135 matches found
Microsoft XmlDocument Elevation of Privilege (CVE-2019-0555)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
KB4480978: Windows 10 Version 1709 and Windows Server Version 1709 January 2019 Security Update
The remote Windows host is missing security update 4480978. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Windows Subsystem for Linux improperly handles objects in memory. An attacker who successfully exploited this vulnerability...
CVE-2018-0555
Buffer overflow in Buffalo WZR-1750DHP2 Ver.2.30 and earlier allows an attacker to execute arbitrary code via a specially crafted file...
CVE-2018-0555
CVE-2018-0555 affects Buffalo WZR-1750DHP2 firmware (including Ver.2.30 and earlier). The vulnerability is a buffer overflow in processing a specially crafted file, enabling an attacker to execute arbitrary code on the device. Related sources (NVD, CNVD, JVN/OpenVAS) corroborate the affected prod...
JVN#93397125: Multiple vulnerabilities in WZR-1750DHP2
WZR-1750DHP2 provided by BUFFALO INC. is a wireless LAN router. WXR-1900DHP2 contains multiple vulnerabilities listed below. Missing Authentication for Critical Function CWE-306 - CVE-2018-0554 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H| Base Score:...
CVE-2017-0555
An information disclosure vulnerability in libavc in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access data without permission. Product: Android. Versions: 6.0, 6.0.1, 7.0,...
CVE-2017-0555
CVE-2017-0555 is an information disclosure flaw in Android’s Mediaserver libavc component. The vulnerability could allow a local malicious app to access data outside its permissions by exploiting Mediaserver during media processing. Affected: Android 6.0–7.1.1 (versions 6.0, 6.0.1, 7.0, 7.1.1). R...
CVE-2016-0555
CVE-2016-0555 concerns an unspecified vulnerability in the Oracle CADView-3D Studio component of Oracle E-Business Suite (versions 11.5.10.2, 12.1.1, 12.1.2, 12.1.3). The description states that remote attackers can affect integrity via unknown vectors related to Studio. There are no concrete det...
Oracle: Security Advisory (ELSA-2007-0555)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201409-05
Gentoo Linux Local Security Checks GLSA 201409-05 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Samsung iPOLiS 1.12.2 ReadConfigValue Remote Code Execution
var shellcode =...
Samsung iPOLiS - ReadConfigValue Remote Code Execution
Samsung iPOLiS - ReadConfigValue Remote Code Execution var shellcode =...
Samsung iPOLiS ReadConfigValue Remote Code Execution Exploit
Exploit for windows platform in category remote exploits var shellcode =...
Samsung iPOLiS - ReadConfigValue Remote Code Execution
var shellcode =...
Samsung iPOLiS Device Manager WriteConfigValue Stack Buffer Overflow (CVE-2015-0555)
A stack-based buffer overflow vulnerability exists in Samsung iPOLiS Device Manager. The vulnerability is due to insufficient input validation of a parameter passed to WriteConfigValue of the XnsSdkDeviceIpInstaller ActiveX control. A remote attacker can exploit this vulnerability by enticing a...
CVE-2015-0555
Samsung iPOLiS Device Manager 1.12.2 contains a buffer overflow in the XnsSdkDeviceIpInstaller.ocx ActiveX control. The vulnerability affects the ReadConfigValue and WriteConfigValue methods, allowing remote code execution via a long string passed as the first argument. The issue is documented ac...
Samsung iPOLiS 1.12.2 - iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue PoC
Exploit for windows platform in category dos / poc Samsung iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue Remote Code Execution PoC var arg1 = ""; var arg2="praveend"; for i=0; i !-- Stack Trace Exception Code: ACCESSVIOLATION Disasm: 149434 MOV AL,ESI+EDX Seh Chain:...
Samsung iPOLiS 1.12.2 - iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue (PoC)
Samsung iPOLiS 1.12.2 - iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue PoC Samsung iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue Remote Code Execution PoC var arg1 = ""; var arg2="praveend"; for i=0; i !-- Stack Trace Exception Code: ACCESSVIOLATION Disasm: 149434 MOV AL,ESI+ED...
Samsung iPOLiS 1.12.2 - iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue (PoC)
Samsung iPOLiS XnsSdkDeviceIpInstaller ActiveX WriteConfigValue Remote Code Execution PoC var arg1 = ""; var arg2="praveend"; for i=0; i !-- Stack Trace Exception Code: ACCESSVIOLATION Disasm: 149434 MOV AL,ESI+EDX Seh Chain: -------------------------------------------------- 1 647C7D7D mfc100.dl...
Samsung iPolis Buffer Overflow
CVE-2015-0555 Introduction There is a Buffer Overflow Vulnerability which leads to Remote Code Execution. Vulnerability is due to input validation to the API ReadConfigValue and WriteConfigValue API's in XnsSdkDeviceIpInstaller.ocx This is different from CVE-2014-3911 as the version of iPolis...