SOUND4 Server Service 4.1.102 - Local Privilege Escalation

Exploit Title: SOUND4 Server Service 4.1.102 - Local Privilege Escalation Exploit Author: LiquidWorm Vendor: SOUND4 Ltd. Product web page: https://www.sound4.com | https://www.sound4.biz Affected version: 4.1.102 Summary: SOUND4 Windows Server Service. Desc: The application suffers from an unquot...

HEUR.Trojan.Win32.Delf.gen Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/058ef1acc6456a924737d940f3cf81aa.txt Contact: [email protected] Media: twitter.com/malvuln Threat: HEUR.Trojan.Win32.Delf.gen Vulnerability: Insecure Permissions Description: The Batch VirusGen malwa...

Trojan.Win32.Agent.zfgh Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/a2017b547da2f06c6d7c02398cc481f6.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Agent.zfgh Vulnerability: Insecure Permissions Description: Agent.zfgh creates an hidde...

Trojan.Win32.Cospet.abg Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/5f5b308853b9aa9243390c135ff6ba1b.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Cospet.abg Vulnerability: Insecure Permissions EoP Description: Cospet.abg, creates an...

Trojan-Spy.Win32.SpyEyes.auwl Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/0115ba22a0d009a13d0748027dd62e2a.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.SpyEyes.auwl Vulnerability: Insecure Permissions EoP Description: SpyEyes creates a...

Trojan-Spy.Win32.WinSpy.vwl Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/0187e62ca40cb3d556a2c5825620bd8f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.WinSpy.vwl Vulnerability: Insecure Permissions EoP Description: WinSpy.vwl create t...

Backdoor.Win32.Buterat.cxq Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/8bfac1f52a94f36b711e20bce30161cc.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Buterat.cxq Vulnerability: Insecure Permissions EoP Description: This malware creates...

Backdoor.Win32.Anaptix.bd Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/9f178de7f9918288d93ac0f065f0aa2f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Anaptix.bd Vulnerability: Insecure Permissions Description: Anaptix.bd malware create...

Backdoor.Win32.Jokerdoor Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/6c7b364dafe0560dfb15c9b03f1b44bd.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Jokerdoor TDC Mail Spy 1.0 Vulnerability: Insecure Permissions Description: This...

Trojan.Win32.Bayrob.cgau Insecure Permissions / Privilege Escalation

Discovery / credits: malvuln - Malvuln.com c 2021 Original source: http://malvuln.com/advisory/099a169f81089dc493ea300ef0309f70.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Bayrob.cgau Vulnerability: Insecure Permissions EoP SYSTEM Description: Change permissio...

Crouzet em4 soft 1.1.04 / M3 soft 3.1.2.0 Insecure File Permissions

Crouzet em4 soft 1.1.04 and M3 soft 3.1.2.0 Insecure File Permissions Vendor: Crouzet Automatismes SAS Product web page: http://www.crouzet-automation.com Affected version: em4 soft 1.1.04 and 1.1.03.01 M3 soft 3.1.2.0 Summary: em4 is more than just a nano-PLC. It is a leading edge device...

On Windows, Fisheye attempts to make ssh keys private but appears to be unsucessful

While testing FE-4315 on Windows, I noticed that even when generating a private key using Fisheye, the files permissions do not appear to actually change. The code to make the file private is this, in FileSystemUtils: code if SystemUtils.ISOSWINDOWS String username = System.getenv"USERNAME"; Stri...

On Windows, Fisheye attempts to make ssh keys private but appears to be unsucessful

While testing FE-4315 on Windows, I noticed that even when generating a private key using Fisheye, the files permissions do not appear to actually change. The code to make the file private is this, in FileSystemUtils: code if SystemUtils.ISOSWINDOWS String username = System.getenv"USERNAME"; Stri...

Valve Steam Client Application 1559/1559 - Local Privilege Escalation

Valve Steam Client Application v1559/1559 Local Privilege Escalation Vendor: Valve Corporation Product web page: http://www.steampowered.com Affected version: Built: Jun 1, 2011 at 15:31:24 Steam API: v010 Steam package versions 1559 / 1559 File version: 1.0.968.628 Summary: Steam is a digital...

Microsoft Windows嵌入式OpenType字体引擎整数溢出漏洞（MS10-076）

BUGTRAQ ID: 43775 CVE ID: CVE-2010-1883 Microsoft Windows是微软发布的非常流行的操作系统。 Windows的t2embed.dll库中在将嵌入式OpenType文件转换为TrueType格式时存在整数溢出漏洞。在解析hdmx记录时，盲目的信任了记录大小和记录计数变量，并将所生成的值在拷贝循环中使用，这可能导致执行任意代码。 Microsoft Windows XP SP3 Microsoft Windows XP Pro x64版SP2 Microsoft Windows Vista SP2 Microsoft Windows...

Cacls mention the right to command-and-vulnerability warning-the black bar safety net

The Cacls command parameters: cacls.exe c: /e /t /g everyone:F put the c drive set to everyone can browse cacls.exe d: /e /t /g everyone:F The d drive set to everyone can browse cacls.exe e: /e /t /g everyone:F The e drive set to everyone can browse cacls.exe f: /e /t /g everyone:F The f drive is...

Microsoft Office WPG图形文件处理堆溢出漏洞（MS08-044）

BUGTRAQ ID: 30598 CVECAN ID: CVE-2008-3021 Microsoft Office是非常流行的办公软件套件。 Office的WPGIMP32.FLT模块没有正确地处理office文档中的PICT图形，如果PICT图形文件中包含有超长的bitsperpixel字段的话，则打开该文件就可能触发堆溢出，导致执行任意代码。 Microsoft Office XP SP3 Microsoft Office Converter Pack Microsoft Office 2003 Service Pack 2 Microsoft Office 2000 SP3...

Microsoft Jet数据库引擎MDB文件解析远程栈溢出漏洞(ms08-028)

BUGTRAQ ID: 26468 CVECAN ID: CVE-2007-6026,CVE-2008-1092 Microsoft Jet数据库是MS Office应用程序中广泛使用的轻型数据库。 Jet数据库在处理畸形MDB文件时存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞通过诱使用户处理恶意文件，控制服务器。 Office Access在解析MDB文件时会调用Jet数据库引擎（msjet40.dll），如果解析了恶意的MDB文件就会在以下代码中触发栈溢出： C:\Windows\System32\msjet40.dll，版本为4.0.8618.0 .text:1B0B72BB mo...

The coolest windows Backdoor-vulnerability warning-the black bar safety net

The back door principle: Go to: small Chapter blog http://blog.csdn.net/scz123/archive/2007/03/14/1528695.aspx In windows 2 0 0 0/xp/vista, press shift key 5 times, you can open the sticky position, 会运行sethc.exe and, in the login interface may also be open. It's reminiscent of a WINDOWS...