Lucene search
+L

63 matches found

CNVD
CNVD
added 2021/11/01 12:0 a.m.21 views

Huawei Emui and Magic UI Registration Tampering Vulnerability

Huawei Emui is a mobile operating system developed based on Android.Magic Ui is a mobile operating system developed based on Android. A security vulnerability exists in Huawei Emui and Magic UI, which can be exploited by attackers to modify registry values...

7.5CVSS7.4AI score0.00562EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/11/09 7:52 p.m.24 views

CVE-2020-27977

CapaSystems CapaInstaller before 6.0.101 does not properly assign, modify, or check privileges for an actor who attempts to edit registry values, allowing an attacker to escalate privileges...

7.8AI score0.00333EPSS
Exploits0References1
Prion
Prion
added 2020/05/14 9:15 p.m.14 views

Open redirect

Opto 22 SoftPAC Project Version 9.6 and prior. SoftPACAgent communicates with SoftPACMonitor over network Port 22000. However, this port is open without any restrictions. This allows an attacker with network access to control the SoftPACAgent service including updating SoftPAC firmware, starting ...

6.4CVSS9.1AI score0.01074EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/05/14 8:33 p.m.18 views

CVE-2020-10612

Opto 22 SoftPAC Project Version 9.6 and prior. SoftPACAgent communicates with SoftPACMonitor over network Port 22000. However, this port is open without any restrictions. This allows an attacker with network access to control the SoftPACAgent service including updating SoftPAC firmware, starting ...

9.1AI score0.01074EPSS
Exploits0References1
Veeam
Veeam
added 2020/04/27 12:0 a.m.57 views

How to Limit Parallel Disk Processing in Veeam Agent for Microsoft Windows

Purpose This article documents how to disable or limit parallel disk processing in Veeam Agent for Microsoft Windows. Solution The following registry values can used to control parallel disk processing on the machine where Veeam Agent for Microsoft Windows is installed: To disable parallel disk...

6.7AI score
Exploits0Affected Software1
seebug.org
seebug.org
added 2018/03/23 12:0 a.m.56 views

Windows Kernel 64-bit pool memory disclosure via REG_RESOURCE_LIST registry values (videoprt.sys descriptors)(CVE-2018-0899)

We have discovered a Windows kernel memory disclosure vulnerability through the body of "AllocConfig" registry values of type REGRESOURCELIST corresponding to devices handled by videoprt.sys, which can be found under HKLM\SYSTEM\CurrentControlSet\Enum\\Control\AllocConfig. The vulnerability...

5.4AI score0.02201EPSS
Exploits1
seebug.org
seebug.org
added 2018/03/23 12:0 a.m.68 views

Windows Kernel 64-bit pool memory disclosure via REG_RESOURCE_LIST registry values (CmResourceTypeDevicePrivate entries)(CVE-2018-0898)

We have discovered a Windows kernel memory disclosure vulnerability through the body of "AllocConfig" registry values of type REGRESOURCELIST, which can be found under HKLM\SYSTEM\CurrentControlSet\Enum\\Control\AllocConfig. The vulnerability affects 64-bit versions of Windows 7 to 10. The leak...

5.1AI score0.02201EPSS
Exploits1
CERT
CERT
added 2017/09/13 12:0 a.m.991 views

Microsoft .NET framework SOAP Moniker PrintClientProxy remote code execution vulnerability

Overview The Microsoft .NET framework fails to properly parse WSDL content, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The PrintClientProxy method in the WSDL-parsing component of the Microsoft .NET framework fails to properly...

9.3CVSS8.3AI score0.88698EPSS
Exploits14References2
CNVD
CNVD
added 2017/09/06 12:0 a.m.4 views

McAfee LiveSafe (MLS) Man-in-the-Middle Attack Vulnerability

McAfee livesafe is defense against viruses and malware. A man-in-the-middle attack vulnerability exists in the McAfee livesafe non-certificate authentication mechanism implementation, which can be exploited by a remote attacker to submit a special request to modify Windows registry values...

5.9CVSS6.2AI score0.03176EPSS
Exploits2References1
CERT
CERT
added 2017/04/10 12:0 a.m.3333 views

Microsoft OLE URL Moniker improperly handles remotely-linked HTA data

Overview Microsoft OLE uses the URL Moniker to open application data based on the server-provided MIME type, which can allow an unauthenticated remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft OLE uses the URL Moniker to processes remotely-linked content in ...

9.3CVSS8.4AI score0.99933EPSS
Exploits29References7
Veeam
Veeam
added 2016/09/05 12:0 a.m.27 views

Windows FLR fails with "Failed to create or open file [C:\Windows\system32\config\systemprofile\"

Challenge When attempting to perform a Guest OS File Level Restore from a Windows Filesystem the mount Backup Browser displays the error: The system cannot find the path specified. Failed to create or open file C:\Windows\system32\config\systemprofile...\veeamflr-.flat. Agent failed to process...

6.9AI score
Exploits0Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2015/10/07 12:0 a.m.42 views

Microsoft Internet Explorer CIERegistryHelper::SetSingleValue Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.4CVSS6.3AI score0.07101EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/09/08 12:0 a.m.72 views

Microsoft Internet Explorer ISettingsBroker Sandbox Bypass Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage o...

6.9CVSS6.4AI score0.10714EPSS
Exploits0References1
Kitploit
Kitploit
added 2014/07/09 2:30 a.m.16 views

SysExporter - Grab data from list-view, tree-view, combo box, WebBrowser control, and text-box

SysExporter utility allows you to grab the data stored in standard list-views, tree-views, list boxes, combo boxes, text-boxes, and WebBrowser/HTML controls from almost any application running on your system, and export it to text, HTML or XML file. Here's some examples for data that you can expo...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

HP eSupportDiagnostics 1.0.11 'hpediag.dll' ActiveX Control Multiple Information Disclosure Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/26967/info The HP eSupportDiagnostics ActiveX control is prone to multiple information-disclosure vulnerabilities. An attacker can exploit these issues by enticing an unsuspecting victim to visit a malicious HTML page...

7.1AI score
Exploits0
Veeam
Veeam
added 2014/05/13 12:0 a.m.25 views

Tape Jobs fail with I/O errors or (SCSI) Bus resets

Challenge Failures occur during the File to tape or Backup to tape jobs. The jobname.log shows error messages similar to: error: The request could not be performed because of an I/O device error error: Tape fatal error.\nThe I/O bus was reset Cause Depending on the type of connection, controller ...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2013/11/18 12:0 a.m.20 views

Avira Secure Backup 1.0.0.1 Build 3616 - .reg Buffer Overflow

Avira Secure Backup 1.0.0.1 Build 3616 - .reg Buffer Overflow RCE Security Advisory http://www.rcesecurity.com 1. ADVISORY INFORMATION ----------------------- Product: Avira Secure Backup Vendor URL: www.avira.com Type: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-1...

Exploits7
Veeam
Veeam
added 2013/10/09 12:0 a.m.81 views

How to Change the Settings Related to Veeam Backup & Replication Log Files

Purpose This article documents how to change settings regarding where log files are stored, how large an individual log file may become, and how many generations of log files are retained. Solution Log Files Stored on the Veeam Backup Server The following registry values must be created on the...

6.4AI score
Exploits0Affected Software2
ThreatPost
ThreatPost
added 2012/09/17 8:20 p.m.10 views

Latest IE Zero-Day Flaw Tied to Nitro Hackers and Recent Java Zero-Day Exploits

Security experts are warning enterprise and consumer users to stay away from Internet Explorer until Microsoft issues a patch for a new zero-day vulnerability in the browser. Active exploits have been discovered in the wild and are being linked to Nitro, the same group of hackers from China who...

0.7AI score
Exploits0References5
securityvulns
securityvulns
added 2011/07/18 12:0 a.m.18 views

Dell IT Assistant ActiveX information leakage

readRegVal allows registry values access...

3.8AI score
Exploits0References1Affected Software1
Rows per page
Query Builder