PT-2023-25160 · Razer · Razercentral

Name of the Vulnerable Software and Affected Versions: RazerCentral versions prior to 7.11.0.558 Description: The issue is related to improper privilege control in the RazerCentralService Named Pipe, allowing a malicious actor with local access to gain SYSTEM privilege. This can be achieved by...

Mozilla Firefox < 3.0.14 Multiplatform RCE via pkcs11.addmodule

No description provided by source. Fix announce: http://www.mozilla.org/security/announce/2009/mfsa2009-48.html Bug history: https://bugzilla.mozilla.org/showbug.cgi?id=326628 So, Firefox up through 3.0.13 had an obscure little function under window.pkcs11: long addmodulein DOMString moduleName, ...

Mozilla Firefox &lt; 3.0.14 Multiplatform RCE via pkcs11.addmodule

No description provided by source. Fix announce: http://www.mozilla.org/security/announce/2009/mfsa2009-48.html Bug history: https://bugzilla.mozilla.org/showbug.cgi?id=326628 So, Firefox up through 3.0.13 had an obscure little function under window.pkcs11: long addmodulein DOMString moduleName, ...

Firefox &lt;3.0.14 Multiplatform RCE via pkcs11.addmodule

Fix announce: http://www.mozilla.org/security/announce/2009/mfsa2009-48.html Bug history: https://bugzilla.mozilla.org/showbug.cgi?id=326628 So, Firefox up through 3.0.13 had an obscure little function under window.pkcs11: long addmodulein DOMString moduleName, in DOMString libraryFullPath, in lo...

Mozilla Firefox < 3.0.14 Multiplatform RCE via pkcs11.addmodule

Exploit for multiple platform in category remote exploits =============================================================== Mozilla Firefox var str = "Error detected in Firefox Module NSP31337.bin.\n" +...

Code injection

Mozilla Firefox before 3.0.14 does not properly implement certain dialogs associated with the 1 pkcs11.addmodule and 2 pkcs11.deletemodule operations, which makes it easier for remote attackers to trick a user into installing or removing an arbitrary PKCS11 module...