Samsung SW Update Service Privilege Escalation

Exploit Title: Samsung SW Update Service Unquoted Service Path Privilege Escalation Date: 04/10/2016 Author: Yunus YILDIRIM Th3GundY Team: CT-Zer0 @CRYPTTECH && Superbug @xsuperbug Website: http://yildirimyunus.com Contact: [email protected] Category: local Vendor Homepage:...

Microsoft Windows CLFS Driver Elevation of Privilege (MS16-134: CVE-2016-3343)

An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is due to improper handling of objects in memory. The attacker must entice the victim to run an executable file to exploit this vulnerability...

Microsoft Windows CLFS Elevation of Privilege (MS16-134: CVE-2016-0026)

An elevation of privilege vulnerability has been reported in Microsoft Windows. The vulnerability is due to an malformed blf file, which could be abused by attackers to gain local privilege escalation. The attacker must entice the victim to run an executable file to exploit this vulnerability...

Microsoft Windows CLFS Elevation of Privilege (MS16-134: CVE-2016-7184)

An elevation of privilege vulnerability has been reported in Microsoft Windows. The vulnerability is due to an malformed blf file, which could be abused by attackers to gain local privilege escalation. The attacker must entice the victim to run an executable file to exploit this vulnerability...

Microsoft Windows Driver CLFS Elevation Of Privilege (MS16-134: CVE-2016-3332)

An elevation of privilege vulnerability has been reported in Microsoft Windows. The vulnerability is due to an malformed blf file, which could be abused by attackers to gain local privilege escalation. The attacker must entice the victim to run an executable file to exploit this vulnerability...

CVE-2016-9186

Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors...

NO-IP DUC v4.1.1 Unquoted Service Path Privilege Escalation Exploit

Exploit Title : NO-IPprivilegescalation.rb - 'Unquoted Service Path Privilege Escalation' PDF Version : 4.1.1 vuln Discover : Ehsan Hosseini Module Author : pedr0 Ubuntu r00t-3xp10it Tested on : Windows 7 Professional Software Link : http://www.noip.com/client/DUCSetupv411.exe DESCRIPTION NO-IP D...

PDF Complete Office Edition 4.1.12 - Unquoted Service Path Privilege Escalation Exploit

Exploit Title : PDFcompletecorporateedition.rb - 'Unquoted Service Path Privilege Escalation' PDF Version : 4.1.12 vuln Discover : Joey Lane Module Author : pedr0 Ubuntu r00t-3xp10it Tested on : Windows 7 Professional Software Link : http://www.pdfcomplete.com/cms/Downloads.aspx "This was tested ...

CleanMyPC Unquoted Service Path Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits Exploit Title: CleanMyPC Unquoted Service Path Privilege Escalation Date: 20/10/2016 Exploit Author: Federico Zambito Vendor Homepage: http://macpaw.com/cleanmypc Software Link: http://macpaw.com/cleanmypc Version: 1.7.4.258 Tested on: Windo...

PDF Complete 4.1.12 Corporate Edition Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits Exploit Title: PDF Complete Corporate Edition - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Software Link: http://www.pdfcomplete.com/cms/Downloads.aspx Version: 4.1.12 Tested on: Windows 7...

Vembu StoreGrid 4.0 Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits Exploit Title: Vembu StoreGrid - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 4.0 Tested on: Windows Server 2012 StoreGrid is a re-brandable backup solution, which can install 2 services with...

Lenovo ThinkVantage Communications Utility 3.0.42.0 Privilege Escalation

Exploit Title: Lenovo ThinkVantage Communications Utility - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 3.0.42.0 Tested on: Windows 7 Professional The Lenovo ThinkVantage Communications Utility installs 2 services with unquoted service paths. Thi...

Intel(R) Management Engine Components 8.0.1.1399 Privilege Escalation

Exploit Title: IntelR Management Engine Components - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 8.0.1.1399 Tested on: Windows 7 Professional The IntelR Management and Security Application Local Management Service LMS is installed with an unquote...

Lenovo RapidBoot HDD Acelerator 1.00.0802 Privilege Escalation

Exploit Title: Lenovo RapidBoot HDD Accelerator - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 1.00.0802 Tested on: Windows 7 Professional The Lenovo RapidBoot HDD Accelerator service is installed with an unquoted service path. This enables a loca...

Intel PROSet/Wireless for Bluetooth(R) + High Speed 15.1.0.0096 Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits Exploit Title: IntelR PROSet/Wireless for BluetoothR + High Speed - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 15.1.0.0096 Tested on: Windows 7 Professional The IntelR PROSet/Wireless for...

Realtek High Definition Audio Driver 6.0.1.6730 - Unquoted Service Path Privilege Escalation

Exploit Title: Realtek High Definition Audio Driver - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 6.0.1.6730 Tested on: Windows 7 Professional The Realtek High Definition Audio Driver installs a service with an unquoted service path. This enables...

Lenovo RapidBoot HDD Accelerator 1.00.0802 - Unquoted Service Path Privilege Escalation

Lenovo RapidBoot HDD Accelerator 1.00.0802 - Unquoted Service Path Privilege Escalation Exploit Title: Lenovo RapidBoot HDD Accelerator - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 1.00.0802 Tested on: Windows 7 Professional The Lenovo RapidBoot...

Intel(R) PROSetWireless for Bluetooth(R) + High Speed 15.1.0.0096 - Unquoted Service Path Privilege Escalation

IntelR PROSetWireless for BluetoothR + High Speed 15.1.0.0096 - Unquoted Service Path Privilege Escalation Exploit Title: IntelR PROSet/Wireless for BluetoothR + High Speed - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 15.1.0.0096 Tested on:...

Lenovo ThinkVantage Communications Utility 3.0.42.0 - Unquoted Service Path Privilege Escalation

Lenovo ThinkVantage Communications Utility 3.0.42.0 - Unquoted Service Path Privilege Escalation Exploit Title: Lenovo ThinkVantage Communications Utility - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 3.0.42.0 Tested on: Windows 7 Professional Th...

Lenovo RapidBoot HDD Accelerator 1.00.0802 - Unquoted Service Path Privilege Escalation

Exploit Title: Lenovo RapidBoot HDD Accelerator - Unquoted Service Path Privilege Escalation Date: 10/19/2016 Exploit Author: Joey Lane Version: 1.00.0802 Tested on: Windows 7 Professional The Lenovo RapidBoot HDD Accelerator service is installed with an unquoted service path. This enables a loca...