Microsoft Windows - NtLoadKeyEx Read Only Hive Arbitrary File Write Privilege Escalation (MS16-124)

Microsoft Windows - NtLoadKeyEx Read Only Hive Arbitrary File Write Privilege Escalation MS16-124 / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=871 Windows: NtLoadKeyEx Read Only Hive Arbitrary File Write EoP Platform: Windows 10 10586 not tested 8.1 Update 2 or Windows 7...

mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

Linux Kernel recvmmsg Privilege Escalation

This module attempts to exploit CVE-2014-0038, by sending a recvmmsg system call with a crafted timeout pointer parameter to gain root. This exploit has offsets for 3 Ubuntu 13 kernels: 3.8.0-19-generic 13.04 default; 3.11.0-12-generic 13.10 default; 3.11.0-15-generic 13.10. This exploit may take...

KeepNote 0.7.8 Remote Command Execution

Title : KeepNote 0.7.8 Remote Command Execution Date : 29/09/2016 Author : R-73eN Twitter : https://twitter.com/r73en Tested on : KeepNote 0.7.8 Kali Linux , and Windows 7 Software : http://keepnote.org/index.shtmldownload Vendor : DESCRIPTION: When the KeepNote imports a backup which is actuallt...

CVE-2016-4386

HPE Network Automation Software 10.10 allows local users to write to arbitrary files via unspecified vectors...

Design/Logic Flaw

HPE Network Automation Software 10.10 allows local users to write to arbitrary files via unspecified vectors...

MGASA-2016-0323 Updated wget packages fix security vulnerability

GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource CVE-2016-4971. Fixed a potential race condition by creating files with .tmp ext and making them accessible to the current user only CVE-2016-7098...

Arbitrary File Write Vulnerability in Eurohoo Government System of Shanghai Eurohoo Network Technology Co.

Shanghai Ohuhu Network Technology Co., Ltd. is a service-oriented enterprise integrating Internet software research and development, website operation, e-commerce and IT services. There is an arbitrary file write vulnerability in Shanghai Ohuhu Network Technology Co. The vulnerability allows an...

CVE-2016-5418

The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file...

Cisco Fog Director for IOx Arbitrary File Write Vulnerability

Cisco Fog Director for IOx is an automated management platform for centralized management of multiple applications running at the network edge based on IOx an end-to-end application support system that provides application hosting capabilities from Cisco. The platform controls application setting...

Docker Daemon - Local Privilege Escalation (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Docker Daemon Privilege Escalation', 'Description' = %q This module obtains root privileges from any host account with access to the Docker daemon...

Cisco Patches Critical WebEx Meetings Server Vulnerability

Cisco warned customers of 12 vulnerabilities across its product line this week, including a critical vulnerability in the software that powers its conferencing product, WebEx Meetings Server. The company stressed on Wednesday that version 2.6 of its WebEx Meetings Server is vulnerable to a remote...

Arbitrary File Write Vulnerability in Multiple Series of D-Link '/improtexport.php' Products

D-Link DAR-8000-X series and DAR-7000-x series Internet Behavior Audit Gateways provide complete Internet access behavior management solutions to protect the operational efficiency and information security of enterprises. An arbitrary file write vulnerability exists in several D-Link series...

Cisco Hosted Collaboration Mediation Fulfillment Directory Traversal Vulnerability (CNVD-2016-07110)

Cisco Hosted Collaboration Solution HCS is a cloud service that provides communication and collaboration solutions. A security vulnerability exists in the web interface of Cisco Hosted Collaboration Mediation Fulfillment. Due to the program not properly validating the HTTP URL format. An...

Portable SDK for UPnP Devices (libupnp) HTTP Arbitrary File Write

The Portable SDK for UPnP Devices libupnp running on the remote host is affected by a flaw that is triggered when handling HTTP POST or GET requests. An unauthenticated, remote attacker can exploit this to write arbitrary files to the web server file system. C Tenable Network Security, Inc...

Beijing Jiezhong Industrial Control Software FameView Arbitrary File Read/Write Vulnerability

FameView automation configuration management software is a configuration monitoring software developed by Beijing Jiezhong Company based on Windows operating system with years of experience in engineering application and service. Beijing Jiezhong industrial control configuration software FameView...

Mozilla Firefox Updater Local File Write Vulnerability

Mozilla Firefox is an open source web browser; A security vulnerability in Mozilla Firefox's Updater allows local attackers to exploit the vulnerability to write arbitrary files...

CVE-2016-6140

SAP TREX 7.10 Revision 63 allows remote attackers to write to arbitrary files via vectors related to RFC-Gateway, aka SAP Security Note 2203591...

tplmap - Automatic Server-Side Template Injection Detection and Exploitation Tool

Tplmap short for Template Mapper is a tool that automate the process of detecting and exploiting Server-Side Template Injection vulnerabilities SSTI. This can be used by developers, penetration testers, and security researchers to detect and exploit vulnerabilities related to the template injecti...

CVE-2016-5253

The Updater in Mozilla Firefox before 48.0 on Windows allows local users to write to arbitrary files via vectors involving the callback application-path parameter and a hard link...