38 matches found
CVE-2019-5543
For VMware Horizon Client for Windows 5.x and prior before 5.3.0, VMware Remote Console for Windows 10.x before 11.0.0, VMware Workstation for Windows 15.x before 15.5.2 the folder containing configuration files for the VMware USB arbitration service was found to be writable by all users. A local...
CVE-2019-5543
For VMware Horizon Client for Windows 5.x and prior before 5.3.0, VMware Remote Console for Windows 10.x before 11.0.0, VMware Workstation for Windows 15.x before 15.5.2 the folder containing configuration files for the VMware USB arbitration service was found to be writable by all users. A local...
Design/Logic Flaw
For VMware Horizon Client for Windows 5.x and prior before 5.3.0, VMware Remote Console for Windows 10.x before 11.0.0, VMware Workstation for Windows 15.x before 15.5.2 the folder containing configuration files for the VMware USB arbitration service was found to be writable by all users. A local...
CVE-2019-5543
For VMware Horizon Client for Windows 5.x and prior before 5.3.0, VMware Remote Console for Windows 10.x before 11.0.0, VMware Workstation for Windows 15.x before 15.5.2 the folder containing configuration files for the VMware USB arbitration service was found to be writable by all users. A local...
Apple macOS Mojave DiskArbitration Logic Flaw Vulnerability
Apple macOS Mojave is a dedicated operating system developed by Apple for Mac computers.DiskArbitration is one of the components used to handle disk mounts. A security vulnerability exists in the DiskArbitration component in Apple macOS Mojave versions prior to 10.14.4. An attacker could use this...
arbitration-austria.at XSS vulnerability
Open Bug Bounty ID: OBB-661781 Description| Value ---|--- Affected Website:| arbitration-austria.at Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
arbitrationacademy.org XSS vulnerability
Open Bug Bounty ID: OBB-292730 Description| Value ---|--- Affected Website:| arbitrationacademy.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Apple macOS - Disk Arbitration Daemon Race Condition Exploit
Exploit for multiple platform in category local exploits !/bin/bash Sources: https://raw.githubusercontent.com/phoenhex/files/master/pocs/poc-mount.sh https://phoenhex.re/2017-06-09/pwn2own-diskarbitrationd-privesc if ! security authorize system.volume.internal.mount &/dev/null; then echo 2&1...
Apple MacOS Disk Arbitration Daemon Race Condition
!/bin/bash Sources: https://raw.githubusercontent.com/phoenhex/files/master/pocs/poc-mount.sh https://phoenhex.re/2017-06-09/pwn2own-diskarbitrationd-privesc if ! security authorize system.volume.internal.mount &/dev/null; then echo 2&1 "Cannot acquire system.volume.internal.mount right. This wil...
Apple macOS - Disk Arbitration Daemon Race Condition
Apple macOS - Disk Arbitration Daemon Race Condition !/bin/bash Sources: https://raw.githubusercontent.com/phoenhex/files/master/pocs/poc-mount.sh https://phoenhex.re/2017-06-09/pwn2own-diskarbitrationd-privesc if ! security authorize system.volume.internal.mount &/dev/null; then echo 2&1 "Cannot...
Apple macOS - Disk Arbitration Daemon Race Condition
!/bin/bash Sources: https://raw.githubusercontent.com/phoenhex/files/master/pocs/poc-mount.sh https://phoenhex.re/2017-06-09/pwn2own-diskarbitrationd-privesc if ! security authorize system.volume.internal.mount &/dev/null; then echo 2&1 "Cannot acquire system.volume.internal.mount right. This wil...
CVE-2017-2533
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "DiskArbitration" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app...
The vulnerability of the Mac OS X operating system, which allows a hacker to increase their privileges
The vulnerability of the diskutil module in the DiskArbitration component of the Mac OS X operating system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating locally, to enhance their privileges using uncertain vectors...
CVE-2016-4716
diskutil in DiskArbitration in Apple OS X before 10.12 allows local users to gain privileges via unspecified vectors...
CVE-2015-2265
The removebadchars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the 1 model or 2 PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707...
Information disclosure
The international-arbitration-attorney.com aka com.w0f1d79a1010d819acbee876007d0bebc application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7471
The CVE-2014-7471 entry covers the Android app named international-arbitration-attorney.com (package com.w0f1d79a1010d819acbee876007d0bebc), version 0.1, which does not verify X.509 certificates when connecting to SSL servers. Root cause: missing certificate validation leads to MITM risk and pote...
CVE-2014-7471
The international-arbitration-attorney.com aka com.w0f1d79a1010d819acbee876007d0bebc application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...