550 matches found
Skype Click To Call 6.2.0.106 Privilege Escalation
Vuln Title: Skype Click to Call Update Service local privilege escalation Date: 10.12.2012 Author: otr Software Link: http://www.skype.com Vendor: Microsoft Corporation Version: = 6.2.0.106 Tested on: Windows 7, Windows XP Type: Privilege Escalation, DLL Hijacking CVE : MS does not assign CVE for...
Microsoft Windows - AlwaysInstallElevated MSI (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/windows/registry'...
CA ARCserve Backup opcode 0x7a RWSList remote code execution vulnerability
Overview The CA ARCserve Backup authentication service, caauthd.exe, is susceptible to a pre-authentication remote code execution vulnerability. Arbitrary code will run with NT AUTHORITY\SYSTEM privileges. CA ARCserve Backup r16 SP1 was reported to be vulnerable. Description The Offensive Securit...
CA ARCserve D2D r15 - Web Service Servlet Code Execution
CA ARCserve D2D r15 - Web Service Servlet Code Execution Computer Associates ARCserve D2D r15 Web Service Apache Axis2 World Accessible Servlet Code Execution Vulnerability Poc product homepage: https://support.ca.com/phpdocs/0/8363/support/arcserved2dsupport.html vulnerability: The Tomcat Server...
Lenovo Hotkey Driver 5.33 - Local Privilege Escalation
Lenovo Hotkey Driver 5.33 - Local Privilege Escalation Author: Chilik Tamir - Amdocs Power Security Testing Group Website: http://invalid-packet.blogspot.com/2010/03/full-disclosure-security-vulnerability.html Subject: Security vulnerability in Lenovo Hotkey Driver and Access Connections version...
Microworld eScan (Multiple Products) - Local Privilege Escalation
Microworld eScan Multiple Products - Local Privilege Escalation source: https://www.securityfocus.com/bid/25493/info Multiple MicroWorld eScan products are vulnerable to a local privilege-escalation vulnerability because of insecure default file permissions. Attackers can exploit this issue to...
Microworld eScan (Multiple Products) - Local Privilege Escalation
source: https://www.securityfocus.com/bid/25493/info Multiple MicroWorld eScan products are vulnerable to a local privilege-escalation vulnerability because of insecure default file permissions. Attackers can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful...
FrontBase关系数据库服务器create procedure远程栈溢出漏洞
FrontBase是一款企业级的关系数据库服务器。 FrontBase在创建存储过程时存在栈溢出漏洞,允许攻击者获得NT AUTHORITY\SYSTEM或root用户权限。 如果攻击者通过“create procedure” SQL语句传送了超长参数的话,就可以触发这个溢出,导致内存破坏。例如,以下SQL语句: create procedure "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa...
Multiple Printer Providers (spooler service) Privilege Escalation Exploit
Exploit for unknown platform in category local exploits ========================================================================= Multiple Printer Providers spooler service Privilege Escalation Exploit ========================================================================= /Private exploit-...
Multiple Printer Providers (Spooler Service) - Local Privilege Escalation
/Private exploit- internal use only Title: Universal exploit for vulnerable printer providers spooler service. Vulnerability: Insecure EnumPrintersW calls Author: Andres Tarasco Acuña - [email protected] Website: http://www.514.es This code should allow to gain SYSTEM privileges with the following...