Baidu Browser Installer DLL Search Path Vulnerability

Baidu Browser is a web browser. A DLL search path vulnerability in the Baidu Browser installer allows an attacker to execute arbitrary code using the user's permission to invoke the installer...

Multiple vulnerabilities in INplc

Overview INplc provided by MICRONET CORPORATION contains multiple vulnerabilities listed below. DLL preloading vulnerability CWE-427 - CVE-CVE-2018-0667 Buffer overflow CWE-119 - CVE-2018-0668 Authentication bypass CWE-287 - CVE-2018-0669 Authentication bypass CWE-287 - CVE-2018-0670 Privilege...

CVE-2018-5235

Norton Utilities prior to 16.0.3.44 may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will...

Microsoft DirectX SDK 'Xact.exe' Remote Code Execution Vulnerability

Microsoft DirectX SDK is software for DirectX programming. A remote code execution vulnerability exists in Microsoft DirectX SDK 'Xact.exe'. An attacker can exploit this vulnerability to execute arbitrary code via the Trojan horse file "xbdm.dll" in the current working directory...

CVE-2018-8090

Quick Heal Total Security 64 bit 17.00 QHTS64.exe, QHTSFT64.exe - Version 10.0.1.38; Quick Heal Total Security 32 bit 17.00 QHTS32.exe, QHTSFT32.exe - Version 10.0.1.38; Quick Heal Internet Security 64 bit 17.00 QHIS64.exe, QHISFT64.exe - Version 10.0.0.37; Quick Heal Internet Security 32 bit 17....

CVE-2018-1000209

Sensu, Inc. Sensu Core version Before version 1.4.2-3 contains a Insecure Permissions vulnerability in Sensu Core on Windows platforms that can result in Unprivileged users may execute code in context of Sensu service account. This attack appear to be exploitable via Unprivileged user may place a...

Polaris Office Arbitrary Code Execution Vulnerability

Infraware Polaris Office is a suite of office software developed by Infraware Korea for mobile devices. The software is mainly used for viewing and editing Word documents, Excel tables, PowerPoint files and so on. A security vulnerability exists in Infraware Polaris Office 2017 version 8.1. An...

Microsoft OneDrive installer untrustworthy search path vulnerability

Microsoft OneDrive is a cloud backup application from Microsoft USA. The program features automatic backup of photo albums, online office and file sharing. installer is an installer for OneDrive. An untrustworthy search path vulnerability exists in the installer in Microsoft OneDrive. An attacker...

Microsoft Visual C++ Redistributable installer untrustworthy search path vulnerability

Microsoft Visual C++ Redistributable is a runtime environment library from Microsoft that supports running applications developed in Visual C++. installer is the installer for Visual C++ Redistributable. An untrusted search path vulnerability exists in the installer in Microsoft Visual C++...

ruby-ffi DLL Hijacking Vulnerability

ruby-ffi is a Ruby extension that programmatically loads dynamic libraries, binds functions, and calls them from Ruby code. A security vulnerability exists in ruby-ffi. An attacker can exploit this vulnerability to hijack a DLL...

CVE-2018-5718

Improper restriction of write operations within the bounds of a memory buffer in snscore.sys in SoftControl/SafenSoft SysWatch, SoftControl/SafenSoft TPSecure, SoftControl/SafenSoft Enterprise Suite before version 4.4.1 allows local users to cause a denial of service BSOD or modify kernel-mode...

CVE-2018-7884

An issue was discovered in DisplayLink Core Software Cleaner Application 8.2.1956. When the drivers are updated to a newer version, the product launches a process as SYSTEM to uninstall the old version: cl1956.exe is run as SYSTEM on the %systemroot%\Temp folder, where any user can write a DLL...

The installer of "FLET'S VIRUS CLEAR Easy Setup & Application Tool" and "FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool" may insecurely invoke an executable file

Overview The installer of "FLET'S VIRUS CLEAR Easy Setup & Application Tool" and "FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool" provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION contains an issue with the DLL search path, which may lead to insecurely invoke an executable file...

Format Factory DLL Hijacking Vulnerability

Format Factory is a format conversion tool from the Chinese company Format Factory Network Format Factory Network. The program supports converting various types of audio, video and image files to the target format files. Format Factory version 4.1.0 has a DLL hijacking vulnerability in the...

SaferVPN for Windows Privileged Access Vulnerability

SaferVPN for Windows is a Windows-based VPN software. A power lifting vulnerability exists in the SaferVPN.Service service in SaferVPN version 4.2.5 for Windows-based platforms. An attacker can exploit this vulnerability to execute code as the SYSTEM user by modifying a configuration file to...

CVE-2018-10646

CyberGhost 6.5.0.3180 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "CG6Service" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "ConnectToVpnServer" method...

Privilege escalation

Golden Frog VyprVPN 2.12.1.8015 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "VyprVPN" service. This service establishes a NetNamedPipe endpoint that allows applications to connect and call publicly exposed methods. The "SetProperty" method allows an attacker t...

Privilege escalation

SaferVPN 4.2.5 for Windows suffers from a SYSTEM privilege escalation vulnerability in its "SaferVPN.Service" service. The "SaferVPN.Service" service executes "openvpn.exe" using OpenVPN config files located within the current user's %LOCALAPPDATA%\SaferVPN\OvpnConfig directory. An authenticated...

CVE-2018-10646

CyberGhost 6.5.0.3180 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "CG6Service" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "ConnectToVpnServer" method...

Privilege escalation

CyberGhost 6.5.0.3180 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "CG6Service" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "ConnectToVpnServer" method...