41 matches found
hitmanpro-cgn.cleverbridge.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-485204 Description| Value ---|--- Affected Website:| hitmanpro-cgn.cleverbridge.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Disclosure Standard:| Coordinated Disclosur...
HitmanPro 3.7.15 Build 281 - Kernel Pool Overflow Exploit
Exploit for windows platform in category local exploits Exploit-CVE-2017-6008 The CVE-2017-6008 is a vulnerability in the HitmanPro scan that allows privilege escalation by exploiting a kernel pool buffer overflow. The exploits here use the Quota Process Pointer Overwrite attack as described in t...
HitmanPro 3.7.15 Build 281 - Kernel Pool Overflow
HitmanPro 3.7.15 Build 281 - Kernel Pool Overflow Exploit-CVE-2017-6008 The CVE-2017-6008 is a vulnerability in the HitmanPro scan that allows privilege escalation by exploiting a kernel pool buffer overflow. The exploits here use the Quota Process Pointer Overwrite attack as described in the...
HitmanPro 3.7.15 Build 281 - Kernel Pool Overflow
Exploit-CVE-2017-6008 The CVE-2017-6008 is a vulnerability in the HitmanPro scan that allows privilege escalation by exploiting a kernel pool buffer overflow. The exploits here use the Quota Process Pointer Overwrite attack as described in the Tarjei Mandt's paper Also, the exploits use my Pool...
Sophos HitmanPro.Alert solution and Sophos Clean SurfRight HitmanPro security vulnerabilities
Sophos HitmanPro.Alert solution and Sophos Clean are both virus protection software from Sophos UK.SurfRight HitmanPro is one of the malware scanning tools available. A security vulnerability exists in versions prior to SurfRight HitmanPro 3.7.20 Build 286 in Sophos HitmanPro.Alert solution and...
Sophos HitmanPro.Alert solution and Sophos Clean SurfRight HitmanPro denial of service vulnerabilities
Sophos HitmanPro.Alert solution and Sophos Clean are both virus protection software from Sophos UK.SurfRight HitmanPro is one of the malware scanning tools available. A security vulnerability exists in hitmanpro37.sys in versions prior to SurfRight HitmanPro 3.7.20 Build 286 in Sophos...
Sophos HitmanPro.Alert solution and Sophos Clean SurfRight HitmanPro local elevation of privilege vulnerabilities
Sophos HitmanPro.Alert solution and Sophos Clean are both virus protection software from Sophos UK.SurfRight HitmanPro is one of the malware scanning tools available. A security vulnerability exists in hitmanpro37.sys in versions prior to SurfRight HitmanPro 3.7.20 Build 286 in Sophos...
CVE-2017-6008
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to escalate privileges via a malformed IOCTL call...
CVE-2017-7441
In Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean, a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical informatio...
Buffer overflow
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to crash the OS via a malformed IOCTL call...
Design/Logic Flaw
In Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean, a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical informatio...
Buffer overflow
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to escalate privileges via a malformed IOCTL call...
CVE-2017-6008
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to escalate privileges via a malformed IOCTL call...
CVE-2017-7441
In Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean, a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical informatio...
CVE-2017-6007
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to crash the OS via a malformed IOCTL call...
CVE-2017-6007
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to crash the OS via a malformed IOCTL call...
CVE-2017-7441
In Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean, a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical informatio...
CVE-2017-6008
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to escalate privileges via a malformed IOCTL call...
CVE-2017-6007
CVE-2017-6007 describes a kernel pool overflow in the driver hitmanpro37.sys used by Sophos SurfRight HitmanPro (and HitmanPro.Alert/Sophos Clean). The vulnerability allows a local attacker to crash the operating system via a malformed IOCTL call. Affected software is HitmanPro before 3.7.20 Buil...
CVE-2017-7441
Affected software: Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in HitmanPro.Alert and Sophos Clean). Vulnerability mechanism: crafted IOCTL with code 0x22E1C0 may cause kernel data leaks at the driver level, potentially exposing information such as nt!ExpPoolQuotaCookie. Impact: ...