Microsoft Windows Media Player RTSP Use after Free Code Execution (MS10-075; CVE-2010-3225)

A remote code execution vulnerability has been reported in Microsoft Windows Media Player network sharing service. The Network Service account is a built-in account that has more access to resources and objects than members of the Users group. Services that run as the Network Service account acce...

Microsoft Windows Print Spooler Service Remote Code Execution Vulnerability (2347290)

This host is missing a critical security update according to Microsoft Bulletin MS10-061. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS10-068: Vulnerability in Local Security Authority Subsystem Service Could Allow Elevation of Privilege (983539)

The version of the Local Security Authority Subsystem Service LSASS installed on the remote Windows host does not properly handle malformed packets in LDAP messages when used in conjunction with Microsoft Active Directory / Active Directory Application Mode / Active Directory Lightweight Director...

IOS HTTP Authorization Vulnerability - Cisco Systems

When the HTTP server is enabled and local authorization is used, it is possible, under some circumstances, to bypass the authentication and execute any command on the device. In that case, the user will be able to exercise complete control over the device. All commands will be executed with the...

SMA-DB 0.3.14 (pfad_z) Local File Inclusion Vulnerability

Exploit for php platform in category web applications ========================================================= SMA-DB 0.3.14 pfadz Local File Inclusion Vulnerability ========================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0...

Apple Safari for Windows and Internet Explorer Combined Code Execution (CVE-2008-2540)

Microsoft Internet Explorer is the most widely used Internet browser. Safari is a web browsing application developed by Apple. A combination of the default download location in Safari and how the Windows desktop handles executables creates a blended threat in which files may be downloaded to a...

Internet Explorer Access ActiveX Controls Remote Code Execution (MS10-044; CVE-2010-0814)

A remote code execution vulnerability exists in Access ActiveX controls due to the way that multiple ActiveX controls are loaded by Internet Explorer. The vulnerability is due to the way that Internet Explorer handles memory allocation when instantiating a succession of Access ActiveX controls. T...

Oracle Solaris - rdist Privilege Escalation

Oracle Solaris - rdist Privilege Escalation source: https://www.securityfocus.com/bid/41612/info Oracle Solaris is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with superuser privileges. Successfully exploiting this issue wi...

Adobe Plugs Critical Photoshop Security Holes

Adobe has issued a security patch for its Adobe Photoshop CS4 software to plug “critical” vulnerabilities that expose users to code execution attacks with rigged image files. The flaws affect both Windows and Mac OS X users. Adobe Photoshop CS5 is not affected by these issues. The company only...

CVE-2010-1548

The CVE concerns the Chaos Tool Suite (CTools) Drupal module (6.x) prior to 6.x-1.4. The autocomplete functionality does not enforce access restrictions, allowing remote authenticated users with the 'access content' privilege to read the title of unpublished nodes via a query like q=ctools/autoco...

Update Protection against Microsoft SMB Client Transaction Memory Corruption Vulnerability (MS10-020)

A remote code execution vulnerability has been reported in the Microsoft Windows Server Message Block SMB client implementation. The SMB Protocol is a network file sharing protocol that is implemented in Microsoft Windows. A remote attacker may exploit this vulnerability to take complete control ...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Jokes Complete Website allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter to joke.php and the 2 searchingred parameter to results.php...

CVE-2010-1111

Multiple cross-site scripting XSS vulnerabilities in Jokes Complete Website allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter to joke.php and the 2 searchingred parameter to results.php...

CVE-2010-1111

The CVE-2010-1111 entry concerns multiple XSS vulnerabilities in the Jokes Complete Website. The affected components are the web pages joke.php (parameter: id) and results.php (parameter: searchingred). The underlying issue is cross-site scripting that could allow remote attackers to inject arbit...

Zeus/Zbot Banking Trojan/Data Theft (credentialed check)

The remote Windows host has files that indicate that the Zeus also known as Zbot banking trojan has been installed, or that stolen data collected by this trojan remains on the system. The Zeus trojan will intercept and log activity related to online banking, as well as other logins, such as web,...

Portable Executable (PE) 16-bit File (CVE-2010-0232; CVE-2011-2003)

An elevation of privilege vulnerability exists in the Windows Kernel due to the way the kernel handles certain exceptions. The Windows Kernel is the core of the operating system. It provides system level services such as device management and memory management, allocates processor time to...

Update Protection against Microsoft Windows ICMPv6 Router Advertisement Vulnerability (MS10-009)

A remote code execution vulnerability exists in the Windows TCP/IP stack due to insufficient bounds checking when processing specially crafted ICMPv6 Router Advertisement packets. An anonymous attacker could exploit the vulnerability by sending specially crafted ICMPv6 Router Advertisement packet...

PostgreSQL Server Generic Query

This module will allow for simple SQL statements to be executed against a PostgreSQL instance given the appropriate credentials. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'PostgreSQL Serve...

Battery Life Toolkit 1.0.9 - bltk_sudo Local Privilege Escalation

Battery Life Toolkit 1.0.9 - bltksudo Local Privilege Escalation source: https://www.securityfocus.com/bid/37996/info Battery Life Toolkit BLTK is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with superuser privileges,...

Battery Life Toolkit 1.0.9 - 'bltk_sudo' Local Privilege Escalation

source: https://www.securityfocus.com/bid/37996/info Battery Life Toolkit BLTK is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with superuser privileges, resulting in the complete compromise of the affected computer. This...