548 matches found
Privilege escalation in Nortel Contivity VPN Client V05_01.030
Summary: Privilege escalation in Nortel Contivity VPN Client V0501.030 http://www.nortel.com Details: The Contivity VPN Client is a Windows application that lets you define and store connection information for accessing your corporate network through a Contivity Secure IP Services Gateway. When t...
ContivitySystem.txt
Summary: Privilege escalation in Nortel Contivity VPN Client V0501.030 http://www.nortel.com Details: The Contivity VPN Client is a Windows application that lets you define and store connection information for accessing your corporate network through a Contivity Secure IP Services Gateway. When t...
Privilege escalation in BulletProof FTP Server v2.4.0.31
Summary: Privilege escalation in BulletProof FTP Server v2.4.0.31 http://www.bpftpserver.com/ Details: When the BPFTPServer service is installed and running as LocalSystem it is possible to manipulate the administrative interface and escalate privileges to that of the LocalSystem account...
[Full-disclosure] Privilege escalation and password protection bypass in Altiris Client Service for Windows (Version 6.0.88)
Summary: Privilege escalation and password protection bypass in Altiris Client Service for Windows Version 6.0.88 http://www.altiris.com/ Details: It is possible to manipulate the administrative interface of the Altiris Client Service for Windows and escalate privileges to that of the LocalSystem...
Altris deployment solution AClient privilege escalation
It's possible to launch executable with LocalSystem privileges...
BakBone NetVault 7.1 Local Privilege Escalation Exploit
Exploit for unknown platform in category local exploits ======================================================= BakBone NetVault 7.1 Local Privilege Escalation Exploit ======================================================= // ===== Start UnhideNetVaultServiceWindow.c ====== include include int...
BakBone NetVault 7.1 - Local Privilege Escalation
BakBone NetVault 7.1 - Local Privilege Escalation // ===== Start UnhideNetVaultServiceWindow.c ====== include include int main void HWND hWnd; char szWindowName = "C:\Program Files\BakBone Software\NetVault\bin\nvstatsmngr.exe"; printf "Finding window %s\n", szWindowName ; hWnd = FindWindow...
BakBone NetVault 7.1 - Local Privilege Escalation
// ===== Start UnhideNetVaultServiceWindow.c ====== include include int main void HWND hWnd; char szWindowName = "C:\Program Files\BakBone Software\NetVault\bin\nvstatsmngr.exe"; printf "Finding window %s\n", szWindowName ; hWnd = FindWindow NULL, szWindowName ; if hWnd == NULL printf "ERROR!...
Servers Alive servers monitoring tool privilege escalation
With help subsystem it's possible to start application with LocalSystem privileges...
MDaemon privilege escalation
It's possible to run application with LocalSytem privileges...
Mailtraq privilege escalation
It's possible to execute external application with LocalSystem account...
CVE-2002-1230
CVE-2002-1230 affects Windows NT 4.0/Terminal Server Edition, Windows 2000, and Windows XP via NetDDE Agent exploiting a WM_TIMER handling flaw. An untrusted WM_TIMER sequence (after WM_COPYDATA) could trigger arbitrary code execution with LocalSystem privileges, as described in MS02-071. The vul...
[Full-Disclosure] formatstring bug in Compaq HTTP Servers
Hi there There is a formatstring bug in Compaq HTTP Servers. in !.DebugSearchPaths?Url= requests The HTTP server runs with LocalSystem account. Versions: All versions i have tested had this formatstring bug. To be shure that it wasn't allready fixed, i downloaded this new version.. Insight...
BadBlue Remote Administrative Interface Access Vulnerability
BadBlue Remote Administrative Access Vulnerability I. Synopsis Affected Systems: BadBlue 1.7 BadBlue 2.0 BadBlue 2.1 BadBlue 2.2 Immune Systems: BadBlue 2.3 NOTE: BadBlue 1.6 and prior may be impacted; these systems were not tested. Risk: High Remote LocalSystem Compromise Vendor URL:...
Microsoft Security Bulletin MS02-071:Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation (328310)
-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Flaw in Windows WMTIMER Message Handling Could Enable Privilege Elevation 328310 Date: 11 December 2002 Software: Microsoft Windows NT 4.0, Windows 2000, and Windows XP Impact:...
CVE-2002-0869
Unknown vulnerability in the hosting process dllhost.exe for Microsoft Internet Information Server IIS 4.0 through 5.1 allows remote attackers to gain privileges by executing an out of process application that acquires LocalSystem privileges, aka "Out of Process Privilege Elevation."...
CVE-2002-0971
CVE-2002-0971 affects VNC, TightVNC, and TridiaVNC. Local users can run arbitrary code as LocalSystem by abusing the Win32 Messaging System to bypass the VNC GUI and reach the "+Add new clients+" dialogue box. Root cause indicated by vendor descriptions is access through GUI-bypass via messaging ...
CVE-2002-0620
Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote attackers to cause the server to fail or run arbitrary code in the LocalSystem security context via an input field using an affected API...
CVE-2002-0621
Buffer overflow in the Office Web Components OWC package installer used by Microsoft Commerce Server 2000 allows remote attackers to cause the process to fail or run arbitrary code in the LocalSystem security context via certain input to the OWC package installer...
CVE-2002-0373
The Windows Media Device Manager WMDM Service in Microsoft Windows Media Player 7.1 on Windows 2000 systems allows local users to obtain LocalSystem rights via a program that calls the WMDM service to connect to an invalid local storage device, aka "Privilege Elevation through Windows Media Devic...