CVE-2012-1894

Microsoft Office for Mac 2011 uses world-writable permissions for the "Applications/Microsoft Office 2011/" directory and certain other directories, which allows local users to gain privileges by placing a Trojan horse executable file in one of these directories, aka "Office for Mac Improper Fold...

Threat Outbreak Alert: Fake DHL Express Tracking Notification Email Messages on February 3, 2014

Medium Alert ID: 26262 First Published: 2012 June 27 20:46 GMT Last Updated: 2014 February 4 13:56 GMT Version: 26 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a DHL Express tracking notification for the recipient. The text in the...

Linux 3.x.x Executable File Read Exploit

Exploit for linux platform in category local exploits Exploit Title: Linux 3.x.x Executable File Read Exploit Date: 6/26/12 Author: Blade Version: 3.x.x Category:: Local Root Exploit Tested on: Linux, Ubuntu Demo site: 3 vulnerable site, this will speed up check !/bin/sh 3.x.x local root exp By:...

Ubuntu: Security Advisory (USN-1463-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: fcaps: clear the same personality flags as suid when fcaps are used

The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...

CVE-2012-3578

Unrestricted file upload vulnerability in html/Upload.php in the FCChat Widget plugin 2.2.13.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with a file with an executable extension followed by a safe extension, then accessing it via a direct...

Unrestricted file upload

Unrestricted file upload vulnerability in html/Upload.php in the FCChat Widget plugin 2.2.13.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with a file with an executable extension followed by a safe extension, then accessing it via a direct...

CVE-2012-3575

Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/rbxslider...

CVE-2012-3575

Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/rbxslider...

MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerability

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'rex/zip' class Metasploit3...

CVE-2012-2040

Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe...

The star outside the mention of the right new ideas&the star outside security Bulletin(mention the right vulnerability)-vulnerability warning-the black bar safety net

Statement, This is not what a star outside 0DAY, which at Best, only one in could not find a writable executable directory of a mention of the right ideas. I dare not say that I first found, there may be other people also found, and also in the use. In fact, numerous examples demonstrate that the...

Design/Logic Flaw

The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...

kernel: fcaps: clear the same personality flags as suid when fcaps are used

The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...

Code injection

Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service system crash via a crafted 32-bit Portable Executable PE file with a kernel ImageBase value...

CVE-2012-2273

Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service system crash via a crafted 32-bit Portable Executable PE file with a kernel ImageBase value...

CVE-2012-2123

The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...

ClamAV AntiVirus UPX Compressed PE Executable Files Buffer Overflow (CVE-2005-2920)

A buffer overflow vulnerability has been reported in ClamAV anti-virus product...

Windows Authenticode Signature Remote Code Execution Vulnerability (2653956)

This host is missing a critical security update according to Microsoft Bulletin MS12-024. OpenVAS Vulnerability Test $Id: secpodms12-024.nasl 5346 2017-02-19 08:43:11Z cfi $ Windows Authenticode Signature Remote Code Execution Vulnerability 2653956 Authors: Rachana Shetty Copyright: Copyright c...

Input validation

The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable P...