Windows IPSec Denial of Service Vulnerability

A denial of service vulnerability exists in the way that Windows handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. Note that the denial of service condition would not allow an attacker to execute code or to elevate...

vBulletin cacheTemplates Remote Code Execution (CVE-2017-17672)

A remote code execution vulnerability exists in the vBulletin software package. The vulnerability is due to improper validation of user input .Successful exploitation of this vulnerability will allow execution of arbitrary code on a target system...

Rancher Server - Docker Daemon Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Rancher Server - Docker Exploit', 'Description' = %q Utilizing Rancher Server, an attacker can create a docker container with the '/' path mounte...

Malicious Embedded Executable Downloader

Many campaigns are known to use mail attachments containing double zipped files. A remote attacker could convince users to manually trigger their execution. This would allow the malicious code to run and infect the target system...

Microsoft Windows Search Type Confusion (CVE-2017-8620)

A remote code execution vulnerability exists in the Windows Search service of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target system...

HPE Intelligent Management Center PLAT Arbitrary Code Execution Vulnerability (CNVD-2017-21564)

HPE Intelligent Management Center iMC PLAT is a suite of network intelligent management center solutions from Hewlett Packard Enterprise HPE. The solution provides network-wide visibility and enables comprehensive management of resources, services and users. An arbitrary code execution...

HPE Intelligent Management Center PLAT Arbitrary Code Execution Vulnerability (CNVD-2017-216966)

HPE Intelligent Management Center iMC PLAT is a suite of network intelligent management center solutions from Hewlett Packard Enterprise HPE. The solution provides network-wide visibility and enables comprehensive management of resources, services and users. An arbitrary code execution...

Apple iTunes iPodService Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple iTunes. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the...

Suspicious Executable Containing Ransomware

A malicious executable file was observed as part of different ransomware campaigns. A remote attacker could convince users to manually run it. This would allow the malicious code to run and infect the target system...

(Pwn2Own) Microsoft Windows basicrender WarpKMEscape Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

Microsoft Office Malicious Macros

Microsoft Office files might contain a malicious downloader. A remote attacker could send spam e-mails including those downloaders, and use social engineering in order to convince users to manually enable them. This would allow the malicious code to run and infect the target system...

PDF File Containing Ransomware Downloader

A malicious PDF file containing a downloader was observed as part of Locky ransomware campaign. A remote attacker could send spam e-mails including those PDF files and convince users to open embedded links in them. This would allow the malicious code to run and infect the target system...

Microsoft Windows 88.12012 R2 (x64) - EternalBlue SMB Remote Code Execution (MS17-010)

Microsoft Windows 88.12012 R2 x64 - EternalBlue SMB Remote Code Execution MS17-010 !/usr/bin/python from impacket import smb, ntlm from struct import pack import sys import socket ''' EternalBlue exploit for Windows 8 and 2012 by sleepya The exploit might FAIL and CRASH a target system depended o...

Microsoft Office Remote Code Execution Vulnerability (CNVD-2017-06336)

Microsoft Office is a suite of office software based on the Windows operating system developed by Microsoft. A remote code execution vulnerability exists in Microsoft Office. An attacker can exploit this vulnerability by creating a specially crafted file that executes arbitrary code on the target...

Denial Of Service (DoS)

xstream-core is vulnerable to Denial of Service DoS attacks. The vulnerability is caused when it unmarshals void, and the issue allows a remote attacker to crash the target system...

Suspicious Metadata Mail Phishing Containing Archive Attachment

Suspicious Mail containing archive attachment was observed as part of phishing campaigns. A remote attacker could send spam e-mails including those files. This would allow the malicious code to run and infect the target system...

Suspicious Microsoft Office File Archive Mail Attachment

Many campaigns are known to use mail attachments containing double zipped files. A remote attacker could send e-mails including such files and convince users to manually trigger their execution. This would allow the malicious code to run and infect the target system...

Microsoft Edge Memory Corruption (MS16-145: CVE-2016-7286)

A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to a memory corruption when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption...

Snort Arbitrary Code Execution Vulnerability

Snort is a set of network intrusion prevention software and network intrusion detection software from Snort team. The software provides packet sniffing, packet analysis and packet detection. Snort arbitrary code execution vulnerability. A remote attacker can exploit this vulnerability to execute...

Apache Tomcat 8 / 7 / 6 Privilege Escalation

============================================= - Discovered by: Dawid Golunski - http://legalhackers.com - dawid at legalhackers.com - CVE-2016-5425 - Release date: 10.10.2016 - Revision: 1 - Severity: High ============================================= I. VULNERABILITY -------------------------...