CVE-2016-5237

Valve Steam 3.42.16.13 uses weak permissions for the files in the Steam program directory, which allows local users to modify the files and possibly gain privileges as demonstrated by a Trojan horse Steam.exe file...

About the security content of Apple TV 7.2.1 - Apple Support

For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website. For information about...

Python 2.x Buffer Overflow

!/usr/bin/env python Exploit : Python 2.x Buffer Overflow POC Tested on : Windows XP , Windows 7 Authors : Sultan Albalawi & Chaitanya @bofheaded Discovery date : 21/jan/2017 GitHub : https://github.com/ChaitanyaHaritash/My-Exploits/blob/master/python2.xbof.py Video : https://youtu.be/hcc6Y55PWBg...

openSUSE Security Update : ark (openSUSE-2017-92)

This update for ark fixes the following issues : - CVE-2017-5330: ark could run executable scripts when clicking on them boo1018648 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

ImageMagick 'coders/rle.c' Remote Buffer Overflow Vulnerability - Mac OS X

ImageMagick is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:imagemagick:imagemagick"...

OPENSUSE-SU-2017:0140-1 Security update for ark

This update for ark fixes the following issues: - CVE-2017-5330: ark could run executable scripts when clicking on them boo1018648...

OPENSUSE-SU-2017:0150-1 Security update for ark

This update for ark fixes the following issues: - CVE-2017-5330: ark could run executable scripts when clicking on them boo1018648...

CVE-2016-8204

A Directory Traversal vulnerability in FileReceiveServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to upload a malicious file in a section of the file system where it can be executed...

CVE-2017-5333

Integer overflow in the extractgroupiconcursorresource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service process crash or execute arbitrary code via a crafted executable file...

CVE-2017-5332

The extractgroupiconcursorresource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service process crash and execute arbitrary code via a crafted executable...

PT-2017-16436 · Icoutils +3 · Icoutils +3

Name of the Vulnerable Software and Affected Versions: icoutils versions prior to 0.31.1 Description: The issue is related to an integer overflow in the check offset function, which can be exploited by local users through a crafted executable. This can lead to a denial of service, causing the...

UBUNTU-CVE-2017-5332

The extractgroupiconcursorresource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service process crash and execute arbitrary code via a crafted executable...

Web Servers Malicious Upload Directory Traversal (CVE-2022-29596)

A directory traversal vulnerability exists in web servers. The vulnerability allows unauthorized users to upload malicious files to the server. A remote attacker can exploit this vulnerability by uploading an arbitrary, executable file and executing it under the context of SYSTEM...

Chromebackdoor - Backdoor C&C for Populars Browsers

Chromebackdoor is a pentest tool, this tool use a MITB technique for generate a windows executable ".exe" after launch run a malicious extension or script on most popular browsers, and send all DOM datas on command and control. VIDEO Install Text V 3.0 Install Video OLD Binder guide Module guide...

SoftMaker Office 201x Privilege Escalation

Hi @ll, the service pack installers for SoftMaker Office 201x, available from , are surprise.- vulnerable. The executable installer OUCH ofw16763.exe, a 7z SFX OUCH, creates an UNPROTECTED directory "%TEMP%\7zSxxxxxxxx" to extract its payload, then executes "%TEMP%\7zSxxxxxxxx\spsetup.exe"...

WampServer Arbitrary Code Execution Vulnerability

WampServer is an integrated installation of Apache, Mysql and PHP for the Windows platform. A security vulnerability exists in the wampmanager.exe and unins000.exe files in WampServer version 3.0.6. A local attacker can replace the source file with the wampmanager.exe executable or the unins000.e...

Code injection

WampServer 3.0.6 installs two services called 'wampapache' and 'wampmysqld' with weak file permissions, running with SYSTEM privileges. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system. To properly exploit th...

CVE-2016-10031

WampServer 3.0.6 installs two services called 'wampapache' and 'wampmysqld' with weak file permissions, running with SYSTEM privileges. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system. To properly exploit th...

PT-2016-4568 · Wampserver Team · Wampserver

Name of the Vulnerable Software and Affected Versions: WampServer version 3.0.6 Description: The issue concerns two files, wampmanager.exe and unins000.exe, which have a weak ACL for Modify. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with...

OWASP AntiSamy Security Bypass Vulnerability

OWASP AntiSamy is a library for HTML and CSS coding from the OWASP Foundation in the United States. A security bypass vulnerability exists in OWASP AntiSamy. An attacker can exploit this vulnerability by submitting specially crafted input to bypass the library's security protections and submit...