12 matches found
Microsoft Windows Remote Assistance XXE Injection
Exploit Title: Microsoft Windows Remote Assistance XXE Date: 27/03/2018 Exploit Author: Nabeel Ahmed Tested on: Windows 7 x64, Windows 10 x64 CVE : CVE-2018-0878 Category: Remote Exploits Invitation.msrcincident ------------------------ /xxe.xml" %remote;%root;%oob; xxe.xml ----------------------...
Microsoft Windows Remote Assistance - XML External Entity Injection
Exploit Title: Microsoft Windows Remote Assistance XXE Date: 27/03/2018 Exploit Author: Nabeel Ahmed Tested on: Windows 7 x64, Windows 10 x64 CVE : CVE-2018-0878 Category: Remote Exploits Invitation.msrcincident ------------------------ /xxe.xml" %remote;%root;%oob; xxe.xml ----------------------...
Microsoft Windows Remote Assistance - XML External Entity Injection Vulnerability
Exploit for windows platform in category web applications Exploit Title: Microsoft Windows Remote Assistance XXE Date: 27/03/2018 Exploit Author: Nabeel Ahmed Tested on: Windows 7 x64, Windows 10 x64 CVE : CVE-2018-0878 Category: Remote Exploits Invitation.msrcincident ------------------------...
Microsoft Windows Remote Assistance - XML External Entity Injection
Microsoft Windows Remote Assistance - XML External Entity Injection Exploit Title: Microsoft Windows Remote Assistance XXE Date: 27/03/2018 Exploit Author: Nabeel Ahmed Tested on: Windows 7 x64, Windows 10 x64 CVE : CVE-2018-0878 Category: Remote Exploits Invitation.msrcincident...
CVE-2018-0878
creationtimestamp| type| source ---|---|--- 2018-03-20 11:37:22+00:00| seen| https://t.me/canyoupwnme/3451 2018-03-20 12:16:02+00:00| seen| https://t.me/thebugbountyhunter/1218 2018-03-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44352 2025-04-04 21:36:33+00:00|...
Microsoft Windows Remote Assistance XXE Injection Information Disclosure (CVE-2018-0878)
An XML external entity XXE injection vulnerability exist in the Remote Assistance component of Microsoft Windows. The vulnerability is due to a failure to properly handle external entity references in XML files. A remote attacker could exploit this vulnerability by enticing a target user into...
CVE-2018-0878
Windows Remote Assistance in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how...
CVE-2018-0878
CVE-2018-0878 is a Windows Remote Assistance information-disclosure vulnerability caused by how XML External Entities (XXE) are processed. The CVE applies to multiple Windows client/server SKUs (Windows 7 SP1, 8.1/RT 8.1, Windows Server 2008 SP2/R2 SP1, 2012/R2, Windows 10 versions 1511–1709, and...
KB4088779: Windows 10 Version 1511 March 2018 Security Update
The remote Windows host is missing security update 4088779. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Windows Remote Assistance incorrectly processes XML External Entities XXE. An attacker who successfully exploited the...
Microsoft Windows Remote Assistance CVE-2018-0878 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information. Successful exploits may lead to other attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Window...
KB4088878: Windows 7 and Windows Server 2008 R2 March 2018 Security Update (Meltdown)(Spectre)
The remote Windows host is missing security update 4088878 or cumulative update 4088875. It is, therefore, affected by multiple vulnerabilities : - An vulnerability exists within microprocessors utilizing speculative execution and indirect branch prediction, which may allow an attacker with local...
KB4088879: Windows 8.1 and Windows Server 2012 R2 March 2018 Security Update (Meltdown)(Spectre)
The remote Windows host is missing security update 4088879 or cumulative update 4088876. It is, therefore, affected by multiple vulnerabilities : - An vulnerability exists within microprocessors utilizing speculative execution and indirect branch prediction, which may allow an attacker with local...