CVE-2026-21419

Dell Display and Peripheral Manager Windows versions prior to 2.2 contain an Improper Link Resolution Before File Access 'Link Following' vulnerability in the Installer and Service. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of...

EUVD-2021-10140

Malware in sbrugna...

EUVD-2020-27050

Malware in sbrugna...

EUVD-2015-2464

Malware in sbrugna...

CVE-2021-23022

On version 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1, the BIG-IP Edge Client Windows Installer Service's temporary folder has weak file and folder permissions. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2020-5896

On versions 7.1.5-7.1.9, the BIG-IP Edge Client's Windows Installer Service's temporary folder has weak file and folder permissions...

Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows...

Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows...

PT-2025-4217 · Microsoft · Windows

The Microsoft Windows Installer Service is affected by a local privilege escalation issue, which can be exploited by attackers to gain elevated privileges on a system. This issue is related to a link following flaw in the Windows Installer Service. The vulnerable software is Microsoft Windows. An...

PT-2023-9006 · Microsoft · Windows Installer Service +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Installer Service affected versions not specified Description: The issue is related to the Microsoft Windows Installer Service and involves an elevation of privilege vulnerability. This vulnerability can be exploited to allo...

Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows...

Microsoft Windows Installer Service Directory Junction Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

CVE-2021-23022

On version 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1, the BIG-IP Edge Client Windows Installer Service's temporary folder has weak file and folder permissions. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2021-23022

On version 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1, the BIG-IP Edge Client Windows Installer Service's temporary folder has weak file and folder permissions. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2021-23022

CVE-2021-23022 affects the BIG-IP Edge Client for Windows: the Windows Installer Service temporary folder has weak permissions, enabling local privilege escalation. Affected versions are 7.2.1.x before 7.2.1.3 and 7.1.x before 7.1.9.9 Update 1; non-vulnerable/End of Technical Support versions are...

Design/Logic Flaw

On versions 7.1.5-7.1.9, the BIG-IP Edge Client's Windows Installer Service's temporary folder has weak file and folder permissions...

CVE-2020-5896

CVE-2020-5896 affects BIG-IP Edge Client for Windows. The Windows Installer Service’s temporary folder in versions 7.1.5–7.1.9 has weak file/folder permissions, enabling potential privilege escalation. Advisory details indicate that signed executables and MSI files could be executed from the temp...

CVE-2020-0859

An information vulnerability exists when Windows Modules Installer Service improperly discloses file information, aka 'Windows Modules Installer Service Information Disclosure Vulnerability'...

MS14-049: Description of the security update for Windows Installer Service: August 12, 2014

MS14-049: Description of the security update for Windows Installer Service: August 12, 2014 INTRODUCTION Microsoft has released security bulletin MS14-049. To learn more about this security bulletin: Home users:https://www.microsoft.com/security/pc-security/updates.aspxSkip the details: Download...

MS Windows Improper Token Validation Local Exploit (working)

No description provided by source. / Removed include "stdafx.h" / str0ke / include stdio.h include windows.h define INFOBUFFERSIZE MAXCOMPUTERNAMELENGTH + 1 define PATHSIZE INFOBUFFERSIZE + MAXPATH + 4 typedef UINT WINAPI PFnMsiInstallProductLPCSTR szPackagePath, LPCSTR szCommandLine; int mainint...