Snow Software Snow Inventory Java Scanner 安全漏洞

Snow Software Snow Inventory Java Scanner is a Java Inventory Scanner from Snow Software, Sweden. A security vulnerability exists in Snow Software Snow Inventory Java Scanner version 1.0, which stems from a problem with software privilege filtering. The vulnerability can be exploited by an attack...

PT-2020-3899 · Microsoft · Windows Shell +1

Name of the Vulnerable Software and Affected Versions: Windows Shell affected versions not specified Description: The issue is related to the improper handling of objects in memory by the Shell infrastructure component, allowing an attacker to potentially run processes in an elevated context. To...

PT-2020-3676 · Microsoft · Windows Print Spooler +1

Name of the Vulnerable Software and Affected Versions: Windows Print Spooler affected versions not specified Description: An elevation of privilege issue exists due to the Windows Print Spooler service improperly allowing arbitrary writing to the file system. This could enable an attacker to run...

Microsoft Windows Diagnostics Hub Elevation of Privilege Vulnerability

Windows Server is the brand name of a series of server operating systems released by Microsoft, which includes all Windows operating systems released under the brand name "Windows Server". An elevation of privilege vulnerability exists in Microsoft Windows Diagnostics Hub, which arises from a...

CVE-2020-6013

ZoneAlarm Firewall and Antivirus products before version 15.8.109.18436 allow an attacker who already has access to the system to execute code at elevated privileges through a combination of file permission manipulation and exploitation of Windows CVE-2020-00896 on unpatched systems...

Microsoft Windows and Windows Server Elevation of Privilege Vulnerability (CNVD-2020-19923)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. There are security vulnerabilities in Microsoft Windows and Windows Server. An attacker...

CVE-2018-4049

An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's “Games” directory, version 1.2.48.36 Windows 64-bit Installer. An attacker can overwrite executables of installed games to exploit this vulnerability and execute arbitrary code with elevat...

Apple iOS, macOS High Sierra and watchOS CoreFoundation Competitive Conditions Vulnerability

Apple iOS, macOS High Sierra, and watchOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers; and watchOS is a smartwatch operating system. CoreFoundation is one of the core functional components. A...

Multiple Apple Products CoreFoundation Competitive Conditions Vulnerability

Apple iOS, macOS High Sierra, and watchOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers; and watchOS is a smartwatch operating system. CoreFoundation is one of the core functional components. A...

VulnCheck KEV: CVE-2017-3881

A vulnerability in the Cisco Cluster Management Protocol CMP processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges...

Teradata Virtual Machine Community Edition 15.0 Insecure File Creation Vulnerability

Teradata Virtual Machine Community Edition version 15.10 suffers from an insecure creation of files in /tmp that may lead to elevated code execution. Title: Teradata Virtual Machine Community Edition v15.10 Insecure creation of files in /tmp Author: Larry W. Cashdollar, @larry0 Date: 2016-10-01...

Teradata Virtual Machine Community Edition 15.0 Insecure File Creation

Title: Teradata Virtual Machine Community Edition v15.10 Insecure creation of files in /tmp Author: Larry W. Cashdollar, @larry0 Date: 2016-10-01 Download Site: http://downloads.teradata.com/download/database/teradata-virtual-machine-community-edition-for-vmware Vendor: Teradata Vendor Notified:...

CVE-2016-7489

Teradata Virtual Machine Community Edition v15.10's perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this may lead to elevated code execution...

CVE-2016-7489

Teradata Virtual Machine Community Edition v15.10's perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this may lead to elevated code execution...

Microsoft Windows Universal Log File System Driver Elevation of Privilege Vulnerability (CNVD-2016-11023)

Microsoft Windows is a family of operating systems released by the American company Microsoft Microsoft. CLFS is a high-performance, general-purpose log file subsystem. Elevated privilege vulnerabilities exist when the Windows Common Log File System CLFS driver fails to properly handle objects in...

PT-2010-4102 · Microsoft · Windows Vista +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through SP2 and R2 Microsoft Windows 7 affected versions not specified Description: The issue arises from incorrect access control lists ACLs on the...