47 matches found
Design/Logic Flaw
An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume the privileges of the process, and they may delete or otherwise on unauthorized...
Design/Logic Flaw
An Executable Hijacking condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.5.3.1. Attackers may load a malicious copy of a Dependency Link Library DLL via a local attack vector instead of the DLL that the application was expecting, when processes are running with...
CVE-2023-28141 NTFS Junction
An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume the privileges of the process, and they may delete or otherwise on unauthorized...
CVE-2023-28141
The CVE-2023-28141 issue affects Qualys Cloud Agent for Windows prior to version 4.8.0.31 and is caused by an NTFS Junction condition. An attacker with local access can write files to arbitrary locations, potentially escalating to the privileges of the agent process and modifying or deleting sens...
CVE-2023-28140 Executable Hijacking
An Executable Hijacking condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.5.3.1. Attackers may load a malicious copy of a Dependency Link Library DLL via a local attack vector instead of the DLL that the application was expecting, when processes are running with...
CVE-2023-28140 Executable Hijacking
An Executable Hijacking condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.5.3.1. Attackers may load a malicious copy of a Dependency Link Library DLL via a local attack vector instead of the DLL that the application was expecting, when processes are running with...
New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability
Cybersecurity researchers have discovered an entirely new attack vector that enables adversaries to exploit the Log4Shell vulnerability on servers locally by using a JavaScript WebSocket connection. "This newly-discovered attack vector means that anyone with a vulnerable Log4j version on their...
CVE-2021-26826
A stack overflow issue exists in Godot Engine up to v3.2 and is caused by improper boundary checks when loading .TGA image files. Depending on the context of the application, attack vector can be local or remote, and can lead to code execution and/or system crash...
CVE-2021-26826
A stack overflow issue exists in Godot Engine up to v3.2 and is caused by improper boundary checks when loading .TGA image files. Depending on the context of the application, attack vector can be local or remote, and can lead to code execution and/or system crash...
CVE-2021-1647 Microsoft Windows Defender Zero-Day Vulnerability
Microsoft Defender Remote Code Execution Vulnerability Recent assessments: cdelafuente-r7 at January 13, 2021 3:55pm UTC reported: No useful information has been published so far and most of the speculations found online are based on the CVSS 3.0 metrics found in the advisory. That said, the atta...
PT-2020-1990 · Cisco +1 · Cisco Fxos +1
Name of the Vulnerable Software and Affected Versions: Cisco FXOS Software affected versions not specified Description: A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with a...
Design/Logic Flaw
mgetty prior to 1.2.1 is affected by: out-of-bounds read. The impact is: DoS, the program may crash if the memory is not mapped. The component is: putwhitespan in g3/pbm2g3.c. The attack vector is: Local, the victim must open a specially crafted file. The fixed version is: 1.2.1...
Security Bulletin: Dirty COW Vulnerability (CVE-2016-5195)
Question Security Bulletin: Dirty COW Vulnerability CVE-2016-5195 Answer Summary A vulnerability has been found in the Linux kernel. An attacker could exploit the vulnerability to increase their privileges on the system. Vulnerability Details CVEID: CVE-2016-5195 DESCRIPTION: A race condition was...
Solarwinds LEM 6.3.1 Hardcoded Credentials Vulnerability
Exploit for linux platform in category local exploits Title: Solarwinds LEM Hardcoded Credentials Advisory ID: KL-001-2017-015 Publication Date: 2017.07.06 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-015.txt 1. Vulnerability Details Affected Vendor: Solarwinds...
Solarwinds LEM Hardcoded Credentials
Vulnerability Details Affected Vendor: Solarwinds Affected Product: Log and Event Manager Virtual Appliance Affected Version: v6.3.1 Platform: Embedded Linux CWE Classification: CWE-798: Use of Hard-coded Credentials Impact: Unintended Access Attack vector: Local 2. Vulnerability Description The...
Reason Core Security 1.1.2 Privilege Escalation Vulnerability
Reason Core Security version 1.1.2 suffers from an unquoted service path privilege escalation vulnerability. ===================================================== Exploit Title : Reason Core Security - Unquoted Service Path Privilege Escalation Affected Products: Reason Core Security v1.1.2 -...
Git-1.9.5 ssh-agent.exe Buffer Overflow Exploit
Exploit for windows platform in category dos / poc Vendor: ================================ git-scm.com Product: ================================ Git-1.9.5-preview20150319.exe github.com/msysgit/msysgit/releases/tag/Git-1.9.5-preview20150319 Vulnerability Type: =================== Buffer Overflow...
CVE-2011-1680
CVE-2011-1680 concerns ncpmount in ncpfs 2.2.6 and earlier, where the /etc/mtab~ lock file is not removed after a failed attempt to add a mount entry. The entry notes unspecified impact and local attack vectors. Connected sources also indicate this issue is addressed alongside related CVEs (CVE-2...
TheGreenBow VPN Client Local Stack Overflow Vulnerability - Security Advisory - SOS-10-001
TheGreenBow VPN Client Local Stack Overflow Vulnerability - Security Advisory - SOS-10-001 Release Date. 21-Jan-2010 Vendor Notification Date. 11-Dec-2009 Product. TheGreenBow VPN Client Platform. Microsoft Windows Affected versions. 4.65.003, 4.51.001 verified and possibly others. Severity Ratin...
Authorization
The Install component in IBM DB2 9.5 before FP5 and 9.7 before FP1 configures the High Availability HA scripts with incorrect file-permission and authorization settings, which has unknown impact and local attack vectors...