Lucene search
K

85 matches found

Cvelist
Cvelist
added 2017/08/08 9:0 p.m.21 views

CVE-2017-8593

Microsoft Win32k in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to properly handle objects in memory, ak...

7.7AI score0.01025EPSS
Exploits0References3
Prion
Prion
added 2017/06/15 1:29 a.m.24 views

Information disclosure

The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application. aka...

1.9CVSS4.7AI score0.0511EPSS
Exploits38References3Affected Software4
0day.today
0day.today
added 2017/05/19 12:0 a.m.401 views

Microsoft Windows 8 / 2012 R2 (x64) - EternalBlue SMB Remote Code Execution (MS17-010) Exploit

Exploit for windows platform in category remote exploits !/usr/bin/python from impacket import smb from struct import pack import os import sys import socket ''' EternalBlue exploit for Windows 8 and 2012 by sleepya The exploit might FAIL and CRASH a target system depended on what is overwritten...

9.3CVSS0.9923EPSS
Exploits55
exploitpack
exploitpack
added 2017/05/17 12:0 a.m.57 views

Microsoft Windows 88.12012 R2 (x64) - EternalBlue SMB Remote Code Execution (MS17-010)

Microsoft Windows 88.12012 R2 x64 - EternalBlue SMB Remote Code Execution MS17-010 !/usr/bin/python from impacket import smb, ntlm from struct import pack import sys import socket ''' EternalBlue exploit for Windows 8 and 2012 by sleepya The exploit might FAIL and CRASH a target system depended o...

8.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/05/17 12:0 a.m.158 views

Microsoft Windows 8/8.1/2012 R2 (x64) - 'EternalBlue' SMB Remote Code Execution (MS17-010)

!/usr/bin/python from impacket import smb, ntlm from struct import pack import sys import socket ''' EternalBlue exploit for Windows 8 and 2012 by sleepya The exploit might FAIL and CRASH a target system depended on what is overwritten The exploit support only x64 target EDB Note: Shellcode - x64...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/03/14 12:0 a.m.88 views

MS17-009: Security Update for Microsoft Windows PDF Library (4010319)

The remote Windows host is missing a security update. It is, therefore, affected by a remote code execution vulnerability in the Windows PDF Library due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit this vulnerability, by convincing a user to open a...

7.6CVSS8.4AI score0.34017EPSS
Exploits0References2
Citrix
Citrix
added 2017/02/10 12:0 a.m.9 views

How to Configure SAML- Introduction?

SAML is an XML-based open standard which enables authentication of users across products or organizations. SAML is used by identity providers such as Google and by identity and authentication products such as Microsoft AD FS, Ping Identity, CA SiteMinder and more. Citrix customers wish to use...

7.2AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/14 12:0 a.m.89 views

LSASS SMB NTLM Exchange Remote Memory Corruption

MS16-137: LSASS Remote Memory Corruption Advisory Title: LSASS SMB NTLM Exchange Remote Memory Corruption Version: 1.0 Issue type: Null Pointer Dereference Authentication: Pre-Authenticated Affected vendor: Microsoft Release date: 8/11/2016 Discovered by: Laurent GaffiAc Advisory by: Laurent...

6.8CVSS0.64817EPSS
Exploits2
Veeam
Veeam
added 2016/11/09 12:0 a.m.18 views

CID Mismatch in VMware on Restore with Backup and Replication V9 installed on Server 2008R2

Challenge Upon restore using Veeam Backup and Replication V9X you receive a CID mismatch error when you are on vSphere 5.5 Update 3b Cause This is a known issue with restoring with the option to use VM tags is enabled in vSphere 5.5 Update 3b Solution Known workarounds: 1. Upgrade Backup and...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/11/08 12:0 a.m.71 views

MS16-140: Security Update for Boot Manager (3193479)

The remote Windows host is missing a security update. It is, therefore, affected a security bypass vulnerability in Windows Secure Boot due to the use of an insecure boot policy in firmware. A local attacker can exploit this issue to disable code integrity checks, allowing test-signed executables...

7.5CVSS7.7AI score0.06199EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/09/13 12:0 a.m.124 views

MS16-114: Security Update for Windows SMBv1 Server (3185879)

The remote Windows host is missing a security update. It is, therefore, affected by a remote code execution vulnerability in the Microsoft Server Message Block 1.0 SMBv1 Server due to improper handling of certain requests. An authenticated, remote attacker can exploit this, via specially crafted...

9CVSS7.9AI score0.32458EPSS
Exploits0References2
seebug.org
seebug.org
added 2016/07/15 12:0 a.m.91 views

MS16-032 Secondary Logon Handle local mention the right vulnerability

No description provided by source. This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/payloadgenerator' require 'msf/core/exploit/powershell' require 'rex' class MetasploitModule...

7.2CVSS7.8AI score0.37164EPSS
Exploits14
0day.today
0day.today
added 2016/07/13 12:0 a.m.89 views

Microsoft Windows 7 < 10 / 2008 < 2012 (x86/x64) - Secondary Logon Handle Privilege Escalation

Exploit for windows platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/payloadgenerator' require 'msf/core/exploit/powershell' require 'rex' class...

7.2CVSS0.3AI score0.37164EPSS
Exploits14
Packet Storm
Packet Storm
added 2016/07/12 12:0 a.m.527 views

MS16-032 Secondary Logon Handle Privilege Escalation

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/payloadgenerator' require 'msf/core/exploit/powershell' require 'rex' class MetasploitModule 'MS16-032 Secondary Logon Handle Privile...

7.2CVSS0.9AI score0.37164EPSS
Exploits14
Metasploit
Metasploit
added 2016/06/21 6:56 p.m.316 views

MS16-032 Secondary Logon Handle Privilege Escalation

This module exploits the lack of sanitization of standard handles in Windows' Secondary Logon Service. The vulnerability is known to affect versions of Windows 7-10 and 2k8-2k12 32 and 64 bit. This module will only work against those versions of Windows with Powershell 2.0 or later and systems wi...

7.8CVSS7.7AI score0.37164EPSS
Exploits14
Tenable Nessus
Tenable Nessus
added 2016/06/14 12:0 a.m.157 views

MS16-075: Security Update for Windows SMB Server (3164038)

The remote Windows host is missing a security update. It is, therefore, affected by an elevation of privilege vulnerability in the Microsoft Server Message Block SMB server when handling forwarded credential requests that are intended for another service running on the same host. An authenticated...

7.8CVSS8.1AI score0.43493EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2016/05/11 12:0 a.m.298 views

MS KB3155527: Update to Cipher Suites for FalseStart

The remote Windows host is affected by a cipher downgrade vulnerability in FalseStart due to allowing TLS clients to send application data before receiving and verifying the server 'Finished' message. A man-in-the-middle attacker can exploit this to force a TLS client to encrypt the first flight ...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/04/12 12:0 a.m.37 views

MS16-040: Security Update for Microsoft XML Core Services (3148541)

The remote Windows host is affected by a remote code execution vulnerability in the Microsoft XML Core Services MSXML parser due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this vulnerability, by convincing a user to visit a specially-crafted...

9.3CVSS8.7AI score0.15709EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/11/10 12:0 a.m.119 views

MS15-112: Cumulative Security Update for Internet Explorer (3104517)

The version of Internet Explorer installed on the remote host is missing Cumulative Security Update 3104517. It is, therefore, affected by multiple vulnerabilities, the majority of which are remote code execution vulnerabilities. An unauthenticated, remote attacker can exploit these issues by...

9.3CVSS8.8AI score0.31029EPSS
Exploits7References26
Tenable Nessus
Tenable Nessus
added 2015/11/10 12:0 a.m.41 views

MS15-120: Security Update for IPSec to Address Denial of Service (3102939)

The remote Windows host is affected by a denial of service vulnerability in the Internet Protocol Security IPSec service due to improper handling of encryption negotiation. An authenticated, remote attacker can exploit this, via a malicious application, to cause the host to become unresponsive. C...

6.8CVSS5.6AI score0.0779EPSS
Exploits0References2
Rows per page
Query Builder