Microsoft Windows Remote Desktop Protocol CVE-2020-0610 Remote Code Execution Vulnerability

Description Microsoft Windows Remote Desktop Protocol is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies...

CVE-2012-3807

Samsung Kies before 2.5.0.120942711 has arbitrary file execution...

Privilege escalation

Samsung Kies before 2.5.0.120942711 has arbitrary file execution...

CVE-2012-3807

Samsung Kies before 2.5.0.120942711 has arbitrary file execution...

CVE-2012-3807

Samsung Kies before 2.5.0.12094_27_11 is affected by CVE-2012-3807 (and related CVEs) with arbitrary file execution via vulnerable components (notably ActiveX controls and related DLLs). Public sources indicate multiple vulnerabilities in Samsung Kies ActiveX/DCAPARAGONGM.dll and CmdAgent.dll, en...

Mozilla Firefox Security Advisories (MFSA2020-01, MFSA2020-02) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

Roxy Fileman 1.4.5 For .NET Directory Traversal Vulnerability

Exploit for php platform in category web applications =========================== Exploit Title: Roxy Fileman 1.4.5 for .NET - Directory Traversal Software: Roxy Fileman Version: 1.4.5 Vendor Homepage: http://www.roxyfileman.com/ Software Link: http://www.roxyfileman.com/download.php?f=1.4.5-net...

Microsoft Word CVE-2019-1461 Remote Denial of Service Vulnerability

Description Microsoft Word is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Technologies Affected Microsoft Office 2010 32-bit edition SP2 Microsoft Office 2010 64-bit edition SP2 Microsoft Office 2019 for 32-bit...

Adobe Stock CVE-2019-19595 Remote Code Execution Vulnerability

Description Adobe Stock is prone to remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected system. Technologies Affected Adobe Stock 4.8 PrestaShop PrestaShop 1.4 PrestaShop PrestaShop 1.6.0 Recommendations Deploy netwo...

Google Android System Component Multiple Security Vulnerabilities

Description Google Android is prone to multiple security vulnerabilities. An attacker can leverage these issues to gain sensitive information, elevate privileges or execute arbitrary code in the context of a privileged process. Failed attacks may cause a denial-of-service condition. These issues...

Google Android System Component Multiple Security Vulnerabilities

Description Google Android is prone to multiple security vulnerabilities. An attacker can leverage these issues to obtain sensitive information or gain elevated privileges. Failed attacks may cause a denial-of-service condition. These issues are being tracked by Android IDs A-133258003 and...

USN-4193-1: Ghostscript vulnerability

Paul Manfred and Lukas Schauer discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could possibly use this issue to access arbitrary files, execute arbitrary code, or cause...

Windows Error Reporting Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows Error Reporting WER when WER handles and executes files. The vulnerability could allow elevation of privilege if an attacker can successfully exploit it. An attacker who successfully exploited the vulnerability could gain greater access to...

ClipSoft REXPERT XML Injection Vulnerability

ClipSoft REXPERT is a report generation program from ClipSoft Korea. An injection vulnerability exists in ClipSoft REXPERT XML. An attacker can exploit this vulnerability to create and execute arbitrary files via the report printing function...

Design/Logic Flaw

ClipSoft REXPERT 1.0.0.527 and earlier version allows arbitrary file creation and execution via report print function of rexpert viewer with modified XML document. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page...

CVE-2019-1319

An elevation of privilege vulnerability exists in Windows Error Reporting WER when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'...

Windows Error Reporting Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows Error Reporting WER when WER handles and executes files. The vulnerability could allow elevation of privilege if an attacker can successfully exploit it. An attacker who successfully exploited the vulnerability could gain greater access to...

Microsoft Windows Silent Process Exit Persistence

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/file' require 'msf/core/exploit/exe' class MetasploitModule 'Windows Silent Process Exit Persistence', 'Description' = %q Windows allows you to se...

Windows Silent Process Exit Persistence

Windows allows you to set up a debug process when a process exits. This module uploads a payload and declares that it is the debug process to launch when a specified process exits. This module requires Metasploit: https://metasploit.com/download Current source:...

CVE-2019-16317

In Pimcore before 5.7.1, an attacker with limited privileges can trigger execution of a .phar file via a phar:// URL in a filename parameter, because PHAR uploads are not blocked and are reachable within the phar://../../../../../../../../var/www/html/web/var/assets/ directory, a different...