ISS - 'PAM.dll' ICQ Parser Buffer Overflow (Metasploit)

$Id: blackicepamicq.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

CVE-2010-1886

Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 SP2 and R2, and Windows 7 allow local users to gain privileges by leveraging access to a process with NetworkService credentials, as demonstrated by TAPI Server, SQL Server, and IIS processes...

CVE-2010-1886

CVE-2010-1886 represents a local privilege-escalation issue in Windows where an attacker with access to a process running under the NetworkService account can gain LocalSystem privileges via the Windows Service Isolation mechanism. Documented vectors involve the TAPI Server and other services suc...

Microsoft Windows Service Isolation Bypass Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Successful exploits may allow attackers to elevate their privileges from NetworkService to LocalSystem, which would facilitate the complete compromise of affected computers. Technologies Affected Microsoft Windo...

MDaemon directory traversal

Directory traversal on mailing list configuration files allows to access files with LocalSystem privileges...

Apple iTunes for Windows privilege escalation

Application is launched with LocalSystem rights from user-writable folder, allowing DLL spoofing...

ATOK screen lock bypass vulnerability

Overview ATOK from JustSystems Corporation contains a screen lock bypass vulnerability. ATOK from JustSystems Corporation is a software for Japanese Kana-Kanji conversion. ATOK contains an issue with the restriction of launching external applications, which may lead to a screen lock bypass...

Microsoft IIS WebDAV Remote Buffer Overflow (MS03-007; CVE-2003-0109)

The Internet Information Server IIS is a Web server packaged with several versions of the Windows operating system. The server is capable of serving static, as well as dynamic content. Several Microsoft Windows IIS servers support the World Wide Web Distributed Authoring and Versioning WebDAV...

ISS PAM.dll ICQ Parser Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'ISS PAM.dll...

JVN#57040664 ATOK screen lock bypass vulnerability

ATOK from JustSystems Corporation is a software for Japanese Kana-Kanji conversion. ATOK contains an issue with the restriction of launching external applications, which may lead to a screen lock bypass vulnerability. Impact An attacker could execute arbitrary code or program with the privileges ...

SonicWALL Global VPN客户端'RampartSvc'本地特权提升漏洞

Bugraq ID: 35092 CNCAN ID：CNCAN-2009052705 SonicWALL Global VPN Client是一款许移动用户建立到SonicWALL VPN网关安全连接的应用程序。 SonicWALL Global VPN Client安装时设置权限不正确，本地攻击者可以利用漏洞提升特权。 在SonicWALL Global VPN Client安装中，安装文件夹"%ProgramFiles%\SonicWALL\SonicWALL Global VPN...

SonicWALL Global VPN Client Privilege Escalation

SEC Consult Security Advisory ========================================================================== title: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability program: SonicWALL Global VPN Client vulnerable version: Global VPN Client = 4.0.0.835 possibly other versions...

SEC Consult SA-20090525-3 :: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability

SEC Consult Security Advisory 20090525-3 ========================================================================== title: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability program: SonicWALL Global VPN Client vulnerable version: Global VPN Client = 4.0.0.835 possibly other...

Microsoft Windows Vista/2008 - Thread Pool ACL Privilege Escalation

source: https://www.securityfocus.com/bid/34444/info Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow attackers to elevate their privileges to LocalSystem, which would facilitate the complete compromise of affected computers. The issue affects the...

Microsoft Windows Vista2008 - Thread Pool ACL Privilege Escalation

Microsoft Windows Vista2008 - Thread Pool ACL Privilege Escalation source: https://www.securityfocus.com/bid/34444/info Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow attackers to elevate their privileges to LocalSystem, which would facilitate th...

Microsoft Windows XPVista20032008 - WMI Service Isolation Privilege Escalation

Microsoft Windows XPVista20032008 - WMI Service Isolation Privilege Escalation source: https://www.securityfocus.com/bid/34442/info Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow attackers to elevate their privileges to LocalSystem, which would...

Microsoft Windows XP2003 - RPCSS Service Isolation Privilege Escalation

Microsoft Windows XP2003 - RPCSS Service Isolation Privilege Escalation source: https://www.securityfocus.com/bid/34443/info Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow attackers to elevate their privileges to LocalSystem, which would facilita...

Microsoft Windows WMI Service Isolation Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow attackers to elevate their privileges to LocalSystem, which would facilitate the complete compromise of affected computers. The issue affects the following: Windows XP SP2 Windows Server...

Microsoft Windows XP/2003 - RPCSS Service Isolation Privilege Escalation

source: https://www.securityfocus.com/bid/34443/info Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow attackers to elevate their privileges to LocalSystem, which would facilitate the complete compromise of affected computers. The issue affects the...

Microsoft Windows XP/Vista/2003/2008 - WMI Service Isolation Privilege Escalation

source: https://www.securityfocus.com/bid/34442/info Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow attackers to elevate their privileges to LocalSystem, which would facilitate the complete compromise of affected computers. The issue affects the...