Microsoft Windows DLL Loading Elevation of Privilege (MS16-007: CVE-2016-0014)

An elevation of privilege vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in certain DLL files, which could be abused by attackers to execute arbitrary code with the privileges of the current user. The attacker must entice the victim to run an executable...

Microsoft Windows MAPI DLL Loading CVE-2016-0020 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to execute arbitrary code with elevated privileges. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft Windows 7 for...

Microsoft Windows DLL Loading CVE-2016-0014 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to execute arbitrary code with elevated privileges. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft Windows 10 for...

Microsoft Internet Explorer NewMessage Protected Mode Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Windows DLL Loading Remote Code Execution (MS16-007: CVE-2016-0018)

A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to the way Windows improperly validates input before loading libraries. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted file...

Microsoft Windows DLL Loading Remote Code Execution (MS16-007: CVE-2016-0016)

A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to the way Windows improperly validates input before loading libraries. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted file...

MS15-134 Microsoft Office COM Object DLL Planting with els.dll

While loading an embedded object in Microsoft Word or other Microsoft Office products, it is possible to load a Classic Event Viewer Extension, which causes a LoadLibraryW call that attempts to load elsext.dll from the same directory as the Office document. From an untrusted remote share such as...

Microsoft Windows CVE-2015-6128 DLL Loading Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will result in a denial-of-service condition. Note: This issue was previously titl...

JVN#49503705: Python for Windows may insecurely load dynamic libraries

Python for Windows contains an issue with the DLL search path, which may lead to insecurely loading a DLL called readline.pyd. Impact Arbitray code may be executed with the privileges of python.exe. Solution Apply a workaround Applying the following workaround will mitigate the effects of this...

Microsoft Internet Explorer DLL Planting Sandbox Escape Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Windows DLL Loading CVE-2015-2369 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Avaya CallPilot...

Microsoft Windows DLL Loading CVE-2015-2368 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Avaya CallPilot...

Corel PDF Fusion <= 1.14 Arbitrary Code Execution Vulnerability - Windows

Corel PDF Fusion is prone to an arbitrary code execution vulnerability. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Microsoft Internet Explorer ShowSaveFileDialog DLL Loading Arbitrary Code Execution Vulnerability

Microsoft Internet Explorer is a web browser from Microsoft. Microsoft Internet Explorer suffers from an arbitrary code execution vulnerability in its implementation, which can be exploited by an attacker who places a file in a remotely accessible UNC or WebDAV share location to execute arbitrary...

Symantec Endpoint Protection Manager and Client Issues

SUMMARY Symantec Endpoint Protection SEP 12.1.6 addresses vulnerabilities that were found in prior releases. These include an authorized but less-privileged administrator able to attempt a blind SQL injection in the SEP Manager SEPM console through PHP prepared statements; a local Denial of Servi...

LoadLibrary function in Microsoft Windows fails to validate input properly

Overview The LoadLibrary function in Microsoft Windows fails to validate input properly. As a result, it may load a specially crafted DLL file CWE-114. Takashi Yoshikawa of Mitsui Bussan Secure Directions reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Informati...

Multiple Local Code Execution Vulnerabilities in DLL Loading for Multiple Rockwell Automation Products

FactoryTalk Services Platform provides regular. services such as diagnostic information, health monitoring services, and real-time data access for products and applications in the FactoryTalk system. Services such as diagnostic information, health monitoring services, and real-time data access ar...

IPass Control Pipe Remote Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'IPass Control Pipe Remote Command Execution', 'Description' = %q This module exploits a vulnerability in the IPass Client service...

Remote code execution

Untrusted search path vulnerability in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a Trojan horse DLL in the...

Microsoft Windows DLL Loading CVE-2015-0096 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Avaya CallPilot...