108 matches found
Microsoft Windows 7 Kernel - Uninitialized Memory in the Default dacl Descriptor of System Processes Token
Microsoft Windows 7 Kernel - Uninitialized Memory in the Default dacl Descriptor of System Processes Token / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1145 We have observed on Windows 7 32-bit that for unclear reasons, the kernel-mode structure containing the default DACL ...
Dissecting One of APT29’s Fileless WMI and PowerShell Backdoors (POSHSPY)
Mandiant has observed APT29 using a stealthy backdoor that we call POSHSPY. POSHSPY leverages two of the tools the group frequently uses: PowerShell and Windows Management Instrumentation WMI. In the investigations Mandiant has conducted, it appeared that APT29 deployed POSHSPY as a secondary...
Ganglia Web Frontend 3.5.1 - PHP Code Execution
Ganglia Web Frontend 3.5.1 - PHP Code Execution...
Samsung Galaxy S2 World Writeable Directories
Note: I really don't know much about how one writes up vulnerabilities and exploits. I just wanted to root my phone, and found the following apparently previously unknown vulnerabilities. I reported them to Samsung two weeks ago. Affected devices: Vulnerabilities verified on Samsung Galaxy S2 for...
MS Windows NtRaiseHardError Csrss.exe Memory Disclosure Exploit
No description provided by source. ///////////////////////////////////////// ///////////////////////////////////////// ///// Microsoft Windows NtRaiseHardError ///// Csrss.exe memory disclosure ///////////////////////////////////////// ///// Ruben Santamarta ///// ruben at reversemode dot com ///...
Solaris ping buffer overflow
No description provided...
Trendmicro Officesscan privilege escalation
During virus detection help is launched from local system...
DSA-307 gps - multiple vulnerabilities
Bulletin has no description...