Lucene search
+L

172 matches found

Symantec
Symantec
added 2010/12/14 12:0 a.m.20 views

Microsoft Windows Consent User Interface Registry Key Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in Consent User Interface. An attacker can exploit this issue to execute arbitrary code with 'LocalSystem' privileges. Successful exploits will result in the complete compromise of affected computers...

Exploits0References1Affected Software7
securityvulns
securityvulns
added 2009/05/27 12:0 a.m.31 views

SEC Consult SA-20090525-3 :: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability

SEC Consult Security Advisory 20090525-3 ========================================================================== title: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability program: SonicWALL Global VPN Client vulnerable version: Global VPN Client = 4.0.0.835 possibly other...

1.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/05/20 12:0 a.m.30 views

stunnel < 4.23 Local Privilege Escalation

The remote host is running stunnel, an application for encrypting arbitrary network connections with SSL. The version of stunnel installed on the remote host, when running as a service, allows a local user to gain LocalSystem privileges due to an unspecified error. C Tenable Network Security, Inc...

7.2CVSS5.5AI score0.00346EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2008/05/01 12:0 a.m.29 views

SNMPc < 7.1.1 UDP Packet Handling Buffer Overflow

The remote host is running SNMPc, a network management application for Windows from Castle Rock Computing. The version of SNMPc installed on the remote host reportedly is affected by a stack-based buffer overflow vulnerability. Using a specially crafted SNMP TRAP packet with an overly long...

10CVSS6.6AI score0.08838EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2008/01/21 12:0 a.m.21 views

BitDefender Update Server HTTP Request Traversal Arbitrary File Access

The version of BitDefender Update Server running on the remote host fails to sanitize request strings of directory traversal sequences, which allows an unauthenticated attacker to read files outside the web server's document directory. Note that the server runs with LocalSystem privileges by...

7.8CVSS5.5AI score0.08531EPSS
Exploits1References2
Prion
Prion
added 2007/08/08 1:17 a.m.22 views

Design/Logic Flaw

Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657...

6.9CVSS6.6AI score0.00756EPSS
Exploits1References10Affected Software1
NVD
NVD
added 2007/08/08 1:17 a.m.18 views

CVE-2007-4191

Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657...

6.9CVSS6.2AI score0.00756EPSS
Exploits1References10
CVE
CVE
added 2007/08/08 1:11 a.m.52 views

CVE-2007-4191

CVE-2007-4191 affects Panda antivirus products (e.g., Panda Platinum Internet Security 2006/2007) where service executables are stored in the installation directory with weak permissions. The vulnerability allows local users to elevate privileges to LocalSystem by modifying executable files such ...

6.9CVSS6.4AI score0.00756EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2007/08/08 1:11 a.m.26 views

CVE-2007-4191

Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657...

6.2AI score0.00756EPSS
Exploits1References10
Packet Storm
Packet Storm
added 2007/08/08 12:0 a.m.36 views

pandaav-local.txt

/ Security Advisory Severity: Medium Title: Panda Antivirus 2008 Local Privileg Escalation Date: 02.08.07 Author: tarkus tarkus at tiifp dot org URL: https://tiifp.org/tarkus Vendor: Panda http://www.pandasoftware.com/ Affected Products: Panda Antivirus 2008 Not Affected Products: - Panda...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/08/03 12:0 a.m.40 views

Panda Antivirus 2008 Local Privileg Escalation &#40;UPS they did it again&#41;

Security Advisory Severity: Medium Title: Panda Antivirus 2008 Local Privileg Escalation Date: 02.08.07 Author: tarkus tarkus at tiifp dot org URL: https://tiifp.org/tarkus Vendor: Panda http://www.pandasoftware.com/ Affected Products: Panda Antivirus 2008 Not Affected Products: - Panda...

0.5AI score
Exploits0
Saint
Saint
added 2007/07/13 12:0 a.m.27 views

RSA Authentication Agent for Web for IIS chunked encoding overflow

Added: 07/13/2007 CVE: CVE-2005-1471 BID: 13524 OSVDB: 16164 Background RSA Authentication Agent For Web for IIS provides access control for applications on IIS web servers. Problem A heap overflow vulnerability when using chunked transfer-encoding allows remote attackers to execute arbitrary...

7.5CVSS7.9AI score0.02634EPSS
Exploits4
Saint
Saint
added 2007/07/13 12:0 a.m.26 views

RSA Authentication Agent for Web for IIS chunked encoding overflow

Added: 07/13/2007 CVE: CVE-2005-1471 BID: 13524 OSVDB: 16164 Background RSA Authentication Agent For Web for IIS provides access control for applications on IIS web servers. Problem A heap overflow vulnerability when using chunked transfer-encoding allows remote attackers to execute arbitrary...

7.5CVSS7.9AI score0.02634EPSS
Exploits4
CVE
CVE
added 2007/02/04 12:0 a.m.58 views

CVE-2007-0436

The CVE-2007-0436 entry concerns Barron McCann X-Kryptor Driver BMS1446HRR used by X-Kryptor Secure Client. The vulnerability arises because the driver does not drop privileges when launching an Explorer window in response to a help command, enabling a local user to gain LocalSystem privileges vi...

4.6CVSS6.5AI score0.00344EPSS
Exploits0References9Affected Software4
NVD
NVD
added 2006/09/09 12:4 a.m.15 views

CVE-2006-4657

Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying 1 WebProxy.exe or 2 PAVSRV51.EXE...

7.2CVSS6.2AI score0.0037EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/09/09 12:0 a.m.23 views

CVE-2006-4657

Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying 1 WebProxy.exe or 2 PAVSRV51.EXE...

6.2AI score0.0037EPSS
Exploits0References7
Saint
Saint
added 2006/07/18 12:0 a.m.54 views

ntdll.dll buffer overflow via IIS 5.0 WebDAV

Added: 07/18/2006 CVE: CVE-2003-0109 BID: 7116 OSVDB: 4467 Background The dynamic link library ntdll.dll is a core component of the Windows operating system. It is used by many operating system components including the WebDAV component of Microsoft IIS. Problem A buffer overflow in ntdll.dll allo...

7.5CVSS7.7AI score0.86396EPSS
Exploits13
Saint
Saint
added 2006/07/18 12:0 a.m.28 views

ntdll.dll buffer overflow via IIS 5.0 WebDAV

Added: 07/18/2006 CVE: CVE-2003-0109 BID: 7116 OSVDB: 4467 Background The dynamic link library ntdll.dll is a core component of the Windows operating system. It is used by many operating system components including the WebDAV component of Microsoft IIS. Problem A buffer overflow in ntdll.dll allo...

7.5CVSS7.7AI score0.86396EPSS
Exploits13
Saint
Saint
added 2006/07/18 12:0 a.m.35 views

ntdll.dll buffer overflow via IIS 5.0 WebDAV

Added: 07/18/2006 CVE: CVE-2003-0109 BID: 7116 OSVDB: 4467 Background The dynamic link library ntdll.dll is a core component of the Windows operating system. It is used by many operating system components including the WebDAV component of Microsoft IIS. Problem A buffer overflow in ntdll.dll allo...

7.5CVSS7.7AI score0.86396EPSS
Exploits13
securityvulns
securityvulns
added 2006/02/15 12:0 a.m.45 views

Microsoft Windows WebClient service buffer overflow

Buffer overflow on RPC based service allows code execution with LocalSystem privileges...

4.2AI score
Exploits0References1
Rows per page
Query Builder