Comodo Dragon Browser - Unquoted Service Path Privilege Escalation

Comodo Dragon Browser - Unquoted Service Path Privilege Escalation Exploit Title: Comodo Dragon Browser Unquoted Service Path Privilege Escalation Date: 24/09/2016 Author: Yunus YILDIRIM @Th3GundY Team: CT-Zer0 @CRYPTTECH Website: http://yildirimyunus.com Contact: [email protected]...

Apache Tomcat packaging on Debian-based distros - Local Root Privilege Escalation

I. VULNERABILITY ------------------------- Apache Tomcat® packaging on Debian-based distros - Local Root Privilege Escalation Affected debian packages: Tomcat 8 = 8.0.36-2 Tomcat 7 = 7.0.70-2 Tomcat 6 = 6.0.45+dfsg-1deb8u1 Ubuntu systems are also affected. See section VII. for details. Other...

AuraDVD Ripper Professional v1.6.3 - DLL Hijacking Exploit

Document Title: =============== AuraDVD Ripper Professional v1.6.3 - DLL Hijacking Exploit References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1966 Release Date: ============= 2016-10-03 Vulnerability Laboratory ID VL-ID: ===================================...

WampServer v3.0.6 - Insecure File Permissions

Document Title: =============== WampServer v3.0.6 - Insecure File Permissions References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1964 Release Date: ============= 2016-09-29 Vulnerability Laboratory ID VL-ID: ==================================== 1964 Common...

Apple OS X AppleUpstreamUserClient Out-Of-Bounds Access Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

USN-3082-1: Linux kernel vulnerability

Chiachih Wu, Yuan-Tsung Lo, and Xuxian Jiang discovered that the legacy ABI for ARM OABI had incomplete access checks for epollwait2 and semtimedop2. A local attacker could use this to possibly execute arbitrary code...

Picosmos Shows 1.6.0 Stack Overflow

Document Title: =============== Picosmos Shows v1.6.0 - Stack Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1936 Release Date: ============= 2016-09-05 Vulnerability Laboratory ID VL-ID: ==================================== 1936...

Picosmos Shows v1.6.0 - Stack Overflow Vulnerability

Document Title: =============== Picosmos Shows v1.6.0 - Stack Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1936 Release Date: ============= 2016-09-04 Vulnerability Laboratory ID VL-ID: ==================================== 1936...

Fortinet FortiClient SSLVPN Local Information Disclosure Vulnerability

Fortinet FortiClient is a personal, integrated protection software. A local information disclosure vulnerability exists in Fortinet FortiClient SSLVPN. A local attacker can exploit the vulnerability to obtain sensitive information, which may lead to further attacks...

AVS Audio Converter 8.2.1 - Buffer Overflow Vulnerability

Document Title: =============== AVS Audio Converter 8.2.1 - Buffer Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1920 Release Date: ============= 2016-08-22 Vulnerability Laboratory ID VL-ID: ====================================...

AVS Audio Converter 8.2.1 - Buffer Overflow Vulnerability

Document Title: =============== AVS Audio Converter 8.2.1 - Buffer Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1920 Release Date: ============= 2016-08-21 Vulnerability Laboratory ID VL-ID: ====================================...

PT-2016-7425 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.7.1 Description: The issue is related to a use-after-free vulnerability in the disk seqf stop function. This vulnerability allows local users to gain privileges by executing a certain stop operation, even if t...

Linux kernel 'perf_event_open()' function local information disclosure vulnerability

Linux kernel is an open source operating system. A local information disclosure vulnerability exists in the Linux kernel 'perfeventopen' function, which allows local attackers to exploit the vulnerability to obtain sensitive information...

The vulnerability of the Linux operating system’s kernel allows a hacker to increase their privileges or cause a service failure.

The vulnerability of the futexrequeue function in the Linux kernel/futex.c file is related to the lack of checks for the presence of two different futex addresses. Exploiting this vulnerability allows a local attacker to enhance their privileges by using the special command FUTEXREQUEUE, or to ga...

Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-pcmcia-modules-2.4.18-1-k6 package of the Debian GNU/Linux operating system may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by malicious individuals locally...

Linux kernel denial of service vulnerability (CNVD-2016-04388)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel. A local attacker can exploit this vulnerability to cause a denial of service out-of-bounds memory access and system cras...

FlashFXP 5.3.0 Memory Corruption

Document Title: =============== FlashFXP v5.3.0 Windows - Memory Corruption Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1853 Release Date: ============= 2016-06-13 Vulnerability Laboratory ID VL-ID: ====================================...

USN-3000-1 linux-lts-utopic vulnerabilities

Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from kernel memory. CVE-2016-2117 Jann Horn discovered that eCryptfs improperly attempted to use...

DEBIAN-CVE-2016-4951

The tipcnlpubldump function in net/tipc/socket.c in the Linux kernel through 4.6 does not verify socket existence, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a dumpit operation...

Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory. In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to take control over the affected system. An...