Lucene search
K

15 matches found

VulnCheck KEV
VulnCheck KEV
added 2020/03/27 12:0 a.m.3 views

VulnCheck KEV: CVE-2019-1405

A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation...

7.8CVSS7.2AI score0.2995EPSS
Exploits24References1
Exploit DB
Exploit DB
added 2019/12/30 12:0 a.m.257 views

Microsoft UPnP - Local Privilege Elevation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/common' require 'msf/core/post/file' require 'msf/core/post/windows/priv' require 'msf/core/post/windows/registry' require 'msf/core/exploit/exe'...

7.8CVSS9AI score0.2995EPSS
Exploits25
0day.today
0day.today
added 2019/12/19 12:0 a.m.526 views

Microsoft UPnP Local Privilege Elevation Exploit

This Metasploit module exploits two vulnerabilities to execute a command as an elevated user. The first CVE-2019-1405 uses the UPnP Device Host Service to elevate to NT AUTHORITY\LOCAL SERVICE. The second CVE-2019-1322 leverages the Update Orchestrator Service to elevate from NT AUTHORITY\LOCAL...

7.8CVSS0.3AI score0.2995EPSS
Exploits25
Packet Storm
Packet Storm
added 2019/12/18 12:0 a.m.160 views

Microsoft UPnP Local Privilege Elevation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/common' require 'msf/core/post/file' require 'msf/core/post/windows/priv' require 'msf/core/post/windows/registry' require 'msf/core/exploit/exe'...

7.2CVSS0.6AI score0.2995EPSS
Exploits25
Metasploit
Metasploit
added 2019/12/10 1:9 a.m.298 views

Microsoft UPnP Local Privilege Elevation Vulnerability

This exploit uses two vulnerabilities to execute a command as an elevated user. The first CVE-2019-1405 uses the UPnP Device Host Service to elevate to NT AUTHORITY\LOCAL SERVICE The second CVE-2019-1322 leverages the Update Orchestrator Service to elevate from NT AUTHORITY\LOCAL SERVICE to NT...

7.8CVSS8.2AI score0.2995EPSS
Exploits25
Circl
Circl
added 2019/11/14 3:2 p.m.14 views

CVE-2019-1405

creationtimestamp| type| source ---|---|--- 2019-11-14 15:02:06+00:00| seen| https://t.me/canyoupwnme/6135 2019-11-15 19:29:39+00:00| published-proof-of-concept| https://t.me/canyoupwnme/6143 2019-11-16 12:53:34+00:00| published-proof-of-concept| https://t.me/DC8044Info/473 2019-12-18...

7.8CVSS7.1AI score0.2995EPSS
Exploits24References13
0day.today
0day.today
added 2019/11/14 12:0 a.m.965 views

Microsoft Windows 10 Build 1803 < 1903 - (COMahawk) Local Privilege Escalation Exploit

EDB Note Download: - https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47684-1.exe - https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47684-2.zip COMahawk Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322 Video Dem...

7.8CVSS0.2AI score0.2995EPSS
Exploits25
exploitpack
exploitpack
added 2019/11/14 12:0 a.m.123 views

Microsoft Windows 10 Build 1803 1903 - COMahawk Local Privilege Escalation

Microsoft Windows 10 Build 1803 1903 - COMahawk Local Privilege Escalation EDB Note Download: - https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47684-1.exe - https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47684-2.zip COMahawk...

7.2CVSS0.4AI score0.2995EPSS
Exploits25
Exploit DB
Exploit DB
added 2019/11/14 12:0 a.m.486 views

Microsoft Windows 10 Build 1803 &lt; 1903 - &#039;COMahawk&#039; Local Privilege Escalation

EDB Note Download: - https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/47684-1.exe - https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/47684-2.zip COMahawk Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322 Video Demo...

7.8CVSS9AI score0.2995EPSS
Exploits25
OpenVAS
OpenVAS
added 2019/11/13 12:0 a.m.54 views

Microsoft Windows Multiple Vulnerabilities (KB4525237)

This host is missing a critical security update according to Microsoft KB4525237 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.9CVSS7.1AI score0.75859EPSS
Exploits36References3
OpenVAS
OpenVAS
added 2019/11/13 12:0 a.m.53 views

Microsoft Windows Multiple Vulnerabilities (KB4523205)

This host is missing a critical security update according to Microsoft KB4523205 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.9CVSS7.1AI score0.75859EPSS
Exploits36References3
CVE
CVE
added 2019/11/12 6:53 p.m.1197 views

CVE-2019-1405

CVE-2019-1405 is a local privilege-escalation flaw in the Windows UPnP service where improper handling allows COM object creation. Root cause per the connected CISA KEV entry is improper COM object creation by the UPnP service, enabling elevation of privileges. The CVSSv3.1 metrics in the initial...

7.8CVSS8.4AI score0.2995EPSS
In wildExploits24References3Affected Software15
Vulnrichment
Vulnrichment
added 2019/11/12 6:53 p.m.13 views

CVE-2019-1405

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play UPnP service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'...

6.9AI score0.2995EPSS
Exploits24References2
ATTACKERKB
ATTACKERKB
added 2019/11/12 12:0 a.m.36 views

CVE-2019-1405

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play UPnP service improperly allows COM object creation, aka ‘Windows UPnP Service Elevation of Privilege Vulnerability’. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker...

7.8CVSS8.6AI score0.2995EPSS
In wildExploits24References3
Symantec
Symantec
added 2019/11/12 12:0 a.m.175 views

Microsoft Windows UPnP Service CVE-2019-1405 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Window...

1.4AI score0.2995EPSS
Exploits24Affected Software3
Rows per page
Query Builder