The vulnerability of the Enterprise Resource Management System “Galaktika ERP” lies in the lack of protection for transmitted data using DCOM technology. This allows attackers to disclose confidential information.

The vulnerability of the GALAXY ERP resource management system is related to the lack of protection for transmitted data using the DCOM technology. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by analyzing network traffic...

The vulnerability of Siemens SIMATIC product software lies in insufficient validation of input data, allowing attackers to execute arbitrary commands with system privileges.

The vulnerability of Siemens SIMATIC software products is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker with network access to the DCOM interface to execute arbitrary commands with system privileges...

CVE-2017-11429

Clever saml2-js 2.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attack to potentially bypass authentication to...

The vulnerability of VMware Workstation’s virtualization platform, related to deficiencies in protection mechanisms for handling COM classes, allows attackers to escalate their privileges.

The vulnerability of VMware Workstation’s virtualization platform is related to deficiencies in protection mechanisms for handling COM classes. Exploiting this vulnerability can allow attackers to gain increased privileges...

prometheus: Stored DOM cross-site scripting (XSS) attack via crafted URL

A stored, DOM based, cross-site scripting XSS flaw was found in Prometheus. An attacker could exploit this by convincing an authenticated user to visit a crafted URL on a Prometheus server, allowing for the execution and persistent storage of arbitrary scripts...

Microsoft Edge Elevation of Privilege Vulnerability (CNVD-2019-16187)

Microsoft Windows 10 and others are operating systems released by Microsoft Corporation USA.Edge is one of the default browsers that comes with the system. An elevation of privilege vulnerability exists in the Microsoft Edge Browser Proxy COM object, which can be exploited by an attacker to eleva...

The vulnerability of the Cisco Web Security Appliance’s web interface allows a hacker to inject arbitrary code into the web page that is uploaded.

The vulnerability of the Cisco Web Security Appliance web interface relates to insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary code into the loaded web page through a specially crafted link using the DOM...

CVE-2018-6076

Insufficient encoding of URL fragment identifiers in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform a DOM based XSS attack via a crafted HTML page...

CVE-2018-8550

An elevation of privilege exists in Windows COM Aggregate Marshaler, aka "Windows COM Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows...

Description of the security update for SharePoint Enterprise Server 2016: November 13, 2018

Description of the security update for SharePoint Enterprise Server 2016: November 13, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities,...

Microsoft Internet Explorer Null Pointer Dereference Vulnerability

Internet Explorer is a web browser from Microsoft. A null pointer dereference vulnerability exists in Microsoft Internet Explorer version 11. The vulnerability is caused due to a NULL pointer dereference access conflict within the 'Tree :: NotifyInvalidateDisplay' function when parsing an...

CVE-2018-9079

For some Iomega, Lenovo, LenovoEMC NAS devices versions 4.1.402.34662 and earlier, adversaries can craft URLs to modify the Document Object Model DOM of the page. In addition, adversaries can inject HTML script tags and HTML tags with JavaScript handlers to execute arbitrary JavaScript with the...

December 9, 2016 — KB3201845 (OS Build 14393.479)

December 9, 2016 — KB3201845 OS Build 14393.479 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Improved the reliability of mobile device management MDM disenrollment, Distributed Componen...

PowerShell Front-End for Windows Debugger Engine: DbgShell

The main impetus for DbgShell is that it’s just waaaay too hard to automate anything in the debugger. There are facilities today to assist in automating the debugger, of course. But in my opinion they are not meeting people’s needs. Using the built-in scripting language is arcane, limited,...

Vulnerability of Microsoft COM components in Windows operating systems, allowing attackers to execute arbitrary code

The vulnerability of the Microsoft Component Object Model COM in Windows operating systems is related to the restoration of a dubious data structure in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file or script...

CVE-2018-8349

A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects, aka "Microsoft COM for Windows Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server...

CVE-2018-0390

A vulnerability in the web framework of Cisco Webex could allow an unauthenticated, remote attacker to conduct a Document Object Model-based DOM-based cross-site scripting XSS attack against the user of the web interface of an affected system. The vulnerability is due to insufficient input...

Exploit for CVE-2017-0213

windows-kernel-exploits 简介 windows-kernel-exploits 漏洞列表 Security Bulletin KB Description Operating System - MS17-017 KB4013081 GDI Palette Objects Local Privilege Escalation windows 7/8 - CVE-2017-8464 LNK Remote Code Execution Vulnerability windows 10/8.1/7/2016/2010/2008 - CVE-2017-0213...

SAP Hana DB, UI5 and UI Cross-Site Scripting Vulnerabilities

SAP Hana DB, UI5, and UI are products of SAP, an in-memory database based on rows and columns.UI5 and UI are JavaScript-based UI libraries that integrate a large number of UI controls. A security vulnerability exists in SAP Hana DB, UI5, and UI that stems from the program's failure to validate us...

DEBIAN-CVE-2017-7818

A use-after-free vulnerability can occur when manipulating arrays of Accessible Rich Internet Applications ARIA elements within containers through the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox 56, Firefox ESR 52.4, and Thunderbird 52.4...