32 matches found
PT-2022-25951 · Mptcp · Mptcp
Name of the Vulnerable Software and Affected Versions: MPTCP module affected versions not specified Description: The issue is related to an out-of-bounds write vulnerability in the MPTCP module. Successful exploitation of this vulnerability may cause root privilege escalation attacks by modifying...
The vulnerability of the Win32k.sys component of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Win32k.sys component of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges...
Google Android Memory Management Driver Elevation of Privilege Vulnerability (CNVD-2021-44313)
Google Android is a Linux-based open source operating system from Google. A security vulnerability exists in the Google Android memory management driver, which can be exploited by attackers to escalate privileges...
WordPress 5.0 Patched to Fix Serious Bugs
WordPress 5.0 users are being urged to update their CMS software to fix a number of serious bugs. The update WordPress 5.0.1 addresses seven flaws and was issued Thursday, less than a week after WordPress 5.0 was released. The most serious of the flaws is a bug that allows the WordPress “user...
NetEx HyperIP Privilege Escalation Vulnerability
Vulnerability Details Affected Vendor: NetEx Affected Product: HyperIP Affected Version: 6.1.0 Platform: Embedded Linux CWE Classification: CWE-592: Authentication Bypass Issues Impact: Privilege Escalation Attack vector: HTTPS 2. Vulnerability Description Privileges can be escalated by abusing...
PT-2014-18: Weak encryption of account data in Wonderware Information Server
The specialists of the Positive Research center have detected a Weak encryption of account data vulnerability in Wonderware Information Server. Encryption of WIS is insufficient. This vulnerability could allow elevation of privileges if an attacker decrypts the credentials. The system would need ...
Virtual Machine Escape Exploit Targets Xen
Details of a dangerous virtual machine escape exploit were revealed Wednesday by French research outfit VUPEN Security. The attack exploits a recently reported vulnerability in Xen hypervisors and allows an attacker within a guest virtual machine to escape to the host and execute code. Virtual...
IRM 013: Ultraapps Issue Manager is vulnerable to Privilege Escalation
---------------------------------------------------------------------- IRM Security Advisory No. 013 Ultraapps Issue Manager is vulnerable to Privilege Escalation Vulnerablity Type / Importance: Privilege Escalation / High Problem discovered: November 25th 2005 Vendor contacted: November 25th 200...
PHPFM - Arbitrary File Upload
PHPFM - Arbitrary File Upload source: https://www.securityfocus.com/bid/15335/info PHPFM is prone to an arbitrary file upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the Web server process. This may facilitate unauthorize...
CUPS < 1.1.18 Multiple Vulnerabilities
The remote CUPS server seems vulnerable to various flaws buffer overflow, denial of service, privilege escalation that could allow a remote attacker to shut down this service or remotely gain the privileges of the 'lp' user. C Tenable Network Security, Inc. This script checks for CVE-2002-1368, b...
CVE-2002-1245
Maped in LuxMan 0.41 uses the user-provided search path to find and execute the gzip program, which allows local users to modify /dev/mem and gain privileges via a modified PATH environment variable that points to a Trojan horse gzip program...
RedHat 4.x/5.x/6.x / RedHat man 1.5 / Turbolinux man 1.5 / Turbolinux 3.5/4.x - 'man' Buffer Overrun (2)
/ source: https://www.securityfocus.com/bid/1011/info RedHat 4.0/4.1/4.2/5.0/5.1/5.2/6.0/6.2,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.2/4.4 man Buffer Overrun Vulnerability A buffer overflow exists in the implementation of the 'man' program shipped with RedHat Linux, and other LInux...