6 matches found
CVE-2013-10047
An unrestricted file upload vulnerability exists in MiniWeb HTTP Server = Build 300 that allows unauthenticated remote attackers to upload arbitrary files to the server’s filesystem. By abusing the upload handler and crafting a traversal path, an attacker can place a malicious .exe in system32,...
PT-2022-5501
Name of the Vulnerable Software and Affected Versions Windows versions prior to the fixed version Description The issue is related to errors in security settings of the Netlogon Remote Protocol MS-NRPC implementation in Windows operating systems. This allows a remote attacker to elevate their...
CVE-2022-25943
The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed...
PT-2018-9048 · Microsoft · Windows 8.1 +7
Name of the Vulnerable Software and Affected Versions: Windows versions prior to the fixed version Description: The issue allows an elevation of privilege due to the way memory addresses are handled. An elevation-of-privilege vulnerability allows attackers to affect the system. Recommendations: F...
PT-2010-2066 · Microsoft · Windows Server 2003 +6
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to Windows 7, including Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2 Description: The issue arises from the imprope...
PT-2009-1116 · Microsoft · Smb +1
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue is related to the improper processing of the command value in an SMB Multi-Protocol Negotiate Request packet, which allows remote attackers to execute arbitrary code...