81 matches found
AgileBits 1Password 代码问题漏洞
Agilebits AgileBits 1Password is a cross-platform account and password management tool from AgileBits Canada. A security vulnerability exists in 1Password version 7.3.712, which can be exploited by an attacker to execute arbitrary code via a DLL injection vulnerability in 1password.dll...
PowerSploit
This is an offensive tool for Windows PowerShell exploitation. It is a collection of PowerShell modules, specifically PowerSploit, which provides various functions for code execution, DLL injection, and antivirus bypass. The tool is designed to be used by penetration testers and red teamers to te...
CVE-2020-24431
Acrobat Reader DC versions 2020.012.20048 and earlier, 2020.001.30005 and earlier and 2017.011.30175 and earlier for macOS are affected by a security feature bypass that could result in dynamic library code injection by the Adobe Reader process. Exploitation of this issue requires user interactio...
Adobe Acrobat and Reader Security Feature Bypass Vulnerability
Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat and Reader have a security feature bypass vulnerability. An attacker can exploit this vulnerability to conduct dynamic library injection...
Adobe Reader DC Continuous Security Update (APSB20-67) - Windows
Adobe Reader DC Continuous is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Adobe Acrobat DC (Continuous) Security Update (APSB20-67) - Mac OS X
Adobe Acrobat DC Continuous Track is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Adobe Acrobat 2017 Security Update (APSB20-67) - Mac OS X
Adobe Acrobat 2017 is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...
Adobe Acrobat DC (Continuous) Security Update (APSB20-67) - Windows
Adobe Acrobat DC Continuous Track is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Adobe Acrobat 2017 Security Update (APSB20-67) - Windows
Adobe Acrobat 2017 is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...
Adobe Reader DC Continuous Security Update (APSB20-67) - Mac OS X
Adobe Reader DC Continuous is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Adobe Reader DC 2020 Security Update (APSB20-67) - Mac OS X
Adobe Reader DC Classic 2020 is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2020-24431
Acrobat Reader DC versions 2020.012.20048 and earlier, 2020.001.30005 and earlier and 2017.011.30175 and earlier for macOS are affected by a security feature bypass that could result in dynamic library code injection by the Adobe Reader process. Exploitation of this issue requires user interactio...
Adobe Warns Windows, MacOS Users of Critical Acrobat and Reader Flaws
Adobe has fixed critical-severity flaws tied to four CVEs in the Windows and macOS versions of its Acrobat and Reader family of application software services. The vulnerabilities could be exploited to execute arbitrary code on affected products. These critical flaws include a heap-based buffer...
PowerSploit
This is an offensive tool for Windows. It is a PowerShell module called PowerSploit, which contains various functions for code execution, DLL injection, and antivirus bypass. The module includes several sub-modules, such as CodeExecution and AntivirusBypass, each with its own set of functions. Th...
DLL Hijacking Vulnerability in Raytheon NN Accelerator of Raytheon (Wuhan) Information Technology Co.
Thor NN Accelerator is an international game acceleration tool. Raytheon Wuhan Information Technology Co. Raytheon NN Accelerator suffers from a DLL hijacking vulnerability, which can be exploited by an attacker to inject an executable DLL file into the client process to perform arbitrary functio...
CVE-2019-19741
Electronic Arts Origin 10.5.55.33574 is vulnerable to local privilege escalation due to arbitrary directory DACL manipulation, a different issue than CVE-2019-19247 and CVE-2019-19248. When Origin.exe connects to the named pipe OriginClientService, the privileged service verifies the client's...
CVE-2019-6858
A CWE-427:Uncontrolled Search Path Element vulnerability exists in MSX Configurator Software Version prior to V1.0.8.1, which could cause privilege escalation when injecting a malicious DLL...
Hefeixin pc client in DLL hijacking vulnerability
Fetion PC Stable Edition is a new version of the PC client software based on the previous Fetion, and Fetion PC Stable Edition is a basic communication service software developed by China Mobile. And Fetion pc client in the DLL hijacking vulnerability, attackers can use the vulnerability in the...
QQ Video pc client software suffers from dll hijacking vulnerability
QQ Video is a local player from Tencent that supports movie and music files in any format. QQ Video pc client software suffers from a dll hijacking vulnerability, which can be exploited by attackers to inject DLL files and execute arbitrary commands...
Kingsoft pdf pc client software has a command execution vulnerability
Kingsoft PDF is by Kingsoft Office Software Limited out of a PDF file format for reading and processing tools. Kingsoft pdf pc client software there are command execution vulnerabilities, the software PC client can allow an attacker to inject executable DLL files in the client process, the...