A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit

Security researchers have disclosed an unpatched weakness in Microsoft Windows Platform Binary Table WPBT affecting all Windows-based devices since Windows 8 that could be potentially exploited to install a rootkit and compromise the integrity of devices. "These flaws make every Windows system...

Design/Logic Flaw

Dell EMC PowerScale OneFS contains an untrusted search path vulnerability. This vulnerability allows a user with ISIPRIVLOGINSSH or ISIPRIVLOGINCONSOLE and ISIPRIVSYSUPGRADE or ISIPRIVAUDIT to provide an untrusted path which can lead to run resources that are not under the application’s direct...

File Containment Vulnerability in Xinhua SecPath ACG1000

The H3C SecPath ACG1000 is a next-generation application control gateway. A file inclusion vulnerability exists in the H3C SecPath ACG1000, which can be exploited by an attacker to gain control of the server...

Unauthorized Access Vulnerability in SecPath ACG1000 of Xinhua San Technologies Co.

SecPath ACG1000 is a new generation of virtualized application control gateway designed specifically for NFV, cloud computing environments. An unauthorized access vulnerability exists in the SecPath ACG1000 of Xinhua San Technologies Limited, which can be exploited by attackers to obtain sensitiv...

Command Execution Vulnerability in EG Application Control Engine

Ruijie Networks EG Application Control Engine is a multi-service integrated gateway product launched by Ruijie Networks to solve the current network egress challenges. A command execution vulnerability exists in the EG Application Control Engine, which can be exploited by an attacker to gain serv...

Arbitrary File Read Vulnerability in H3C SecPath ACG1000

The H3C SecPath ACG1000 is a next-generation application control gateway. An arbitrary file read vulnerability exists in the H3C SecPath ACG1000. An attacker can exploit the vulnerability to read arbitrary files...

Design/Logic Flaw

SAP Business One Hana Chef Cookbook, versions - 8.82, 9.0, 9.1, 9.2, 9.3, 10.0, used to install SAP Business One on SAP HANA, allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behaviour of the application thereby highly impacting the...

Evasor - A Tool To Be Used In Post Exploitation Phase For Blue And Red Teams To Bypass APPLICATIONCONTROL Policies

The Evasor is an automated security assessment tool which locates existing executables on the Windows operating system that can be used to bypass any Application Control rules. It is very easy to use, quick, saves time and fully automated which generates for you a report including description,...

Weak Password Vulnerability in H3C ACG1000 Series Devices

SecPath ACG1000 is the latest generation of application control gateway from H3C. A weak password vulnerability exists in H3C ACG1000 series devices. An attacker exploits this vulnerability to obtain sensitive information...

CVE-2020-29658

Zoho ManageEngine Application Control Plus before 100523 has an insecure SSL configuration setting for Nginx, leading to Privilege Escalation...

Privilege escalation

Zoho ManageEngine Application Control Plus before 100523 has an insecure SSL configuration setting for Nginx, leading to Privilege Escalation...

CVE-2020-29658

CVE-2020-29658 affects Zoho ManageEngine Application Control Plus before 100523. The issue is an insecure SSL configuration for Nginx that enables Privilege Escalation. Documents provide CVSS scores (2.0/3.1) indicating high to critical impact, but there are no exploit details or remediation step...

Zoho ManageEngine Application Control Plus 安全漏洞

A security vulnerability exists in Zoho ManageEngine Application Control Plus before 100523, which stems from setting up an insecure SSL configuration for Nginx that results in privilege escalation...

CVE-2021-24082

Microsoft.PowerShell.Utility Module WDAC Security Feature Bypass Vulnerability...

The vulnerability of the application control tool: Windows Defender Application Control (WDAC), a PowerShell Core automation tool that allows attackers to gain unauthorized access to protected information.

The vulnerability of the application control tool, Windows Defender Application Control WDAC, a PowerShell Core automation tool, is related to security configuration errors. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected informati...

Vulnerability of application control tools: Application control in Windows Defender Application Control (WDAC), a PowerShell Core automation tool, allows attackers to bypass existing security mechanisms.

The vulnerability of the application control tool, Windows Defender Application Control WDAC, a PowerShell Core automation tool, is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to bypass existing security measures remotely...

PT-2021-2067 · Microsoft · Windows Defender +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Codecs Library affected versions not specified Microsoft Windows Camera Codec Pack affected versions not specified Description: The issue is related to a remote code execution problem. It may allow remote attackers to execut...

CVE-2020-7337

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise VSE prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of...

Design/Logic Flaw

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise VSE prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of...

CVE-2020-7337 Incorrect Permission Assignment for Critical Resource

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise VSE prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of...