Lucene search
K

21 matches found

Rapid7 Blog
Rapid7 Blog
added 2020/10/23 6:56 p.m.258 views

Metasploit Wrap-Up

Metasploit keeping that developer awareness rate up. Thanks to mrme & wvu, SharePoint is an even better target to find in your next penetration test. The newly minted module can net you a shell and a copy of the servers config, making that report oh so much more fun. Like to escape the sandbox?...

9CVSS8.5AI score0.99737EPSS
Exploits41
0day.today
0day.today
added 2020/10/15 12:0 a.m.130 views

Microsoft Windows Uninitialized Variable Local Privilege Escalation Exploit

This Metasploit module exploits CVE-2019-1458, an arbitrary pointer dereference vulnerability within win32k which occurs due to an uninitialized variable, which allows user mode attackers to write a limited amount of controlled data to an attacker controlled address in kernel memory. By utilizing...

7.8CVSS8.5AI score0.74438EPSS
Exploits10
Packet Storm
Packet Storm
added 2020/10/15 12:0 a.m.554 views

Microsoft Windows Uninitialized Variable Local Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/file' require 'msf/core/exploit/exe' require 'msf/core/post/windows/priv' class MetasploitModule 'Microsoft Windows Uninitialized Variable Local...

7.2CVSS0.7AI score0.74438EPSS
Exploits10
ThreatPost
ThreatPost
added 2020/07/06 3:21 p.m.21500 views

Purple Fox EK Adds Microsoft Exploits to Arsenal

The Purple Fox exploit kit EK has added two new exploits targeting critical- and high-severity Microsoft vulnerabilities to its bag of tricks – and researchers say they expect more attacks to be added in the future. The Purple Fox EK was previously analyzed in September, when researchers said tha...

7.6CVSS8.4AI score0.86863EPSS
Exploits83References23
GoogleProjectZero
GoogleProjectZero
added 2020/04/02 12:0 a.m.254 views

TFW you-get-really-excited-you-patch-diffed-a-0day-used-in-the-wild-but-then-find-out-it-is-the-wrong-vuln

Posted by Maddie Stone, Project Zero INTRODUCTION I’m really interested in 0-days exploited in the wild and what we, the security community, can learn about them to make 0-day hard. I explained some of Project Zero’s ideas and goals around in-the-wild 0-days in a November blog post. On December’s...

9.8CVSS8.7AI score0.80968EPSS
Exploits38
GithubExploit
GithubExploit
added 2020/03/11 8:30 a.m.26 views

Exploit for CVE-2019-1458

CVE-2019-1458 Windows LPE Exploit Caution YOU ONLY HA...

7.8CVSS7.3AI score0.74438EPSS
Exploits10
Metasploit
Metasploit
added 2020/02/14 10:10 p.m.126 views

Google Chrome 67, 68 and 69 Object.create exploit

This modules exploits a type confusion in Google Chromes JIT compiler. The Object.create operation can be used to cause a type confusion between a PropertyArray and a NameDictionary. The payload is executed within the rwx region of the sandboxed renderer process. This module can target the render...

8.8CVSS8.3AI score0.83898EPSS
Exploits15
ThreatPost
ThreatPost
added 2019/12/18 7:14 p.m.211 views

Microsoft Issues Out-of-Band Update for SharePoint Bug

UPDATE Microsoft has added a fresh CVE to its security portal, linking it to the existing November security updates the patch itself was already included in the updates, but not specifically named. The CVE describes a vulnerability in SharePoint Server. According to a Microsoft Security Advisory,...

7.2CVSS0.74438EPSS
Exploits10References4
The Hacker News
The Hacker News
added 2019/12/11 6:19 a.m.98 views

Latest Microsoft Update Patches New Windows 0-Day Under Active Attack

With its latest and last Patch Tuesday for 2019, Microsoft is warning billions of its users of a new Windows zero-day vulnerability that attackers are actively exploiting in the wild in combination with a Chrome exploit to take remote control over vulnerable computers. Microsoft's December securi...

9.3CVSS2.2AI score0.74438EPSS
Exploits10
Krebs on Security
Krebs on Security
added 2019/12/11 1:51 a.m.341 views

Patch Tuesday, December 2019 Edition

Microsoft today released updates to plug three dozen security holes in its Windows operating system and other software. The patches include fixes for seven critical bugs — those that can be exploited by malware or miscreants to take control over a Windows system with no help from users -- as well...

9.3CVSS0.7AI score0.74438EPSS
Exploits12
OpenVAS
OpenVAS
added 2019/12/11 12:0 a.m.55 views

Microsoft Windows Multiple Vulnerabilities (KB4530734)

This host is missing a critical security update according to Microsoft KB4530734 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.3CVSS6.8AI score0.74438EPSS
Exploits10References3
CVE
CVE
added 2019/12/10 9:40 p.m.1162 views

CVE-2019-1458

CVE-2019-1458 is a Windows Win32k elevation-of-privilege flaw affecting win32k.sys. The root cause is an uninitialized field in the server window dispatch table (gpsi->mpFnid_serverCBWndProc[FNID_SWITCH]), which leaves extraWnd data improperly sized. This allows an attacker to write arbitrary ...

7.8CVSS8.2AI score0.74438EPSS
In wildExploits10References4Affected Software8
ThreatPost
ThreatPost
added 2019/12/10 9:21 p.m.138 views

Microsoft Zaps Actively Exploited Zero-Day Bug

Microsoft has issued fixes for 36 CVEs for December 2019 Patch Tuesday across a range of products, with seven of them rated critical in severity – and one that’s already being exploited in the wild as a zero-day bug. The computing giant’s scheduled security update this month is relatively light,...

9.3CVSS8.8AI score0.74438EPSS
Exploits12References12
Securelist
Securelist
added 2019/12/10 8:0 p.m.102 views

Windows 0-day exploit CVE-2019-1458 used in Operation WizardOpium

In November 2019, Kaspersky technologies successfully detected a Google Chrome 0-day exploit that was used in Operation WizardOpium attacks. During our investigation, we discovered that yet another 0-day exploit was used in those attacks. The exploit for Google Chrome embeds a 0-day EoP exploit...

7.2CVSS1.1AI score0.74438EPSS
Exploits14
Circl
Circl
added 2019/12/10 7:52 p.m.35 views

CVE-2019-1458

creationtimestamp| type| source ---|---|--- 2019-12-10 19:52:29+00:00| exploited| https://t.me/ctinow/18489 2019-12-10 21:20:08+00:00| exploited| https://t.me/ctinow/18498 2019-12-11 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=439 2019-12-11 07:30:18+00:00| seen|...

7.8CVSS7.4AI score0.74438EPSS
Exploits10References19
Talos Blog
Talos Blog
added 2019/12/10 10:41 a.m.63 views

Microsoft Patch Tuesday — Dec. 2019: Vulnerability disclosures and Snort coverage

By Jon Munshaw. Microsoft released its monthly security update today, disclosing vulnerabilities across many of its products and releasing corresponding updates. This month's Patch Tuesday covers 25 vulnerabilities, two of which are considered critical. This month’s security update covers securit...

9.3CVSS0.9AI score0.74438EPSS
Exploits15
Symantec
Symantec
added 2019/12/10 12:0 a.m.162 views

Microsoft Windows Win32k CVE-2019-1458 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

2.7AI score0.74438EPSS
Exploits10Affected Software3
ATTACKERKB
ATTACKERKB
added 2019/12/10 12:0 a.m.116 views

CVE-2019-1458

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’. Recent assessments: gwillcox-r7 at October 19, 2020 5:31pm UTC reported: Known as WizardOpium for its use in the...

8.8CVSS1.9AI score0.74438EPSS
In wildExploits14References4
Check Point Advisories
Check Point Advisories
added 2019/12/10 12:0 a.m.6 views

Microsoft Win32k Elevation of Privilege (CVE-2019-1458)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2CVSS6AI score0.74438EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2019/12/10 12:0 a.m.168 views

KB4530730: Windows 8.1 and Windows Server 2012 R2 December 2019 Security Update

The remote Windows host is missing security update 4530730 or cumulative update 4530702. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input. An attacker could exploit the...

9.3CVSS8.1AI score0.74438EPSS
Exploits10References14
Rows per page
Query Builder