97 matches found
CVE-2023-3181
CVE-2023-3181 affects Splashtop Software Updater (uninst.exe). The uninstaller creates a temporary folder at C:\Windows\Temp~nsu.tmp, copies itself as Au_.exe into that folder, and then Au_.exe is launched as SYSTEM on reboot or during an MSI repair via Splashtop Streamer’s Windows Installer. The...
PT-2024-12288 · Splashtop · Splashtop Streamer +1
Name of the Vulnerable Software and Affected Versions: Splashtop Software Updater affected versions not specified Description: The issue concerns the creation of a folder at C:WindowsTempnsu.tmp by the C:Program Files x86SplashtopSplashtop Software Updateruninst.exe process, which copies itself t...
Splashtop Software Updater Security Vulnerability
Splashtop Software Updater is a software update application for Splashtop products from Splashtop USA. Splashtop Software Updater 1.5.6.21 and prior versions are affected by a security vulnerability that originates from allowing a local, unprivileged attacker to elevate system-level privileges an...
Splashtop 8.71.12001.0 Unquoted Service Path
Exploit Title: Splashtop 8.71.12001.0 - Unquoted Service Path Date: 12/20/2022 Exploit Author: A.I. hernandez Version: 8.71.12001.0 Vendor Homepage: https://www.splashtop.com Version: current version Tested on: Windows 10 21H2 Step to discover Unquoted Service Path: C:\wmic service get...
Splashtop 8.71.12001.0 - Unquoted Service Path Vulnerability
Exploit Title: Splashtop 8.71.12001.0 - Unquoted Service Path Exploit Author: A.I. hernandez Version: 8.71.12001.0 Vendor Homepage: https://www.splashtop.com Version: current version Tested on: Windows 10 21H2 Step to discover Unquoted Service Path: C:\wmic service get...
Splashtop 8.71.12001.0 - Unquoted Service Path
Exploit Title: Splashtop 8.71.12001.0 - Unquoted Service Path Date: 12/20/2022 Exploit Author: A.I. hernandez Version: 8.71.12001.0 Vendor Homepage: https://www.splashtop.com Version: current version Tested on: Windows 10 21H2 Step to discover Unquoted Service Path: C:\wmic service get...
Dismantling ZLoader: How malicious ads led to disabled security tools and ransomware
As announced today, Microsoft took action against the ZLoader trojan by working with telecommunications providers around the world to disrupt key ZLoader infrastructure. We used our research into this threat to enrich our protection technologies and ensure this infrastructure could no longer be...
Dismantling ZLoader: How malicious ads led to disabled security tools and ransomware
As announced today, Microsoft took action against the ZLoader trojan by working with telecommunications providers around the world to disrupt key ZLoader infrastructure. We used our research into this threat to enrich our protection technologies and ensure this infrastructure could no longer be...
CVE-2021-42714
Splashtop Remote Client Business Edition through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions...
CVE-2021-42713
Splashtop Remote Client Personal Edition through 3.4.6.1 creates a Temporary File in a Directory with Insecure Permissions...
CVE-2021-42713
Splashtop Remote Client Personal Edition through 3.4.6.1 creates a Temporary File in a Directory with Insecure Permissions...
CVE-2021-42714
Splashtop Remote Client Business Edition through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions...
Directory traversal
Splashtop Remote Client Personal Edition through 3.4.6.1 creates a Temporary File in a Directory with Insecure Permissions...
Directory traversal
Splashtop Remote Client Business Edition through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions...
CVE-2021-42713
Splashtop Remote Client Personal Edition through 3.4.6.1 creates a Temporary File in a Directory with Insecure Permissions...
CVE-2021-42713
CVE-2021-42713 affects Splashtop Remote Client (Personal Edition) up to version 3.4.6.1. The vulnerability stems from the creation of a Temporary File in a directory with insecure permissions, enabling potential local impact. PT-2022-11668 documents this issue and provides a remediation path: upg...
CVE-2021-42714
Splashtop Remote Client Business Edition through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions...
CVE-2021-42714
Summary (CVE-2021-42714) : The vulnerability affects Splashtop Remote Client (Business Edition) , specifically versions 3.4.8.3 and earlier . The root issue is that the software creates a temporary file in a directory with insecure permissions, which could allow inappropriate access to the file c...
CVE-2021-42712
Splashtop Streamer through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions...
CVE-2021-42712
Splashtop Streamer through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions...