9 matches found
Conceptronic C54APM HTTP应答拆分漏洞
CVE ID:CVE-2013-1406 Conceptronic C54APM是一款无线AP设备。 Conceptronic C54APM存在HTTP应答拆分攻击,允许攻击者利用漏洞注入HTTP头,可操作应用程序的cookie,验证状态等。 0 Conceptronic C54APM v2.0 1.26 目前没有详细解决方案提供: http://www.conceptronic.net/es/downloadlist.php?stype=3&productid=341...
VMware Virtual Machine Communication Interface (VMCI) - vmci.sys
VMware Virtual Machine Communication Interface VMCI - vmci.sys / CVE-2013-1406 exploitation PoC by Artem Shishkin, Positive Research, Positive Technologies, 02-2013 / void stdcall FireShellDWORD dwSomeParam EscalatePrivilegeshProcessToElevate; // Equate the stack and quit the cycle ifndef AMD64 a...
VMware Virtual Machine Communication Interface (VMCI) - 'vmci.sys'
/ CVE-2013-1406 exploitation PoC by Artem Shishkin, Positive Research, Positive Technologies, 02-2013 / void stdcall FireShellDWORD dwSomeParam EscalatePrivilegeshProcessToElevate; // Equate the stack and quit the cycle ifndef AMD64 asm pop ebx pop edi push 0xFFFFFFF8 push 0xA010043 endif HANDLE...
VMware Workstation 8.x < 8.0.5 / 9.x < 9.0.1 VMCI Privilege Escalation (VMSA-2013-0002)
The version of VMware Workstation installed on the remote host is a version prior to 8.0.5 / 9.0.1. It is, therefore, reportedly affected by a privilege escalation vulnerability in the Virtual Machine Communication Interface VMCI in the 'VMCI.sys' driver. By exploiting this issue, a local attacke...
Vulnerability in VMware VMCI.sys Could Allow Local Elevation of Privilege
Executive Summary Microsoft is providing notification of the discovery and remediation of a vulnerability affecting VMware Workstation version 8.0.4 and earlier versions. Microsoft discovered and disclosed the vulnerability under coordinated vulnerability disclosure to the affected vendor, VMware...
VMSA-2013-0002 : VMware ESX, Workstation, Fusion, and View VMCI privilege escalation vulnerability
a. VMware VMCI privilege escalation VMware ESX, Workstation, Fusion, and View contain a vulnerability in the handling of control code in vmci.sys. A local malicious user may exploit this vulnerability to manipulate the memory allocation through the Virtual Machine Communication Interface VMCI cod...
CVE-2013-1406
CVE-2013-1406 affects VMware VMCI in vmci.sys across VMware Workstation (8.x before 8.0.5; 9.x before 9.0.1), VMware Fusion (4.1 before 4.1.4; 5.0 before 5.0.2), VMware View (4.x before 4.6.2; 5.x before 5.1.2), VMware ESXi/ESX (4.0–5.1). Root cause: improper restriction of memory allocation by V...
VMware ESX, Workstation, Fusion, and View VMCI privilege escalation vulnerability
a. VMware VMCI privilege escalation VMware ESX, Workstation, Fusion, and View contain a vulnerability in the handling of control code in vmci.sys. A local malicious user may exploit this vulnerability to manipulate the memory allocation through the Virtual Machine Communication Interface VMCI cod...
VMSA-2013-0002:VMware ESX, Workstation, Fusion, and View VMCI privilege escalation vulnerability
VMSA-2013-0002.1 VMware ESX, Workstation, Fusion, and View VMCI privilege escalation vulnerability VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2013-0002.1 VMware Security Advisory Synopsis: VMware ESX, Workstation, Fusion, and View VMCI privilege escalation vulnerability...