771 matches found
CVE-2016-10276
An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...
pinfo 0.6.9 - Local Buffer Overflow (PoC)
pinfo 0.6.9 - Local Buffer Overflow PoC Title: pinfo v0.6.9 - Local Buffer Overflow Author: Nassim Asrir Researcher at: Henceforth Author contact: [email protected] || https://www.linkedin.com/in/nassim-asrir-b73a57122/ CVE: N/A Download $ apt-get install pinfo POC For any Question or discussion...
CVE-2014-9114
Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code...
CVE-2017-0306
An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...
CVE-2017-0455
CVE-2017-0455 is an information-disclosure vulnerability in the Qualcomm bootloader that could allow a local malicious app to execute arbitrary code within the bootloader context on affected Android devices (Kernel 3.18). CNVD/OSV entries tie it to Google Pixel devices (Pixel/Pixel XL); Nessus no...
CVE-2016-7621
An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows local users to execute arbitrary code in a privileged context or cause a denial of service...
Privilege escalation
Privilege escalation vulnerability in Lenovo Transition application used in Lenovo Yoga, Flex and Miix systems running Windows allows local users to execute code with elevated privileges...
Privilege escalation
An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...
Privilege escalation
An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...
Privilege escalation
An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...
CVE-2016-6763
CVE-2016-6763 describes a denial-of-service vulnerability in Android’s Telephony stack. A local malicious application could cause a device hang or reboot by feeding the system a specially crafted file. Affected versions include Android 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, and 7.0. The entry notes the...
CVE-2016-8426
An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...
Apport Path Traversal Vulnerability
Ubuntu is a desktop-oriented GNU/Linux operating system developed by Canonical and the Ubuntu Foundation, and Apport is a toolkit that collects and provides feedback on errors information that the operating system finds useful when an application crashes. A path traversal vulnerability exists in...
UBUNTU-CVE-2016-6704
An elevation of privilege vulnerability in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-11-01, and 7.0 before 2016-11-01 could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue ...
Server: Log pollution can potentially lead to local HTML injection
The "download log" functionality in the admin screen is delivering the log in JSON format to the end-user. The file was delivered with an attachment disposition forcing the browser to download the document. However, Firefox running on Microsoft Windows would offer the user to open the data in the...
Microsoft Windows Win32k Elevation of Privilege Vulnerability (CNVD-2016-03103)
Microsoft Windows is a series of operating systems released by the American company Microsoft. The vulnerability exists in the Microsoft Windows kernel mode driver. An elevation of privilege vulnerability exists in the Microsoft Windows kernel mode driver, which arises from a program's failure to...
Cisco Unified Computing System Platform Emulator Command Injection Vulnerability
Cisco Unified Computing System UCS is a set of Cisco's data center architecture platform that includes server hardware, management software, and virtualization support.Cisco UCS Platform Emulator UCSPE is one of the UCS emulators. A command injection vulnerability exists in Cisco UCSPE that stems...
The vulnerability of the MySQL database management system allows a hacker to execute arbitrary code.
The vulnerability of the Client sub-component of the MySQL database management system is related to errors in the code. Exploiting this vulnerability allows a local attacker to execute arbitrary code...
CVE-2004-2300
Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or setgid. If not, then this...
CVE-2004-0603
gzexe in gzip 1.3.3 and earlier will execute an argument when the creation of a temp file fails instead of exiting the program, which could allow remote attackers or local users to execute arbitrary commands, a different vulnerability than CVE-1999-1332...