28 matches found
EUVD-2019-10011
Malware in sbrugna...
EUVD-2020-2219
Malware in sbrugna...
EUVD-2020-2272
Malware in sbrugna...
EUVD-2020-8898
Malware in sbrugna...
EUVD-2019-1717
Malware in sbrugna...
EUVD-2022-27075
Malicious code in bioql PyPI...
EUVD-2022-27051
Malicious code in bioql PyPI...
CVE-2020-0785
An elevation of privilege vulnerability exists when the Windows User Profile Service ProfSvc improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'...
CVE-2020-0730
An elevation of privilege vulnerability exists when the Windows User Profile Service ProfSvc improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'...
CVE-2019-1454
An elevation of privilege vulnerability exists when the Windows User Profile Service ProfSvc improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'...
Microsoft’s privilege escalation vulnerability that refuses to go away
THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here After seven months, a vulnerability that was addressed in August 2021 patch Tuesday remained unpatched. This locally exploited vulnerability is tracked as CVE-2021-34484 and affects the Windows User Profile Service. While...
Privilege escalation
Windows User Profile Service Elevation of Privilege Vulnerability...
CVE-2021-34484
Windows User Profile Service Elevation of Privilege Vulnerability Recent assessments: ccondon-r7 at March 29, 2022 12:10pm UTC reported: This bug was evidently used by LAPSUS$ in the wild as part of the attack on Okta. gwillcox-r7 at March 30, 2022 4:21pm UTC reported: This bug was evidently used...
Privilege escalation
Windows User Profile Service Elevation of Privilege Vulnerability...
CVE-2021-26873 Windows User Profile Service Elevation of Privilege Vulnerability
...
Microsoft Windows User Profile Service 安全漏洞
Microsoft Windows User Profile Service is a service host from Microsoft Corporation USA that performs user profile loading and unloading operations, such as logging on logging in to Windows . A security vulnerability exists in Microsoft Windows User Profile Service. The following products and...
Privilege escalation
An elevation of privilege vulnerability exists when the Windows User Profile Service ProfSvc improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context. To exploit this vulnerability, an attacker would first...
PT-2020-4375 · Microsoft · Windows User Profile Service +1
Name of the Vulnerable Software and Affected Versions: Windows User Profile Service ProfSvc affected versions not specified Description: The issue is related to the improper handling of junction points by the Windows User Profile Service ProfSvc, which can allow an attacker to elevate their...
CVE-2020-0785
An elevation of privilege vulnerability exists when the Windows User Profile Service ProfSvc improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'...
CVE-2020-0730
An elevation of privilege vulnerability exists when the Windows User Profile Service ProfSvc improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'...