152 matches found
CVE-2018-1165
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Joyent SmartOS release-20170803-20170803T064301Z. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...
Disk Pulse Enterprise 10.1.18 - Denial of Service Exploit
Exploit for windows platform in category remote exploits Exploit Title: Disk Pulse Enterprise Server v10.1.18 - DOS, Date: 2017-10-20 Exploit Author: Ahmad Mahfouz Software Link: http://www.diskpulse.com/setups/diskpulsesrvsetupv10.1.18.exe Version: v10.1.18 Category; Windows Remote DOS CVE:...
[SECURITY] Fedora 25 Update: systemd-231-19.fc25
systemd is a system and service manager for Linux, compatible with SysV and LSB init scripts. systemd provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux cgroups,...
[SECURITY] Fedora 26 Update: systemd-233-7.fc26
systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...
Linux System Optimizer and Monitoring: Stacer
System optimizer apps are quite the thing on platforms such as Windows and Android. Their usefulness, however, is debatable considering how notorious they are when it comes to using system resources. Stacer was created to better optimize your Linux PC in the sense that it packs quite the list of...
[SECURITY] Fedora 24 Update: systemd-229-22.fc24
systemd is a system and service manager for Linux, compatible with SysV and LSB init scripts. systemd provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux cgroups,...
The vulnerability of the Service Control Manager (SCM) component in the Android operating system allows a hacker to bypass certificate verification.
The vulnerability of the Service Control Manager SCM component in the Android operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to bypass certificate verification...
EUVD-2017-16499
OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2...
MS15-050: Vulnerability in Service Control Manager could allow elevation of privilege: May 12, 2015
MS15-050: Vulnerability in Service Control Manager could allow elevation of privilege: May 12, 2015 Summary This security update resolves a vulnerability in Windows Service Control Manager SCM. This vulnerability is caused when SCM incorrectly verifies impersonation levels. The vulnerability coul...
systemd: freeze when PID 1 receives a zero-length message over notify socket
A flaw was found in the way systemd handled empty notification messages. A local attacker could use this flaw to make systemd freeze its execution, preventing further management of system services, system shutdown, or zombie process collection via systemd...
systemd: Assertion failure when PID 1 receives a zero-length message over notify socket
A flaw was found in the way systemd handled empty notification messages. A local attacker could use this flaw to make systemd freeze its execution, preventing further management of system services, system shutdown, or zombie process collection via systemd...
emblog file upload vulnerability
emlog is the short form of "Every Memory Log", meaning: a little bit of memory. It is a PHP language and MySQL database based on open source, free, powerful personal or multi-person co-authored blog system blog. PHP and MySQL-based powerful blog and CMS site-building system . A security...
CVE-2016-2409
A Texas Instruments TI haptic kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 25981545...
Design/Logic Flaw
A Qualcomm video kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 26291677...
Code injection
A Texas Instruments TI haptic kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 25981545...
UBUNTU-CVE-2016-2409
A Texas Instruments TI haptic kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 25981545...
CVE-2016-2410
A Qualcomm video kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 26291677...
pfSense Firewall 2.2.6 - Services Cross-Site Request Forgery
pfSense Firewall 2.2.6 - Services Cross-Site Request Forgery Exploit Title: pfSense Firewall Stop NTPD service: Restart NTPD service: POC: input type="submit" value...
Adobe Reader and Acrobat Pro elevation of privilege vulnerability analysis(CVE-2 0 1 5-5 0 9 0)-vulnerability warning-the black bar safety net
0×0 1 Introduction CVE-2 0 1 5-5 0 9 0 is present in the Adobe Reader/Acrobat Pro a bug, and as early as a few months ago has been found and submitted to ZDI. This article is mainly about this bug details, and share several different attack methods. AdobeARMService Adobe updates, in Adobe...
Microsoft Windows Service Control Manager Elevation of Privilege Vulnerability
Microsoft Windows is a popular operating system. A security vulnerability exists in Microsoft Windows that allows authenticated users to run special program elevations of privilege and invoke restricted target SCMs due to a failure of the Service Control Manager to properly calibrate the emulatio...