Trojan-Spy.Win32.SpyEyes.abdb Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/9185538b01ad700603f38fb0eb8b6e3b.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.SpyEyes.abdb Vulnerability: Insecure Permissions Description: The malware creates a...

Code injection

WinWaste.NET version 1.0.6183.16475 has incorrect permissions, allowing a local unprivileged user to replace the executable with a malicious file that will be executed with "LocalSystem" privileges...

PT-2021-20384 · Unknown · Winwaste.Net

Name of the Vulnerable Software and Affected Versions: WinWaste.NET version 1.0.6183.16475 Description: The issue allows a local unprivileged user to replace the executable with a malicious file that will be executed with "LocalSystem" privileges due to incorrect permissions. Recommendations: For...

WinWaste.NET 安全漏洞

WinWaste.NET is an open source waste management software. A security vulnerability exists in WinWaste.NET version 1.0.6183.16475, which can be exploited by a local, unprivileged attacker to replace an executable file with a malicious file executed with LocalSystem privileges...

WinWaste.NET 1.0.6183.16475 Local Privilege Escalation

Exploit Title: WinWaste.NET - Privilege Escalation due Incorrect Access Control Date: 2021-07-01 Author: Andrea Intilangelo Vendor Homepage: http://nica.it - http://winwastenet.com Version: 1.0.6183.16475 Tested on: Windows 10 Pro x64 - 20H2 and 21H1 CVE: CVE-2021-34110 WinWaste.NET version...

Trojan.Win32.Agent.hsm Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/c58d5aecd223ac95ae5fab6dcd69e953.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Agent.hsm Vulnerability: Insecure Permissions Description: Agent.hsm creates an insecur...

CVE-2020-26131

Issues were discovered in Open DHCP Server Regular 1.75 and Open DHCP Server LDAP Based 0.1Beta. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenDHCPServer.exe Regular or the OpenDHCPLdap.exe LDAP Based binary...

Rapid SCADA Local Elevation of Privilege Vulnerability

Rapid SCADA is a free, open source, full-featured SCADA data acquisition and monitoring system software. A local elevation of privilege vulnerability exists in the ScadaAgentSvc.exe executable file in Rapid SCADA 5.8.0. The vulnerability can be exploited to gain administrator privileges by placin...

Unspecified Vulnerability in Mids Reborn Hero Designer

Mids Reborn Hero Designer is a suite of game character design software from Jason Thompson Software Developers. A security vulnerability exists in Mids Reborn Hero Designer version 2.6.0.7, which can be exploited by an attacker to execute an executable file in a user's context by performing a...

CVE-2020-11614

Mids' Reborn Hero Designer 2.6.0.7 downloads the update manifest, as well as update files, over cleartext HTTP. Additionally, the application does not perform file integrity validation for files after download. An attacker can perform a man-in-the-middle attack against this connection and replace...

Untrusted Search Path in Content - Edit Files / Companion - CVE-2020-4019

The file editing functionality in the Atlassian Companion App before version 1.0.0 allows local attackers to have the app run a different executable in place of the app's cmd.exe via a untrusted search path vulnerability. h5. Acknowledgements Credit for finding this vulnerability goes to Johannes...

CVE-2019-19382

Max Secure Anti Virus Plus 19.0.4.020 has Insecure Permissions on the installation directory. Local attackers can replace a .exe or .dll file to achieve privilege escalation...

Max Secure Anti Virus Plus Elevation of Privilege Vulnerability

Max Secure Software Anti Virus Plus is a suite of antivirus software from Max Secure Software India. A security vulnerability exists in Max Secure Software Anti Virus Plus version 19.0.4.020. The vulnerability can be exploited by an attacker to replace .exe or .dll files and elevate privileges...

CVE-2018-16715

An issue was discovered in Absolute Software CTES Windows Agent through 1.0.0.1479. The security permissions on the %ProgramData%\CTES folder and sub-folders may allow write access to low-privileged user accounts. This allows unauthorized replacement of service program executable EXE or dynamical...

CVE-2018-14795

DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable due to improper path validation which may allow an attacker to replace executable files...

Emerson Electric Deltav Path Traversal Vulnerability

Emerson Electric DeltaV is a digital automation system from Emerson Electric USA. The system offers I/O on-demand configuration, embedded intelligent control, and alarm panels. A path traversal vulnerability exists in Emerson Electric DeltaV, which stems from the program failing to properly...

GHSA-2P69-GXPM-5469 Downloads Resources over HTTP in alto-saxophone

Affected versions of alto-saxophone insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

libsbml Remote Code Execution Vulnerability

libsbml is an open source application for reading, writing, translating and validating SBML files and data streams. A security vulnerability exists in libsbml that originates when the program downloads an executable file over an unencrypted HTTP connection. A remote attacker could exploit the...

rs-brightcove remote code execution vulnerability

rs-brightcove is a set of wrapper tools for the brightcove web API. A security vulnerability exists in rs-brightcove, which originates when a program downloads an executable file over an unencrypted HTTP connection. A remote attacker could exploit the vulnerability by intercepting the response an...

arcanist Remote Code Execution Vulnerability

arcanist is a package for installing arcanist in phabricator. A security vulnerability exists in arcanist that originates when the program downloads an executable file over an unencrypted HTTP connection. A remote attacker can exploit the vulnerability by intercepting the response and replacing t...