17 matches found
CVE-2021-47861
Event Log Explorer 4.9.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations that will be...
CVE-2021-47861
Event Log Explorer 4.9.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations that will be...
EUVD-2026-3635
Event Log Explorer 4.9.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations that will be...
CVE-2021-47861 Event Log Explorer 4.9.3 - 'ElodeaEventCollectorService' Unquoted Service Path
Event Log Explorer 4.9.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations that will be...
CVE-2021-47861
CVE-2021-47861 : Event Log Explorer 4.9.3 is affected by an unquoted service path that enables local users to potentially execute arbitrary code with elevated (LocalSystem) privileges during service startup via mislocated executables. Under the documented exploit path, attackers place a malicious...
CVE-2021-47861 Event Log Explorer 4.9.3 - 'ElodeaEventCollectorService' Unquoted Service Path
Event Log Explorer 4.9.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations that will be...
PT-2026-3813
Event Log Explorer 4.9.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific file system locations that will be...
EUVD-2018-8104
Malware in sbrugna...
FsPro Labs Event Log Explorer XML Entity Injection Vulnerability
FsPro Labs Event Log Explorer is a log analysis software. The software is mainly used to view, analyze and monitor events recorded in the Microsoft Windows Event Log. An XML external entity injection vulnerability exists in FsPro Labs Event Log Explorer version 4.6.1.2115. A remote attacker can...
CVE-2018-16252
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection...
Xxe
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection...
CVE-2018-16252
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection...
CVE-2018-16252
FsPro Labs Event Log Explorer 4.6.1.2115 is affected by an XML External Entity (XXE) injection in the .elx FileType, due to a flaw in the elex.exe handling of crafted ELX files. An attacker can trigger local file disclosure by opening a malicious .elx file, as demonstrated in public writeups. The...
FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection Vulnerability
Exploit for windows platform in category web applications Title: FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection Author: hyp3rlinx Vendor: www.eventlogxp.com Software: https://eventlogxp.com/download.php Affected Component: elex.exe CVE: N/A Description: Upon opening a...
FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection
FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection Title: FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection Author: hyp3rlinx Date: 2018-09-01 Vendor: www.eventlogxp.com Software: https://eventlogxp.com/download.php Affected Component: elex.exe CVE:...
FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection
Title: FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection Author: hyp3rlinx Date: 2018-09-01 Vendor: www.eventlogxp.com Software: https://eventlogxp.com/download.php Affected Component: elex.exe CVE: N/A Description: Upon opening a specially crafted .ELX file in Event Log...
FsPro Labs Event Log Explorer 4.6.1.2115 XML Injection
Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/FSPRO-LABS-EVENT-LOG-EXPLORER-XML-INJECTION-INFO-DISCLOSURE.txt + ISR: ApparitionSec Greetz: Greetz: indoushka | Eduardo Vendor www.eventlogxp.com Product Event Log Explorer v4.6.1.2115...