1075 matches found
Microsoft IIS 4/5 SSI Buffer Overrun Privelege Elevation
No description provided by source. source: http://www.securityfocus.com/bid/3190/info A vulnerability exists in Microsoft IIS 4.0 and 5.0 that could allow a user with permission to write content to the IIS server to run any code in Local System context. / jim.c - IIS Server Side Include exploit b...
sash <= 3.7 - Local Buffer Overflow Exploit
No description provided by source. / sash-3.7 buffer overflow in c argyment written by lammat for practice purposes http://grpower.ath.cx [email protected] gdb r -c perl -e 'print Ax10256' The program being debugged has been started already. Start it from the beginning? y or n y Starting program:...
MS14-027: Vulnerability in Windows Shell Handler Could Allow Elevation of Privilege (2962488)
A privilege escalation vulnerability exists on the remote Windows host due to improper handling of file associations. A local attacker could exploit this vulnerability to execute arbitrary code on the remote host under the privileges of the Local System account. C Tenable Network Security, Inc...
[security bulletin] HPSBUX03001 SSRT101382 rev.1 - HP-UX Whitelisting (WLI), Local System Integrity Risk
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04227671 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04227671 Version: 1 HPSBUX03001...
Microsoft Windows NDPROXY Local SYSTEM Privilege Escalation
NDPROXY Local SYSTEM privilege escalation http://www.offensive-security.com Tested on Windows XP SP3 http://www.offensive-security.com/vulndev/ndproxy-local-system-exploit-cve-2013-5065/ Original crash ... null pointer dereference Access violation - code c0000005 !!! second chance !!! 00000038 ??...
NDPROXY Local SYSTEM Privilege Escalation
Usage Info Original crash ... null pointer dereference Access violation - code c0000005 !!! second chance !!! 00000038 ?? ??? from ctypes import from ctypes.wintypes import import os, sys kernel32 = windll.kernel32 ntdll = windll.ntdll GENERICREAD = 0x80000000 GENERICWRITE = 0x40000000...
Mozilla Updater does not lock MAR file after signature verification — Mozilla
Security researcher Seb Patane reported that the Mozilla Updater does not write-lock the MAR update file when it is in use by the Updater. This leaves open the possibility of altering the contents of the MAR file after the signature on the file has been verified as valid but before it has been...
AVAST Universal Core Installer - Multiple Vulnerabilities
Title: ====== AVAST Universal Core Installer - Multiple Vulnerabilities Date: ===== 2013-06-28 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=966 VL-ID: ===== 965 Common Vulnerability Scoring System: ==================================== 4.2 Introduction: =============...
Microsoft Antimalware privilege escalation
It's possible to execute code with local system rights...
Privilege escalation through Mozilla Updater — Mozilla
Security researcher Ash reported an issue with the Mozilla Updater. The Mozilla Updater can be made to load a malicious local DLL file in a privileged context through either the Mozilla Maintenance Service or independently on systems that do not use the service. This occurs when the DLL file is...
Safend Data Protector Multiple Vulnerabilities
Safend Data Protector Multiple Vulnerabilities Client software 3.4.5586.9772: Advisory Link: http://www.reactionpenetrationtesting.co.uk/safend-private-key-log-file.html Details CVE number: CVE-2012-4767 The private key data is in the securitylayer.log file in a directory called "logs.9772". This...
Windows Manage Local Microsoft SQL Server Authorization Bypass
When this module is executed, it can be used to add a sysadmin to local SQL Server instances. It first attempts to gain LocalSystem privileges using the "getsystem" escalation methods. If those privileges are not sufficient to add a sysadmin, then it will migrate to the SQL Server service process...
Immunity Canvas: MS11_080
Name| ms11080 ---|--- CVE| CVE-2011-2005 Exploit Pack| CANVAS Description| MS11-080 Notes| CVE Name: CVE-2011-2005 VENDOR: Microsoft Notes: http://technet.microsoft.com/en-us/security/bulletin/ms11-080 Reliably exploits Windows XP SP3 and 2003 SP2 32/64-bit. When executed, this will get a callbac...
WinXP sp2/sp3 local to mention the right of 0day-vulnerability warning-the black bar safety net
Microsoft WinXP sp2/sp3 local system privilege escalation exploit Process: Added a new job with job ID = 1 Added a new job with job ID = 2 Added a new job with job ID = 3 Added a new job with job ID = 4 Added a new job with job ID = 5 Added a new job with job ID = 6 Added a new job with job ID = ...
Microsoft WinXP sp2/sp3 local system privilege escalation exploit
Exploit for windows platform in category local exploits Microsoft WinXP sp2/sp3 local system privilege escalation exploit Platform: Windows XP SP2/SP3 Type: local Exploit Author: Todor Donev [email protected] Good luck and Have fun!! Kind regards to so sweet baby Tsvetelina Emirska Thank you...
Checkpoint VPN privilege escalation
It's possible to obtain Local System privileges...
Adobe Reader 9.3.4 Multiple Memory Corruption - Security Advisory - SOS-10-003
Adobe Reader 9.3.4 Multiple Memory Corruption - Security Advisory - SOS-10-003 Release Date. 6-Oct-2010 Last Update. - Vendor Notification Date. 26-Jul-2010 Product. Adobe Reader Adobe Acrobat Platform. Microsoft Windows Affected versions. 9.3.4 verified and possibly others. Severity Rating. Medi...
Immunity Canvas: MS10_048
Name| ms10048 ---|--- CVE| CVE-2010-1897 Exploit Pack| CANVAS Description| ms10048 Notes| CVE Name: CVE-2010-1897 VENDOR: Microsoft Notes: Reliably exploits Windows XP through Windows 7 32-bit. When executed, this will get a callback that runs as Local/SYSTEM. This also exploits Windows 7 x64...
Secunia Research: Bournal ccrypt Information Disclosure Security Issue
====================================================================== Secunia Research 22/02/2010 - Bournal ccrypt Information Disclosure Security Issue - ====================================================================== Table of Contents Affected...
Sogou privilege escalation
It's possible to launch explorer with Local System rights...