/05 2:18 a.m.16 views

Under-validated ComSpec and cmd.exe resolution in Mutagen projects

Impact Mutagen projects offer shell-based execution functionality. On Windows, the shell is resolved using the standard %ComSpec% mechanism, with a fallback to a %PATH%-based search for cmd.exe. While this is the standard practice on Windows systems, it presents somewhat risky behavior. Firstly,...

6.8AI score
Exploits0References2Affected Software1
OSV
OSV
added 2023/05/05 2:18 a.m.17 views

GHSA-FWJ4-72FM-C93G Under-validated ComSpec and cmd.exe resolution in Mutagen projects

Impact Mutagen projects offer shell-based execution functionality. On Windows, the shell is resolved using the standard %ComSpec% mechanism, with a fallback to a %PATH%-based search for cmd.exe. While this is the standard practice on Windows systems, it presents somewhat risky behavior. Firstly,...

6.8AI score
Exploits0References2
0day.today
0day.today
added 2023/04/08 12:0 a.m.193 views

Microsoft Windows 11 - (cmd.exe) Denial of Service Exploit

Exploit Title: Microsoft Windows 11 - 'cmd.exe' Denial of Service Exploit Author: Milad Karimi Ex3ptionaL Date: 2023-03-30 Vendor Homepage: https://www.microsoft.com/en-us Software Link: https://www.microsoft.com/en-us Tested Version: N/A Tested on OS: Windows 11 Pro About App Microsoft Windows i...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2023/04/08 12:0 a.m.328 views

Microsoft Windows 11 - 'cmd.exe' Denial of Service

Exploit Title: Microsoft Windows 11 - 'cmd.exe' Denial of Service Exploit Author: Milad Karimi Ex3ptionaL Date: 2023-03-30 Vendor Homepage: https://www.microsoft.com/en-us Software Link: https://www.microsoft.com/en-us Tested Version: N/A Tested on OS: Windows 11 Pro About App Microsoft Windows i...

6.8AI score
Exploits0
Github Security Blog
Github Security Blog
added 2022/10/25 7:56 p.m.44 views

Improper Control of Generation of Code ('Code Injection') in Azure CLI

Description In versions previous to 2.40.0, Azure CLI contains a vulnerability for potential code injection. Critical scenarios are where a hosting machine runs an Azure CLI command where parameter values have been provided by an external source. For example: Application X is a web application wi...

9.8CVSS10AI score0.03207EPSS
Exploits1References6Affected Software1
0day.today
0day.today
added 2022/09/26 12:0 a.m.3475 views

WiFi Mouse 1.8.3.4 Remote Code Execution Exploit

The WiFi Mouse Mouse Server from Necta LLC contains an authentication bypass as the authentication is completely implemented entirely on the client side. By utilizing this vulnerability, is possible to open a program on the server cmd.exe in our case and type commands that will be executed as the...

9.8CVSS0.2AI score0.73475EPSS
Exploits5
Kitploit
Kitploit
added 2022/09/08 12:30 p.m.44 views

ForceAdmin - Create Infinite UAC Prompts Forcing A User To Run As Admin

ForceAdmin is a c payload builder, creating infinate UAC pop-ups until the user allows the program to be ran. The inputted commands are ran via powershell calling cmd.exe and should be using the batch syntax. Why use? Well some users have UAC set to always show, so UAC bypass techniques are not...

7.5AI score
Exploits0References3
Cvelist
Cvelist
added 2022/08/01 7:20 p.m.45 views

CVE-2022-31179 Insufficient escaping of line feeds for CMD in shescape

Shescape is a simple shell escape package for JavaScript. Versions prior to 1.5.8 were found to be subject to code injection on windows. This impacts users that use Shescape any API function to escape arguments for cmd.exe on Windows An attacker can omit all arguments following their input by...

8.1CVSS10AI score0.011EPSS
Exploits1References3
OSV
OSV
added 2022/08/01 7:20 p.m.20 views

CVE-2022-31179 Insufficient escaping of line feeds for CMD in shescape

Shescape is a simple shell escape package for JavaScript. Versions prior to 1.5.8 were found to be subject to code injection on windows. This impacts users that use Shescape any API function to escape arguments for cmd.exe on Windows An attacker can omit all arguments following their input by...

8.1CVSS9.3AI score0.011EPSS
Exploits1References5
Veracode
Veracode
added 2022/07/18 8:36 a.m.30 views

Carriage Return And Line Feed (CLRF) Injection

shescape is vulnerable to carriage return line feed CRLF injection. User provided data for Powershell and cmd.exe on Windows systems are not escaped sufficiently, allowing an attacker to input a line feed character '\n'...

9.8CVSS9.1AI score0.011EPSS
Exploits1References4Affected Software1
Exploit DB
Exploit DB
added 2022/06/14 12:0 a.m.308 views

Real Player 16.0.3.51 - 'external::Import()' Directory Traversal to Remote Code Execution (RCE)

Exploit Title: Real Player 16.0.3.51 - 'external::Import' Directory Traversal to Remote Code Execution RCE Google Dork: n/a Date: May 31, 2022 Exploit Author: Eduardo Braun Prado Vendor Homepage: http://real.com/ Software Link: http://real.com/ Version: ver. 16.00.282, 16.0.3.51, Cloud 17.0.9.17,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/05/11 12:0 a.m.253 views

Microsoft CMD.EXE Integer Overflow

Hi @ll, the subject says it all: a 25 year old TRIVIAL signed integer arithmetic bug which may well have earned a PhD now crashes Windows' command interpreter CMD.exe via its builtin SET command. See their documentation: Classification CWE-190: Integer Overflow or Wraparound CWE-248: Uncaught...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2022/05/06 11:7 a.m.27 views

Researchers Warn of 'Raspberry Robin' Malware Spreading via External Drives

Cybersecurity researchers have discovered a new Windows malware with worm-like capabilities and is propagated by means of removable USB devices. Attributing the malware to a cluster named "Raspberry Robin," Red Canary researchers noted that the worm "leverages Windows Installer to reach out to...

0.5AI score
Exploits0
Rows per page
Query Builder