DEBIAN-CVE-2016-7094

Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update...

BIOS EFI Driver SMM Code Execution Vulnerability - Lenovo Support MY

No description provided...

Fingerprint Validity Driver and Synaptics Fingerprint Driver Information Disclosure - Lenovo Support US

No description provided...

Fingerprint Validity Driver and Synaptics Fingerprint Driver Information Disclosure

Lenovo Security Advisory: LEN-4281 Potential Impact: Disclosure of biometric data Severity: Low Summary Description: A vulnerability has been identified in two drivers associated with biometric fingerprint scanners used on some Lenovo systems that could allow an attacker with local administrative...

McAfee VirusScan Enterprise Security Bypass Vulnerability (Jun 2016)

McAfee VirusScan Enterprise is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2016-5338

The 1 espregread and 2 espregwrite functions in hw/scsi/esp.c in QEMU allow local guest OS administrators to cause a denial of service QEMU process crash or execute arbitrary code on the QEMU host via vectors related to the information transfer buffer...

Design/Logic Flaw

The McAfee VirusScan Console mcconsol.exe in McAfee VirusScan Enterprise 8.8.0 before Hotfix 1123565 8.8.0.1546 on Windows allows local administrators to bypass intended self-protection rules and unlock the console window by closing registry handles...

CVE-2015-8551

The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to hit BUG conditions and cause a denial of service NULL pointer dereference and host OS crash by leveraging a system with access to a...

CVE-2016-3984

The McAfee VirusScan Console mcconsol.exe in McAfee Active Response MAR before 1.1.0.161, Agent MA 5.x before 5.0.2 Hotfix 1110392 5.0.2.333, Data Exchange Layer 2.x DXL before 2.0.1.140.1, Data Loss Prevention Endpoint DLPe 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control MDC 9.3...

CVE-2016-3984

The McAfee VirusScan Console mcconsol.exe in McAfee Active Response MAR before 1.1.0.161, Agent MA 5.x before 5.0.2 Hotfix 1110392 5.0.2.333, Data Exchange Layer 2.x DXL before 2.0.1.140.1, Data Loss Prevention Endpoint DLPe 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control MDC 9.3...

CVE-2016-2243

Sure Start on HP Commercial PCs 2015 allows local users to cause a denial of service BIOS recovery failure by leveraging administrative access...

Powershell Penetration Testing Framework: Pentestly

Python Powershell penetration testing framework Pentestly is a combination of expanding Python tools designed for use in penetration tests. The goal is to utilize a familiar user interface while making contributions to the framework easy with the power of Python. Current features Import NMAP XML...

Microsoft LAPS Tool Addresss Local Admin Password Problem

Microsoft’s release last week of the Local Administrator Password Solution LAPS takes some steps to address an old question of what to do with local admin passwords, but doesn’t provide a complete answer, experts said. Windows admins have long used a common local account with the same password on...

generic win32 - add new local administrator 326 bytes

No description provided by source. / Title: generic win32 - add new local administrator 326 bytes Author: Anastasios Monachos secuid0 - anastasiosmatgmaildotcom Method: Dynamic opcode, encoded shellcode Tested on: WinXP Pro SP3 EN 32bit - Build 2600.100427-1636 and Build 2600.080413-2111 Greetz:...

win32/xp pro sp3 (EN) 32-bit - add new local administrator 113 bytes

No description provided by source. / Title: win32/xp pro sp3 EN 32-bit - add new local administrator 113 bytes Author: Anastasios Monachos secuid0 - anastasiosmatgmaildotcom Method: Hardcoded opcodes kernel32.winexec@7c8623ad, kernel32.exitprocess@7c81cafa Tested on: WinXP Pro SP3 EN 32bit - Buil...

CVE-2014-2599

The HVMOPsetmemaccess HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service CPU consumption by leveraging access to certain service domains for HVM guests and a large input...

AVAST Universal Core Installer - Multiple Vulnerabilities

Document Title: =============== AVAST Universal Core Installer - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=966 Release Date: ============= 2013-06-27 Vulnerability Laboratory ID VL-ID: ==================================== 9...

Zyxel NBG5715 Local admin privileges bypass Vulnerability

Exploit for linux/mips platform in category local exploits ================================================================================================== | | | | / || '|\ \ /\ / /\ / /| '|\ \ /\ / /\ / /| '|\ \ /\ / /\ / / | | || | \ V V / Vendor: ZyXEL Products Affected: NBG5715...

Safend Data Protector Multiple Vulnerabilities

Safend Data Protector Multiple Vulnerabilities Client software 3.4.5586.9772: Advisory Link: http://www.reactionpenetrationtesting.co.uk/safend-private-key-log-file.html Details CVE number: CVE-2012-4767 The private key data is in the securitylayer.log file in a directory called "logs.9772". This...

Windows Gather Privileges Enumeration

This module will print if UAC is enabled, and if the current account is ADMIN enabled. It will also print UID, foreground SESSION ID, is SYSTEM status and current process PRIVILEGES. This module requires Metasploit: https://metasploit.com/download Current source:...