35 matches found
CVE-2024-6510
Local Privilege Escalation in AVG Internet Security v24 on Windows allows a local unprivileged user to escalate privileges to SYSTEM via COM-Hijacking...
CVE-2024-5803 Local privelage escalation via COM hijacking
The AVGUI.exe of AVG/Avast Antivirus before versions before 24.1 can allow a local attacker to escalate privileges via an COM hijack in a time-of-check to time-of-use TOCTOU when self protection is disabled...
Avast Antivirus 安全漏洞
Avast Antivirus is a suite of antivirus software from the Czech company Avast. A security vulnerability exists in versions prior to Avast Antivirus 24.1, which stems from a vulnerability that could allow a local attacker to elevate privileges via COM hijacking during the time of check to time of...
CVE-2024-6510
Local Privilege Escalation in AVG Internet Security v24 on Windows allows a local unprivileged user to escalate privileges to SYSTEM via COM-Hijacking...
CVE-2024-6510
Local Privilege Escalation in AVG Internet Security v24 on Windows allows a local unprivileged user to escalate privileges to SYSTEM via COM-Hijacking...
CVE-2024-6510 Local privilege escalation vulnerability in AVG Internet Security
Local Privilege Escalation in AVG Internet Security v24 on Windows allows a local unprivileged user to escalate privileges to SYSTEM via COM-Hijacking...
CVE-2024-6510 Local privilege escalation vulnerability in AVG Internet Security
Local Privilege Escalation in AVG Internet Security v24 on Windows allows a local unprivileged user to escalate privileges to SYSTEM via COM-Hijacking...
CVE-2024-6510
AVG Internet Security for Windows v24 is affected by a local privilege escalation described as COM-Hijacking. The issue enables a local unprivileged user to escalate to SYSTEM through compromised COM interactions. Affected component/behavior and root cause are described in multiple sources (inclu...
PT-2024-6221 · Avg · Avg Internet Security
Name of the Vulnerable Software and Affected Versions: AVG Internet Security version v24 Description: A local privilege escalation issue in AVG Internet Security allows a local unprivileged user to escalate privileges to SYSTEM via COM-Hijacking. This issue is related to the use of dangerous...
CVE-2023-7241 Webroot Antivirus COM-Hijacking LPE
Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32 bit allows malicious software to abuse WRSA.EXE to delete arbitrary and protected files...
CVE-2023-7241 Webroot Antivirus COM-Hijacking LPE
Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32 bit allows malicious software to abuse WRSA.EXE to delete arbitrary and protected files...
ThievingFox - Remotely Retrieving Credentials From Password Managers And Windows Utilities
ThievingFox is a collection of post-exploitation tools to gather credentials from various password managers and windows utilities. Each module leverages a specific method of injecting into the target process, and then hooks internals functions to gather crendentials. The accompanying blog post ca...
COM-Hunter - COM Hijacking VOODOO
COM Hijacking VOODOO COM-hunter is a COM Hijacking persistnce tool written in C. This tool was inspired during the RTO course of @zeropointsecltd Features Finds out entry valid CLSIDs in the victim's machine. Finds out valid CLSIDs via Task Scheduler in the victim's machine. Finds out if someone...
WIRTE Hacker Group Targets Government, Law, Financial Entities in Middle East
Government, diplomatic entities, military organizations, law firms, and financial institutions primarily located in the Middle East have been targeted as part of a stealthy malware campaign as early as 2019 by making use of malicious Microsoft Excel and Word documents. Russian cybersecurity compa...
WFH - Windows Feature Hunter
Windows Feature Hunter WFH is a proof of concept python script that uses Frida, a dynamic instrumentation toolkit, to assist in potentially identifying common “vulnerabilities” or “features” within Windows executables. WFH currently has the capability to automatically identify potential Dynamic...