Lucene search
+L

16 matches found

Lenovo
Lenovo
added 2019/11/11 2:21 p.m.43 views

Lenovo Energy Management Driver for Windows 10 Vulnerability - US

Lenovo Security Advisory: LEN-27682 Potential Impact: Denial of service Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2019-6183 Summary Description: A denial of service vulnerability has been reported in Lenovo Energy Management Driver for Windows 10 versions prior to...

7.8CVSS7.1AI score0.01881EPSS
Exploits0
ThreatPost
ThreatPost
added 2015/10/14 9:15 a.m.11 views

Cesar Cerrudo on Securing Smart Cities

IOActive Labs CTO Cesar Cerrudo talks to Ryan Naraine about major realistic security problems affecting technology implementations of smart cities — from traffic control systems to surveillance cameras and power grids — and warns that the damages from live attacks could be catastrophic. Download:...

2.7AI score
Exploits0References2
ThreatPost
ThreatPost
added 2013/01/22 2:45 p.m.10 views

Twitter Bug Allowed Apps to Access Direct Messages Without Permission

Social networking sites such as Twitter and Facebook have become not just communication hubs, but also authentication mechanisms for third-party sites. Many sites and Web applications allow users to sign in with their Facebook or Twitter credentials rather than registering, which is a nice...

7.2AI score
Exploits0References4
ThreatPost
ThreatPost
added 2012/08/23 7:29 p.m.16 views

Cesar Cerrudo on Owning Your CEO

Dennis Fisher talks with Cesar Cerrudo of IOActive Labs about his research project that used Fortune 500 executives’ corporate email addresses as the starting point to gather data about their online activities. Cerrudo found that he was able to map executives’ activities across a wide range of...

1.1AI score
Exploits0References4
ThreatPost
ThreatPost
added 2012/01/18 3:20 p.m.116 views

Elevating Privileges Via Windows Installers

There’s an odd bit of behavior that some Windows systems will exhibit when certain kinds of installers are launched, automatically elevating the privileges of the installer process to system-level privileges. In theory, the issue shouldn’t be exploitable because at one point in the process the...

9.3CVSS1.6AI score0.99945EPSS
Exploits33References1
ThreatPost
ThreatPost
added 2010/07/16 3:42 p.m.84 views

MS Windows Token Kidnapping Problems Resurface

Microsoft’s problems with Token Kidnapping .pdf on the Windows platform aren’t going away anytime soon. More than a year after Microsoft issued a patch to cover privilege escalation issues that could lead to complete system takeover, a security researcher plans to use the Black Hat conference...

9.3CVSS0.2AI score0.99945EPSS
Exploits33References5
0day.today
0day.today
added 2008/05/15 12:0 a.m.24 views

Symantec Altiris Client Service 6.8.378 Local Privilege Escalation Exploit

Exploit for unknown platform in category local exploits ========================================================================== Symantec Altiris Client Service 6.8.378 Local Privilege Escalation Exploit ========================================================================== // 0day PRIVATE...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2007/03/10 12:0 a.m.18 views

Oracle 10g (PROCESS_DUP_HANDLE) Local Privilege Elevation (win32)

No description provided by source. // Argeniss - Information Security // // Oracle Database local elevation of privileges PoC exploit // // Author: Cesar Cerrudo include windows.h include stdio.h BOOL InjectShellcodeDWORD oldEIP,CHAR oSID HMODULE hKernel; FARPROC pCreateProc; LPSTR...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/10 12:0 a.m.37 views

Oracle 10g (Windows x86) - 'PROCESS_DUP_HANDLE' Local Privilege Escalation

// Argeniss - Information Security // // Oracle Database local elevation of privileges PoC exploit // // Author: Cesar Cerrudo include include BOOL InjectShellcodeDWORD oldEIP,CHAR oSID HMODULE hKernel; FARPROC pCreateProc; LPSTR sCommand="cmd.exe"; DWORD dwStrLen; CHAR buff100;...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/11/06 12:0 a.m.50 views

[SA22668] Microsoft Windows GDI Kernel Structures Handling Vulnerability

TITLE: Microsoft Windows GDI Kernel Structures Handling Vulnerability SECUNIA ADVISORY ID: SA22668 VERIFY ADVISORY: http://secunia.com/advisories/22668/ CRITICAL: Less critical IMPACT: Privilege escalation, DoS WHERE: Local system OPERATING SYSTEM: Microsoft Windows 2000 Advanced Server...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2006/10/28 12:0 a.m.70 views

MS Windows COM Structured Storage Local Exploit (MS05-012)

No description provided by source. // by Cesar Cerrudo - Argeniss - www.argeniss.com // MS05-012 - COM Structured Storage Vulnerability - CAN-2005-0047 Exploit // // More exploits at www.argeniss.com/products.html // // Works on Win2k sp4, WinXP sp2, Win2k3 sp0 // Close all runing programs to avo...

7.2CVSS6.5AI score0.05132EPSS
Exploits4
seebug.org
seebug.org
added 2006/10/28 12:0 a.m.38 views

MS Windows 2k Utility Manager (All-In-One) Exploit (MS04-019)

No description provided by source. / COROMPUTER2004 Crpt Utility Manager exploit v2.666 modified by kralor Crpt It gets system language and sets windows names to work on any win2k :P Feel free to add other languages : v2.666: added autonomous allinone remote exploitation system ; It can be execut...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2005/03/15 12:0 a.m.30 views

ARGENISS-ADV-030501.txt

Argeniss Security Advisory Name: Oracle Database Server Directory transversal Affected Software: Oracle Database Server versions 8i and 9i Severity : Medium Remote exploitable: Yes Authentication to Database Server is needed Credits: Cesar Cerrudo Date: 03/07/05 Advisory Number: ARG030501 Details...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/03/09 12:0 a.m.31 views

- Argeniss - Oracle Database Server Directory transversal

Argeniss Security Advisory Name: Oracle Database Server Directory transversal Affected Software: Oracle Database Server versions 8i and 9i Severity : Medium Remote exploitable: Yes Authentication to Database Server is needed Credits: Cesar Cerrudo Date: 03/07/05 Advisory Number: ARG030501 Details...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2005/01/11 12:0 a.m.39 views

[Full-Disclosure] [AppSecInc Team SHATTER Security Advisory] Microsoft Windows Improper Token Validation

Microsoft Windows Improper Token Validation AppSecInc Team SHATTER Security Advisory http://www.appsecinc.com/resources/alerts/general/06-0001.html January 10, 2005 Credit: This vulnerability was discovered and researched by Cesar Cerrudo of Application Security, Inc. Risk Level: High Summary: A...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2002/07/26 12:0 a.m.35 views

SQL Server 2000 Buffer Overflows and SQL Inyection vulnerabilities.

Security Advisory Name: SQL Server 2000 Buffer Overflows and SQL Inyection vulnerabilities. System Affected : Sql Server 2000 all Service Packs. Severity : High. Author: Cesar Cerrudo. Date: 07/25/2002 Advisory Number: CC070205 Overview: Database Consistency Checkers DBCCs are command console...

0.9AI score
Exploits0
Rows per page
Query Builder