Lucene search
K

123 matches found

myhack58
myhack58
added 2017/10/12 12:0 a.m.44 views

Microsoft Office Word free macro command execution flaw vulnerability 0day-vulnerability warning-the black bar safety net

If we inform you that in MS-Word on the presence of a Royal Decree to fulfill the vulnerability flaws of the bug, which unnecessary any macro maybe memory overflow? Windows for use between the stop data transfer supply a variety of transmission methods, this one is called static swap agreements, ...

7.3AI score
Exploits0
pentestit
pentestit
added 2017/07/24 8:24 p.m.73 views

UPDATE: Luckystrike 2.0!

PenTestIT RSS Feed My first post regarding this malicious Microsoft Office document generator was about an older version. However a few hours ago, an update was released - Luckystrike 2.0! Major highlights for this awesome release include full support for Microsoft Word in addition to a new COM...

7AI score
Exploits0
Prion
Prion
added 2017/04/10 5:59 p.m.12 views

Privilege escalation

dde-daemon, the daemon process of DDE Deepin Desktop Environment 15.0 through 15.3, runs with root privileges and hardly does anything to identify the user who calls the function through D-Bus. Anybody can change the grub config, even to append some arguments to make a backdoor or privilege...

9CVSS8.7AI score0.01268EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2017/04/10 5:0 p.m.42 views

CVE-2017-7622

The CVE-2017-7622 issue affects DDE’s dde-daemon (Deepin Desktop Environment) versions 15.0–15.3, where the daemon runs with root privileges and does not properly identify the caller over D-Bus. An attacker can exploit DoWriteGrubSettings() to alter GRUB configuration, enabling a backdoor or priv...

9CVSS8.6AI score0.01268EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2017/04/10 5:0 p.m.19 views

CVE-2017-7622

dde-daemon, the daemon process of DDE Deepin Desktop Environment 15.0 through 15.3, runs with root privileges and hardly does anything to identify the user who calls the function through D-Bus. Anybody can change the grub config, even to append some arguments to make a backdoor or privilege...

8.8AI score0.01268EPSS
Exploits1References1
Vulnerability Lab
Vulnerability Lab
added 2017/01/19 12:0 a.m.59 views

FullContact BB #2 - CSV Excel Macro Injection Vulnerability

Document Title: =============== FullContact BB 2 - CSV Excel Macro Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1904 Release Date: ============= 2017-01-19 Vulnerability Laboratory ID VL-ID: ====================================...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/06/15 12:0 a.m.9 views

Cogent DataHub < 6.4.7 Incoming DDE Connection Handling Remote DoS

Binary data scadacogentdatahub647.nbin...

7.3AI score
Exploits0References1
Packet Storm
Packet Storm
added 2016/04/04 12:0 a.m.47 views

BugCrowd CSV Injection

Description: A vulnerability in the file upload feature allows attackers to send malicious csv files. By using the Microsoft Excel DDE function an attacker can launch arbritary commands on the victims system. Many companies don't allow xslx or docx files to be uploaded by security testers, becaus...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

MS Word 95/97/98/2000/2002 Excel 2002 INCLUDETEXT Document Sharing File Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/5586/info The Microsoft Word and Excel INCLUDETEXT Field Code may be used to insert an arbitrary local file into a document. The INCLUDETEXT Field Code is reported to, under some circumstances, present a security threat. ...

7.1AI score
Exploits0
0day.today
0day.today
added 2011/08/16 12:0 a.m.20 views

Wine ( Core exe ) GIF Object Memory Corruption

Exploit for windows platform in category local exploits ================================================ Wine Core exe GIF Object Memory Corruption ================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2007/11/20 12:0 a.m.34 views

Invensys Wonderware InTouch默认统一NetDDE共享特权提升漏洞

Vulnerability Note VU138633 Invensys Wonderware InTouch creates insecure NetDDE share Invensys Wonderware InTouch是一款生产过程中自动化监控系统中的应用。 Invensys Wonderware InTouch对NetDDE共享的默认权限设置存在问题,本地攻击者可以利用漏洞提升特权。 动态数据交换DDE设计允许Microsoft windows应用程序共享数据。NetDDE是Wonderware开发的DDE扩展。InTouch...

7AI score
Exploits0
securityvulns
securityvulns
added 2005/09/29 12:0 a.m.42 views

Bypassing Personal Firewall &#40;Zone Alarm Pro&#41; Using DDE-IPC

Hi All !! While I was testing desktop based firewalls here it is Zone Alarm Pro with the firewall evasion kit developed by me, I found that a very old flaw still exists in many latest versions of desktop based firewalls. It is possible for a malicious program to bypass a desktop based firewall by...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2002/08/26 12:0 a.m.28 views

Microsoft Word 95/97/98/2000/2002 / Excel 2002 - INCLUDETEXT Document Sharing File Disclosure

source: https://www.securityfocus.com/bid/5586/info The Microsoft Word and Excel INCLUDETEXT Field Code may be used to insert an arbitrary local file into a document. The INCLUDETEXT Field Code is reported to, under some circumstances, present a security threat. If the INCLUDETEXT Field Code is...

7.4AI score
Exploits0
CERT
CERT
added 2002/07/13 12:0 a.m.28 views

Microsoft Windows 2000 Network Dynamic Data Exchange (DDE) executes code as Local System

Overview The Windows 2000 Network DDE agent permits local users to execute commands with system privileges. Description Dynamic Data Exchange DDE is an interprocess communication mechanism used in Microsoft Windows. A DDE share is an area of memory which is used to store and retrieve data. Networ...

7.2CVSS6.8AI score0.03501EPSS
Exploits1References5
CVE
CVE
added 2002/02/02 5:0 a.m.42 views

CVE-2001-0944

CVE-2001-0944 describes a DDE-based risk in mIRC where a local user can trigger a DDE message that executes a command, potentially running in another user’s process. This enables local privilege escalation with the command execution potentially affecting confidentiality, integrity, and availabili...

7.2CVSS6.6AI score0.00345EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2002/02/02 5:0 a.m.19 views

CVE-2001-0944

DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process...

6.2AI score0.00345EPSS
Exploits0References1
securityvulns
securityvulns
added 2001/12/03 12:0 a.m.33 views

Проблемы с DDE в mIRC &#40;privelege escalation&#41;

Можно послать DDE сообщение из другого приложения чтобы выполнить команду с привилегиями пользователя mIRC...

1AI score
Exploits0References1
securityvulns
securityvulns
added 2001/12/03 12:0 a.m.23 views

mIRC bug?

Hello, BugTraq readers! I have recently started using mIRC's DDE feature, which allows DDE messaging between its instances and other software. At first I was quite pleased with this feature until I thought about the security implications of it under a multi-user system such as Windows 2000...

0.9AI score
Exploits0
NVD
NVD
added 2001/12/02 5:0 a.m.12 views

CVE-2001-0944

DDE in mIRC allows local users to launch applications under another user's account via a DDE message that executes a command, which may be executed by the other user's process...

7.2CVSS6.2AI score0.00345EPSS
Exploits0References1
CVE
CVE
added 2001/05/07 4:0 a.m.49 views

CVE-2001-0015

CVE-2001-0015 affects Windows 2000 via the Network Dynamic Data Exchange (DDE) component. The vulnerability allows a local attacker to elevate privileges to Local System by sending a WM_COPYDATA message to an invisible DDE window that runs with WINLOGON privileges, enabling arbitrary command exec...

7.2CVSS6.5AI score0.03501EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder