Lucene search
K

22 matches found

Cvelist
Cvelist
added 2024/09/26 8:18 p.m.33 views

CVE-2024-6769 Medium to High Integrity Privilege Escalation in Microsoft Windows

A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a medium integrity process to a high integri...

8.4CVSS0.01071EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/26 8:18 p.m.18 views

CVE-2024-6769 Medium to High Integrity Privilege Escalation in Microsoft Windows

A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a medium integrity process to a high integri...

8.4CVSS6.6AI score0.01071EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2024/09/10 7:0 a.m.348 views

September 10, 2024—KB5043050 (OS Build 17763.6293) - EXPIRED

September 10, 2024—KB5043050 OS Build 17763.6293 - EXPIRED EXPIRATION NOTICEIMPORTANT As of March 31, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. 11/17/20 For...

9.8CVSS7AI score0.70564EPSS
Exploits27
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.122 views

July 9, 2024—KB5040448 (OS Build 10240.20710) - EXPIRED

July 9, 2024—KB5040448 OS Build 10240.20710 - EXPIRED EXPIRATION NOTICEIMPORTANT As of January 27, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 12/8/20 For...

9CVSS7.2AI score0.84345EPSS
Exploits2
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.384 views

July 9, 2024—KB5040437 (OS Build 20348.2582)

July 9, 2024—KB5040437 OS Build 20348.2582 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when ne...

9.8CVSS9.2AI score0.84345EPSS
Exploits7
Kitploit
Kitploit
added 2022/08/12 12:30 p.m.100 views

OffensiveVBA - Code Execution And AV Evasion Methods For Macros In Office Documents

In preparation for a VBS AV Evasion Stream/Video I was doing some research for Office Macro code execution methods and evasion techniques. The list got longer and longer and I found no central place for offensive VBA templates - so this repo can be used for such. It is very far away from being...

8.1AI score
Exploits0References63
ATTACKERKB
ATTACKERKB
added 2022/04/15 12:0 a.m.678 views

CVE-2022-26904

Windows User Profile Service Elevation of Privilege Vulnerability Recent assessments: gwillcox-r7 at March 30, 2022 4:52pm UTC reported: This is a bypass for CVE-2022-21919 which is in turn a bypass for CVE-2021-34484. As noted at https://twitter.com/billdemirkapi/status/1508527492285575172,...

7.8CVSS8.9AI score0.14393EPSS
In wildExploits2References3
Metasploit
Metasploit
added 2022/04/12 5:42 p.m.332 views

User Profile Arbitrary Junction Creation Local Privilege Elevation

The user profile service, identified as ProfSrv, is vulnerable to a local privilege elevation vulnerability in its CreateDirectoryJunction function due to a lack of appropriate checks on the directory structure of the junctions it tries to link together. Attackers can leverage this vulnerability ...

7.8CVSS8.4AI score0.14393EPSS
Exploits2
0day.today
0day.today
added 2022/04/12 12:0 a.m.1670 views

Windows User Profile Service Privlege Escalation Exploit

The user profile service, identified as ProfSrv, is vulnerable to a local privilege elevation vulnerability in its CreateDirectoryJunction function due to a lack of appropriate checks on the directory structure of the junctions it tries to link together. Attackers can leverage this vulnerability ...

7.8CVSS8.9AI score0.14393EPSS
Exploits2
Kitploit
Kitploit
added 2021/09/21 8:30 p.m.24 views

PyHook - An Offensive API Hooking Tool Written In Python Designed To Catch Various Credentials Within The API Call

PyHook is the python implementation of my SharpHook project, It uses various API hooks in order to give us the desired credentials. PyHook Uses frida to inject it's dependencies into the target process Supported Processes Process | API Call | Description | Progress ---|---|---|--- mstsc |...

7.2AI score
Exploits0References3
Packet Storm
Packet Storm
added 2021/04/30 12:0 a.m.733 views

Microsoft Windows UAC Privilege Escalation

Hi @ll, Microsoft still ships Windows with and lets it create user-writable directories below the "Windows" directory %SystemRoot%\ -- despite that, with exception of %SystemRoot%\Temp, they are all used to store DATA and SHOULD have been placed below %ProgramData% alias %SystemDrive%\ProgramData...

0.4AI score
Exploits0
0day.today
0day.today
added 2021/04/26 12:0 a.m.57 views

Windows 10 Wi-Fi Drivers For Intel Wireless Adapters 22.30.0 Privilege Escalation Exploit

Windows 10 Wi-Fi Drivers For Intel Wireless Adapters version 22.30.0 suffer from a privilege escalation vulnerability. Hi @ll, the executable installers version 22.30.0 Latest, published 2/23/2021, for the "Windows® 10 Wi-Fi Drivers for Intel® Wireless Adapters", and , available from are SURPRISE...

7.6AI score
Exploits0
Microsoft KB
Microsoft KB
added 2020/04/09 12:0 a.m.7 views

Unexpected UAC prompt after you install update 2918614 in Windows

Unexpected UAC prompt after you install update 2918614 in Windows This article describes an issue that occurs after you install update 2918614 in Windows 8.1, Windows Server 2012 R2, Windows 8, Windows Server 2012, Windows 7, Windows Server 2008 R2, Windows Vista, or Windows Server 2008. You can...

6.1AI score
Exploits0
The Hacker News
The Hacker News
added 2019/12/11 4:2 p.m.46 views

New Zeppelin Ransomware Targeting Tech and Health Companies

A new variant of Vega ransomware family, dubbed Zeppelin, has recently been spotted in the wild targeting technology and healthcare companies across Europe, the United States, and Canada. However, if you reside in Russia or some other ex-USSR countries like Ukraine, Belorussia, and Kazakhstan,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/09/19 12:0 a.m.68 views

Ubisoft Uplay Desktop Client 63.0.5699.0 Remote Code Execution

Exploit Title: Ubisoft Uplay Desktop Client 63.0.5699.0 - Remote Code Execution Date: 2018-09-01 Exploit Author: Che-Chun Kuo Vulnerability Type: URI Parsing Command Injection Vendor Homepage: https://www.ubisoft.com/en-us/ Software Link: https://uplay.ubi.com/ Version: 63.0.5699.0 Tested on:...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2018/09/18 12:0 a.m.28 views

Ubisoft Uplay Desktop Client 63.0.5699.0 - Remote Code Execution

Ubisoft Uplay Desktop Client 63.0.5699.0 - Remote Code Execution Exploit Title: Ubisoft Uplay Desktop Client 63.0.5699.0 - Remote Code Execution Date: 2018-09-01 Exploit Author: Che-Chun Kuo Vulnerability Type: URI Parsing Command Injection Vendor Homepage: https://www.ubisoft.com/en-us/ Software...

0.1AI score
Exploits0
ThreatPost
ThreatPost
added 2017/10/25 2:3 p.m.8 views

Bad Rabbit Linked to ExPetr/Not Petya Attacks

A link has been confirmed between the Bad Rabbit ransomware outbreak detected yesterday in major organizations in Russia and Ukraine and this summer’s ExPetr/Not Petya attacks. Researchers at Kaspersky Lab said there are “clear ties” between the two attacks though one major piece of the puzzle is...

0.1AI score
Exploits0References5
Microsoft KB
Microsoft KB
added 2017/10/16 12:0 a.m.31 views

August 16, 2017—KB4034661 (OS Build 14393.1613)

August 16, 2017—KB4034661 OS Build 14393.1613 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: This package contains d3dcompiler47.dll; for more information, read the blog post,HLSL, FXC, a...

7.6AI score
Exploits0
Citrix
Citrix
added 2016/08/04 12:0 a.m.9 views

Receiver 4 Upgrade Causing UAC Prompt

This article is intended for Citrix administrators and technical teams only.Non-admin users must contact their company’s Help Desk/IT support team and can refer toCTX297149for more information We are offering Receiver from our SCCM 2012 Self-Service Application Catalog. We followed...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2016/05/13 11:7 a.m.12 views

Petya Ransomware Installs Mischa As Failsafe

The Petya ransomware strain signaled a new escalation for crypto-malware when it surfaced in March. For the first time, ransomware went beyond encrypting files on local and shared drives and instead set its sights on locking up the Master File Table on compromised machines. Petya did have its...

0.3AI score
Exploits0References4
Rows per page
Query Builder