CVE-2019-17099

creationtimestamp| type| source ---|---|--- 2023-11-03 11:48:27+00:00| seen| MISP/6b1fb020-7c44-40ae-aab0-cdc92ae48dd9...

CVE-2020-17099

creationtimestamp| type| source ---|---|--- 2020-12-10 02:33:12+00:00| seen| https://t.me/cibsecurity/18406 2020-12-10 02:36:13+00:00| seen| https://t.me/cibsecurity/18426 2020-12-10 02:39:06+00:00| seen| https://t.me/cibsecurity/18438 2020-12-10 04:25:27+00:00| seen| https://t.me/cibsecurity/184...

CVE-2020-17099

CVE-2020-17099 corresponds to a Windows lock-screen security feature bypass. The available data indicate a physical-access vulnerability affecting Windows lock screen functionality, with a CVSSv3.1 base score of 6.8 and impact on confidentiality, integrity, and availability (C:H/I:H/A:H) when exp...

KB4593226: Windows 10 Version 1607 and Windows Server 2016 December 2020 Security Update

The remote Windows host is missing security update 4593226. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962,...

KB4592446: Windows 10 Version 1803 December 2020 Security Update

The remote Windows host is missing security update 4592446. It is, therefore, affected by multiple vulnerabilities: - A security feature bypass vulnerability exists. An attacker can exploit this and bypass the security feature and perform unauthorized actions compromising the integrity of the...

KB4592440: Windows 10 Version 1809 and Windows Server 2019 December 2020 Security Update

The remote Windows host is missing security update 4592440. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962,...

KB4592464: Windows 10 December 2020 Security Update

The remote Windows host is missing security update 4592464. It is, therefore, affected by multiple vulnerabilities: - A security feature bypass vulnerability exists. An attacker can exploit this and bypass the security feature and perform unauthorized actions compromising the integrity of the...

CVE-2019-17099

An Untrusted Search Path vulnerability in EPSecurityService.exe as used in Bitdefender Endpoint Security Tools versions prior to 6.6.11.163 allows an attacker to load an arbitrary DLL file from the search path. This issue affects: Bitdefender EPSecurityService.exe versions prior to 6.6.11.163...

CVE-2019-17099

CVE-2019-17099 affects Bitdefender Endpoint Security Tools, specifically EPSecurityService.exe, in versions prior to 6.6.11.163. The issue is an Untrusted Search Path vulnerability that allows loading an arbitrary DLL from the search path. Evidence across sources confirms the vulnerable component...

CVE-2019-17099 Untrusted Search Path vulnerability in EPSecurityService.exe (VA-3500)

An Untrusted Search Path vulnerability in EPSecurityService.exe as used in Bitdefender Endpoint Security Tools versions prior to 6.6.11.163 allows an attacker to load an arbitrary DLL file from the search path. This issue affects: Bitdefender EPSecurityService.exe versions prior to 6.6.11.163...

CVE-2017-17099

There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. When sending a GET request with an excessive length, it is possible for a malicious user to overwrite the SEH record and execute a payload that would run under th...

CVE-2017-17099

Summary: CVE-2017-17099 affects Flexense SyncBreeze Enterprise’s HTTP server (v10.1.16). An unauthenticated, SEH-based buffer overflow is triggered by excessively long GET requests, enabling an attacker to overwrite the SEH record and execute payloads as the Windows SYSTEM account. The issue is d...

CVE-2017-17099

There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. When sending a GET request with an excessive length, it is possible for a malicious user to overwrite the SEH record and execute a payload that would run under th...