1217 matches found
DLL Hijacking Vulnerability in Haiwell's Cloud SCADA Cloud Configuration Software
Haiwell Haiwell cloud configuration software Cloud SCADA is an industrial automation monitoring and management platform software developed by Xiamen Haiwell Technology Co. A DLL hijacking vulnerability exists in Haiwell Cloud SCADA. An attacker can exploit this vulnerability to load a malicious d...
Xiamen Printmaster PDF to WORD Command Execution Vulnerability in Xiamen Printmaster Information Technology Co.
Turn Master PDF to word converter can provide free online PDF to word service. Xiamen Printed Information Technology Co., Ltd. to turn the master PDF to WORD there is a command execution vulnerability, an attacker can be used to exploit the vulnerability in the client process to inject an...
EnAgent windows 1.1.0 version has dll hijacking vulnerability
Specialized in the research, development and sales of network information security products, Eyanet is the industry's leading "zero-trust" solution provider. Ltd. EnAgent windows1.1.0 version of the existence of dll hijacking vulnerability, attackers can use the vulnerability to achieve the right...
Cisco Webex Teams Windows Client DLL Hijacking Vulnerability
Cisco Webex Teams is a comprehensive communications application designed to provide you with all the necessary tools and the right environment to enhance team collaboration. A DLL hijacking vulnerability exists in the loading mechanism of specific DLLs in Cisco Webex Teams Windows clients...
Vulnerability fixed in Cisco Webex Teams for Windows
Cisco has fixed a vulnerability in the Windows client of Cisco Webex Teams. The vulnerability allows a local, authenticated malicious person to execute arbitrary code execute under privileges of other local users. This requires a malicious DLL file must be placed in a specific location of the fil...
CVE-2020-6654
A DLL Hijacking vulnerability in Eaton's 9000x Programming and Configuration Software v 2.0.38 and prior allows an attacker to execute arbitrary code by replacing the required DLLs with malicious DLLs when the software try to load vci11un6.DLL and cinpl.DLL...
DLL Hijacking Vulnerability in Rocket Accelerator of Hubei Shengtian Network Technology Co.
Rocket Accelerator is an online game gas pedal. Rocket Accelerator by Hubei Shengtian Network Technology Co. Ltd. has a DLL hijacking vulnerability that can be exploited by an attacker to gain server control privileges...
Advantech WebAccess HMI Designer suffers from dll Hijacking Vulnerability
Advantech WebAccess/HMI Designer is an integrated human-machine interface development tool. Advantech WebAccess HMI Designer suffers from a dll hijacking vulnerability that can be exploited by attackers to gain administrator privileges...
CVE-2020-7315
DLL Injection Vulnerability in McAfee Agent MA for Windows prior to 5.6.6 allows local users to execute arbitrary code via careful placement of a malicious DLL...
CVE-2020-7312
DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent MA for Windows prior to 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder...
CVE-2020-25045
Installers of Kaspersky Security Center and Kaspersky Security Center Web Console prior to 12 & prior to 12 Patch A were vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges in the system...
CVE-2020-24955
SUPERAntiSyware Professional X Trial 10.0.1206 is vulnerable to local privilege escalation because it allows unprivileged users to restore a malicious DLL from quarantine into the system32 folder via an NTFS directory junction, as demonstrated by a crafted ualapi.dll file that is detected as...
PowerSploit
This is a PowerShell module repository called PowerSploit, which is a collection of tools for penetration testing and red teaming. The repository contains several modules, including AntivirusBypass and CodeExecution. The AntivirusBypass module is designed to help evade antivirus detection, and it...
CVE-2020-9767
A vulnerability related to Dynamic-link Library “DLL” loading in the Zoom Sharing Service would allow an attacker who had local access to a machine on which the service was running with elevated privileges to elevate their system privileges as well through use of a malicious DLL. Zoom addressed...
Microsoft Edge Elevation of Privilege Vulnerability (CNVD-2020-61588)
Microsoft Edge is a web browser from the American company Microsoft that comes with systems after Windows 10. A security vulnerability exists in Microsoft Edge based on Chromium, which stems from the program failing to prompt a warning message to the user when downloading a DLL file. The...
Denial of Service Vulnerability in VisualField VF***.dll Component at Zhejiang ZDAC Information Technology Co.
VisualField VF for short is a software package for control system configuration and monitoring for the ECS-700 system. A denial of service vulnerability exists in the VisualField VF.dll component of Zhejiang ZDZC Information Technology Co. An attacker can exploit this vulnerability to cause the...
Shenzhen Xunlei Network Technology Co., Ltd Xunlei Video has dll hijacking vulnerability
Founded in 2003, Shenzhen Xunlei Network Technology Co., Ltd. is a shared computing and blockchain technology innovation enterprise. Shenzhen Xunlei Network Technology Co., Ltd Xunlei Video has a dll hijacking vulnerability, which can be exploited by an attacker to load a malicious dll and execut...
Shenzhen Xunlei Network Technology Co., Ltd Xunlei X suffers from dll hijacking vulnerability (CNVD-2020-49286)
Founded in 2003, Shenzhen Xunlei Network Technology Co., Ltd. is a shared computing and blockchain technology innovation enterprise. Shenzhen Xunlei Network Technology Co., Ltd Xunlei X suffers from a dll hijacking vulnerability, which can be exploited by an attacker to load a malicious dll and...
Eaton 9000XDrive has a dll hijacking vulnerability
Eaton is a power management company and 9000XDrive is an inverter commissioning software. Eaton 9000XDrive suffers from a dll hijacking vulnerability that can be exploited by an attacker to load a malicious dll to execute malicious code...
Shenzhen Xunlei Network Technology Co., Ltd Xunlei Quickbird has dll hijacking vulnerability
Founded in 2003, Shenzhen Xunlei Network Technology Co., Ltd. is a shared computing and blockchain technology innovation enterprise. Shenzhen Xunlei Network Technology Co., Ltd Xunlei Quickbird suffers from a dll hijacking vulnerability, which can be exploited by an attacker to load a malicious d...