548 matches found
Lenovo ThinkVantage Communications Utility 3.0.42.0 Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Exploit Title: Lenovo ThinkVantage Communications Utility - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 3.0.42.0 Tested on: Windows 7 Professional The Lenovo ThinkVantage Communications...
Lenovo ThinkVantage Communications Utility 3.0.42.0 - Unquoted Service Path Privilege Escalation
Lenovo ThinkVantage Communications Utility 3.0.42.0 - Unquoted Service Path Privilege Escalation Exploit Title: Lenovo ThinkVantage Communications Utility - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 3.0.42.0 Tested on: Windows 7 Professional Th...
Lenovo RapidBoot HDD Accelerator 1.00.0802 - Unquoted Service Path Privilege Escalation
Exploit Title: Lenovo RapidBoot HDD Accelerator - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 1.00.0802 Tested on: Windows 7 Professional The Lenovo RapidBoot HDD Accelerator service is installed with an unquoted service path. This enables a loca...
Wondershare PDFelement Unquoted Service Path Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Exploit Title: Wondershare PDFelement Unquoted Service Path Privilege Escalation Date: 10/14/2016 Author: Saeed Hasanzadeh Net.Hun73r Vendor Homepage: https://www.wondershare.com/ Software Link:...
NO-IP DUC 4.1.1 - Unquoted Service Path Privilege Escalation
NO-IP DUC 4.1.1 - Unquoted Service Path Privilege Escalation ===================================================== NO-IP DUC v4.1.1 - Unquoted Service Path Privilege Escalation ===================================================== Vendor Homepage: http://noip.com Date: 14 Oct 2016 Software Link :...
ATKGFNEXSrv ATKGFNEX 1.0.11.1 - Unquoted Service Path Privilege Escalation
Exploit Title: ATKGFNEXSrv ATKGFNEX- Privilege Escalation Unquoted Service Path vulnerability Date: 13/10/2016 Exploit Author : Cyril Vallicari Vendor Homepage: www.asus.com Version: 1.0.11.1 Tested on: Windows 7 x64 SP1 but it should works on all windows version The application suffers from an...
Wise Care 365 4.27 / Wise Disk Cleaner 9.29 - Unquoted Service Path Privilege Escalation
Exploit Title: Wisecleaner Software Multiple Unquoted Service Path Elevation of Privilege Date: 23/09/2016 Exploit Author: Tulpa Contact: [email protected] Author website: www.tulpa-security.com Vendor Homepage: http://www.wisecleaner.com Software Link:...
SolarWinds Kiwi CatTools 3.11.0 - Unquoted Service Path Privilege Escalation
SolarWinds Kiwi CatTools 3.11.0 - Unquoted Service Path Privilege Escalation Document Title: ================ SolarWinds Kiwi CatTools Unquoted Service Path Privilege Escalation Vulnerability Author: ======== Halil Dalabasmaz Release Date: ============== 29 SEP 2016 Product & Service Introduction...
mySCADAPro 7 Privilege Escalation
mySCADAProv7 Local Privilege Escalation Vendor: mySCADA Technologies s.r.o. Product web page: https://www.myscada.org/ Affected application: myscadaPro Affected version: v7 Current version Vulnerability discovered by: Karn Ganeshen Description: myscadaPro7 application installs seven 8 services. A...
mySCADAPro 7 - Privilege Escalation
Exploit for windows platform in category local exploits mySCADAProv7 Local Privilege Escalation Vendor: mySCADA Technologies s.r.o. Product web page: https://www.myscada.org/ Affected application: myscadaPro Affected version: v7 Current version Vulnerability discovered by: Karn Ganeshen...
mySCADAPro 7 - Local Privilege Escalation
mySCADAProv7 Local Privilege Escalation Vendor: mySCADA Technologies s.r.o. Product web page: https://www.myscada.org/ Affected application: myscadaPro Affected version: v7 Current version Vulnerability discovered by: Karn Ganeshen Description: myscadaPro7 application installs seven 8 services. A...
Wowza Streaming Engine 4.5.0 - Privilege Escalation (1)
Exploit for windows platform in category local exploits Wowza Streaming Engine 4.5.0 Local Privilege Escalation Vendor: Wowza Media Systems, LLC. Product web page: https://www.wowza.com Affected version: Wowza Streaming Engine 4.5.0 build 18676 Wowza Streaming Engine Manager 4.5.0 build 18676...
Interpretation of the Lenovo preinstalled programs LSC of the three CVE high-risk vulnerabilities-vulnerability warning-the black bar safety net
! Lenovo PC comes with the program Lenovo Solution Center LSC once in the last year was broke serious security issues. Recently, the program of the plurality of security lead to a three CVE high-risk vulnerabilities three vulnerabilities allow the attacker to achieve providing the right to operat...
GE Proficy HMI/SCADA CIMPLICITY 8.2 - Local Privilege Escalation
/ Exploit Title: GE Proficy HMI/SCADA CIMPLICITY 8.2 Local Privilege Escalation Exploit0 day Vulnerability Discovery and Exploit Author: Zhou Yu Email: Version: 8.2 Tested on: Windows 7 SP1 X32 CVE : None Vulnerability Description: SERVICECHANGECONFIG Privilege Escalation...
Lenovo Solution Center Arbitrary Code Execution Vulnerability
Lenovo Solution Center LSC is a suite of software from the Chinese company Lenovo that helps users quickly identify the state of system health, network connectivity and overall system security. An arbitrary code execution vulnerability exists in LSC versions prior to 3.3.003. An attacker can...
CVE-2016-5249
Lenovo Solution Center LSC before 3.3.003 allows local users to execute arbitrary code with LocalSystem privileges via vectors involving the LSC.Services.SystemService StartProxy command with a named pipe created in advance and crafted .NET assembly...
CVE-2016-5249
Lenovo Solution Center (LSC) versions before 3.3.003 are affected by CVE-2016-5249, enabling local users to execute arbitrary code with LocalSystem privileges via the LSC.Services.SystemService StartProxy path using a pre-created named pipe and a crafted .NET assembly. The root cause involves a l...
Matrix42 Remote Control Host 3.20.0031 - Unquoted Path Privilege Escalation
Exploit Title: Matrix42 Remote Control Host - Unquoted Path Privilege Escalation Date: 06-05-2016 Exploit Author: Roland C. Redl Vendor Homepage: https://www.matrix42.com/ Software Link: n/a Version: 3.20.0031 Tested on: Windows 7 Enterprise SP1 x64 CVE : n/a 1. Description: sc qc...
Certec EDV atvise SCADA Server 2.5.9 - Local Privilege Escalation
Certec EDV atvise SCADA server 2.5.9 Privilege Escalation Vulnerability Vendor: Certec EDV GmbH Product web page: http://www.atvise.com Affected version: 2.5.9 Summary: atvise scada is based on newest technologies and standards: The visualization in pure web technology as well as a consistent...
Microsoft IExpress DLL Hijacking
Hi @ll, IExpress creates executable installers ° or self-extracting archives for Windows by embedding a .CAB archive and some strings as resources into a copy of the program %SystemRoot%\System32\WExtract.exe. These self-extracting archives/executable installers, especially those made by Microsof...