11 matches found
Microsoft Windows Media Center 2002 - XML External Entity MotW Bypass Vulnerability
Exploit Title: Microsoft Windows Media Center 2002 - XML External Entity MotW Bypass Discovery by: hyp3rlinx Date: 2019-12-03 Vendor Homepage: www.microsoft.com CVE: N/A + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source:...
Rockstar Games: Image Injection on `/bully/anniversaryedition` may lead to FB's OAuth Token Theft.
In this report, the researcher identified a chain of attacks that could result in sensitive token leakage, such as Oauth tokens. The attack would begin with an image injection exploit on the page at https://www.rockstargames.com/bully/anniversaryedition. That exploit was the focus of this...
Rockstar Games: Image Injection on /bully/anniversaryedition may lead to OAuth token theft.
In this report, the researcher identified an image injection issue on www.rockstargames.com/bully/anniversaryedition that could be combined with other vulnerabilities to result in sensitive token theft under certain conditions. We resolved the image injection issue, preventing this series of...
Microsoft Windows - Desktop Bridge Virtual Registry NtLoadKey Arbitrary File Read/Write Privilege Es
Exploit for windows platform in category local exploits Windows: Desktop Bridge Virtual Registry NtLoadKey Arbitrary File Read/Write EoP Platform: Windows 1703 version 1709 seems to have fixed this bug Class: Elevation of Privilege Summary: The handling of the virtual registry NtLoadKey callback...
Microsoft Windows - Desktop Bridge VFS Privilege Escalation
Windows: Windows: Desktop Bridge VFS EoP Platform: Windows 1709 not tested earlier version Class: Elevation of Privilege Summary: The handling of the VFS for desktop bridge applications can allow an application to create virtual files in system folder which can result in EoP. Description: The...
MS16-100: Security update for Secure Boot: August 9, 2016
Resolves a vulnerability in Windows that could allow security feature bypass if an attacker installs an affected boot manager and bypasses Windows security features.SummaryThis security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass if ...
Microsoft Quietly Kills Controversial Wi-Fi Sense Feature
From its introduction, Microsoft’s Windows 10 feature Wi-Fi Sense has faced a massive amount of fear, uncertainty and doubt. Now those losing sleep over the feature can get some rest; Microsoft quietly announced last week it’s snuffing out the feature. Later this summer, when Microsoft rolls out ...
The Hacker News Magazine - Anniversary Edition - November Issue 06
The Hacker News Magazine - Anniversary Edition - November Issue 06 In November of 2010 the team at The Hacker News finally achieved our ultimate goal of launching an online News Portal and Magazine addressing the tricky and complicated world of hackers and hacking. In our first year The Hacker...
The Hacker News Magazine - Anniversary Edition - November Issue 06
The Hacker News Magazine -Anniversary Edition - November Issue 06 In November of 2010 the team at The Hacker News finally achieved our ultimate goal of launching an online News Portal and Magazine addressing the tricky and complicated world of hackers and hacking. In our first year The Hacker New...
[Call for Article] The Hacker News Magazine - November 2011 Edition
Call for Article The Hacker News Magazine - November 2011 Edition The Hacker News is starting to prepare the next issue of 'The Hacker News Magazine'. Submissions are invited for a 6th up coming special November Issue as "Anniversary Edition ". If you have something interesting to write, please...
[Call for Article] The Hacker News Magazine - November 2011 Edition
Call for Article The Hacker News Magazine - November 2011 Edition The Hacker News is starting to prepare the next issue of 'The Hacker News Magazine'. Submissions are invited for a 6th up coming special November Issue as "Anniversary Edition". If you have something interesting to write, please dr...