Lucene search
+L

7 matches found

0day.today
0day.today
added 2023/02/20 12:0 a.m.503 views

Microsoft Windows Contact File Remote Code Execution Vulnerability

Microsoft Windows Contact file / Remote Code Execution Resurrected 2022 / CVE-2022-44666 + John Page aka hyp3rlinx + twitter.com/hyp3rlinx + ISR: ApparitionSec Back in 2018 I discovered three related Windows remote code execution vulnerabilities affecting both VCF and Contact files. They were...

7.8CVSS8AI score0.40435EPSS
Exploits2
GithubExploit
GithubExploit
added 2023/02/15 6:12 p.m.858 views

Exploit for CVE-2022-44666

Microsoft Windows Contacts VCF/Contact/LDAP syslink control...

9.3CVSS8AI score0.99374EPSS
Exploits63
OpenVAS
OpenVAS
added 2022/12/14 12:0 a.m.27 views

Microsoft Windows Multiple Vulnerabilities (KB5021294)

This host is missing an important security update according to Microsoft KB5021294 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

8.5CVSS7.4AI score0.61605EPSS
Exploits6References1
OpenVAS
OpenVAS
added 2022/12/14 12:0 a.m.27 views

Microsoft Windows Multiple Vulnerabilities (KB5021243)

This host is missing a critical security update according to Microsoft KB5021243 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.5AI score0.61605EPSS
Exploits6References1
OpenVAS
OpenVAS
added 2022/12/14 12:0 a.m.31 views

Microsoft Windows Multiple Vulnerabilities (KB5021235)

This host is missing an important security update according to Microsoft KB5021235 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

8.5CVSS7.6AI score0.76106EPSS
Exploits6References3
NVD
NVD
added 2022/12/13 7:15 p.m.23 views

CVE-2022-44666

Windows Contacts Remote Code Execution Vulnerability...

7.8CVSS0.40435EPSS
Exploits2References1
CVE
CVE
added 2022/12/13 12:0 a.m.142 views

CVE-2022-44666

CVE-2022-44666 is a Windows Contacts RCE affecting the Windows Contacts components (VCF/Contact handling) where an href/link attribute processing flow could reach SafeExecute and execute arbitrary code. Affected context centers on wab32.dll/wab.exe usage within Windows Contacts; PoCs and public w...

7.8CVSS8.1AI score0.40435EPSS
Exploits2References1Affected Software10
Rows per page
Query Builder