4561 matches found
Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2019-0984)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2019-0959)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
KLA11493 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, execute arbitrary code, obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of...
KB4503293: Windows 10 Version 1903 June 2019 Security Update
The remote Windows host is missing security update 4503293. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege exists in Windows Audio Service. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges...
undertow: leak credentials to log files UndertowLogger.REQUEST_LOGGER.undertowRequestFailed
A vulnerability was found in Undertow web server before 2.0.21. An information exposure of plain text credentials through log files because Connectors.executeRootHandler:402 logs the HttpServerExchange object at ERROR level using UndertowLogger.REQUESTLOGGER.undertowRequestFailedt, exchange...
CVE-2019-12210
In Yubico pam-u2f 1.0.7, when configured with debug and a custom debug log file is set using debugfile, that file descriptor is not closed when a new process is spawned. This leads to the file descriptor being inherited into the child process; the child process can then read from and write to it...
IBM PureApplication System Information Disclosure Vulnerability (CNVD-2019-17144)
IBM PureApplication System is a platform system from IBM USA designed for transactional Web and database applications. The system is capable of handling workloads and can be maintained and updated from a single console for all configurations. An information disclosure vulnerability exists in IBM...
Axessh 4.2 - Log file name Local Stack-based Buffer Overflow
Axessh 4.2 - Log file name Local Stack-based Buffer Overflow Title: Axessh 4.2 - 'Log file name' Local Stack-based Buffer Overflow Date: May 23rd, 2019 Author: Uday Mittal https://github.com/yaksas443/YaksasCSC-Lab/ Vendor Homepage: http://www.labf.com Software Link:...
Axessh 4.2 - (Log file name) Local Stack-based Buffer Overflow Exploit
Exploit for windows platform in category local exploits Title: Axessh 4.2 - 'Log file name' Local Stack-based Buffer Overflow Date: May 23rd, 2019 Author: Uday Mittal https://github.com/yaksas443/YaksasCSC-Lab/ Vendor Homepage: http://www.labf.com Software Link:...
Improper access control
Yeelight Smart AI Speaker 3.3.100074 devices have improper access control over the UART interface, allowing physical attackers to obtain a root shell. The attacker can then exfiltrate the audio data, read cleartext Wi-Fi credentials in a log file, or access other sensitive device and user...
CVE-2018-20007
CVE-2018-20007 affects Yeelight Smart AI Speaker version 3.3.10_0074. The vulnerability is due to improper access control over the UART interface, enabling a physical attacker to obtain a root shell and then exfiltrate audio data, read cleartext Wi‑Fi credentials in a log file, or access other se...
Denial Of Service
389-ds-base is vulnerable to denial of serviceDoS attacks. This is because the lock controlling the error log is not correctly used when re-opening the log file in logerroremergency. An attacker could send a flood of modifications to a very large DN which may lead slapd to crash...
Improper Access Control
foreman is vulnerable to improper access control. A remote, authenticated attacker with access to the foreman log file could exploit the flawed Log Handler component to view passwords for provisioned systems in the log file, allowing them to access those systems...
Axessh 4.2 - Log file name Denial of Service (PoC)
Axessh 4.2 - Log file name Denial of Service PoC Exploit Title: Axessh 4.2 'Log file name' - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2019-05-14 Vendor Homepage: http://www.labf.com Software Link: http://www.labf.com/download/axessh.exe Tested Version: 4.2 Tested on:...
Axessh 4.2 - (Log file name) Denial of Service Exploit
Exploit Title: Axessh 4.2 'Log file name' - Denial of Service PoC Discovery by: Victor Mondragón Vendor Homepage: http://www.labf.com Software Link: http://www.labf.com/download/axessh.exe Tested Version: 4.2 Tested on: Windows 7 Service Pack 1 x32 Steps to produce the crash: 1.- Run python code:...
candlepin: credentials exposure through log files
It was discovered that a world-readable log file, belonging to the Candlepin component of Red Hat Satellite 6.4, leaked the credentials of the Candlepin database. A malicious user with local access to a Satellite host can use those credentials to modify the database and prevent Satellite from...
Easy WP SMTP v1. 3. 9)0 day vulnerability is being attacked in the process and reproducibility-vulnerability warning-the black bar safety net
Foreword Your own blog site with wordpres hosting, last month found some abnormalities. 3.12 days, the mailbox explosion, received more than 100 letter on the site is the blasting of the notification mail. ! Day to see also not strange, because before it appeared such a situation, every day there...
How to enable debug logging for Citrix WEM Cloud Authentication Service and Citrix WEM Cloud Messaging Service on Cloud Connectors
The Workspace Environment Management WEM service is a Citrix Workspace product. Similar to on-premise WEM, the WEM Service Agent needs to connect to the WEM service Broker. In order to do so, the WEM Service Agent must first request the WEM service Broker's URL and a service key from a Citrix Clo...
CVE-2019-7404
An issue was discovered on LG GAMP-7100, GAPM-7200, and GAPM-8000 routers. An unauthenticated user can read a log file via an HTTP request containing its full pathname, such as http://192.168.0.1/var/gapm7100$today'sdate.log for reading a filename such as gapm7100190101.log...
CVE-2019-7404
CVE-2019-7404 affects LG GAMP-7100, GAPM-7200, and GAPM-8000 routers. An unauthenticated user can read a log file by issuing an HTTP request that includes the file’s full pathname (for example, http://192.168.0.1/var/gapm7100_${today’s_date}.log). The connected Red Hat and CVE records reiterate t...