Putty Beta 0.67 DLL Hijacking

/ Exploit Title: Putty DLL Hijacking Exploit UxTheme.dll or ntmarta.dll Vendor Homepage:https://the.earth.li/sgtatham/putty/latest/x86/putty.exe Author: Sachin Wagh @tigertigerboy Linkedin: https://in.linkedin.com/in/sachin-wagh-95b17555 Affected Version: beta 0.67 Tested on: Windows 7 Ultimate /...

Suspicious Webpage JavaScript Downloader

Certain malicious executable files can be hidden using js downloader file. A remote attacker could exploit this vulnerability to entice unsuspecting users to execute arbitrary files...

Informatica: [oneclickdrsfdc-test.informatica.com] Tomcat Example Scripts Exposed Unauthenticated

Issue The consultant identified that there is an unauthenticated installation of apache tomcat installed on the affected host. This particular installation has the /examples directory exposed which contains several scripts that execute server side code, these scripts can also be leveraged to carr...

CVE-2016-1438

Cisco AsyncOS 9.7.0-125 on Email Security Appliance ESA devices allows remote attackers to bypass intended spam filtering via crafted executable content in a ZIP archive, aka Bug ID CSCuy39210...

CVE-2016-4158

Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.7.0.272 on Windows allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory...

Mozilla Firefox and Firefox ESR Privilege Gain Vulnerability

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open source web browser; Firefox ESR is an extended support version of Firefox. A privilege-acquisition vulnerability exists in the maintenance service of Mozilla Firefox versio...

UBUNTU-CVE-2016-1371

ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted mew packer executable...

Valve Steam 3.42.16.13 Local Privilege Escalation

Exploit Title: Valve Steam 3.42.16.13 Local Privilege Escalation CVE-ID: CVE-2016-5237 Date: 5/11/52016 Exploit Author: gsX Contact: [email protected] Vendor Homepage: http://www.valvesoftware.com/ Software Link: http://store.steampowered.com/about/ Version: File Version 3.42.16.13, Built: Apr ...

OEM Bloatware Security Vulnerabilities Found

Last year’s Superfish and eDellRoot bloatware mishaps exposed the security nightmare that pre-installed software updaters can create on new laptops. And while these two high-profile incidents made the issue public, they’re hardly isolated cases. Many popular consumer and business laptops from...

The vulnerability of VMware Workstation and VMware Player allows attackers to exploit their privileges.

The vulnerability of VMware Workstation and VMware Player exists due to incorrect execution of the executable file. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

Process Hacker DLL Hijacking

Hi Wen Jia, You probably heart about the Java issue which affected their installer. http://www.oracle.com/technetwork/topics/security/alert-cve-2016-0603-2874360.html However this issue also affects multiple other installers as a security researcher has shown...

FFmpeg remote file stealing vulnerabilities – moving end of the safety analysis report-vulnerability warning-the black bar safety net

0x1 vulnerability of origin FFmpeg remote file stealing vulnerabilities original source is Foreign vulnerability of the platform,the last year has been in the CTF match is used. Official in January of this year released the fixed version and published the vulnerability number CVE-2 0 1 6-1 8 9...

Operation Technology ETAP 14.1.0 - Local Privilege Escalation

Operation Technology ETAP 14.1.0 - Local Privilege Escalation Operation Technology ETAP 14.1.0 Local Privilege Escalation Vendor: Operation Technology, Inc. Product web page: http://www.etap.com Affected version: 14.1.0.0 Summary: Enterprise Software Solution for Electrical Power Systems. ETAP is...

How RTF malware evades static signature-based detection

History Rich Text Format RTF is a document format developed by Microsoft that has been widely used on various platforms for more than 29 years. The RTF format is very flexible and therefore complicated. This makes the development of a safe RTF parsers challenging. Some notorious vulnerabilities...

How RTF malware evades static signature-based detection

History Rich Text Format RTF is a document format developed by Microsoft that has been widely used on various platforms for more than 29 years. The RTF format is very flexible and therefore complicated. This makes the development of a safe RTF parsers challenging. Some notorious vulnerabilities...

CVE-2016-2077

VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vectors...

CVE-2016-2077

VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vectors...

Symantec Anti-virus Engine Denial of Service Vulnerability

Symantec Anti-virus Engine AVE is a network service from Symantec, Inc. that provides virus scanning and virus remediation for application data traveling over a network. A security vulnerability exists in Symantec AVE version 20151.1.0.32. The vulnerability can be exploited by an attacker to caus...

Code injection

The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers to cause a denial of service application crash or possibly execute...

Design/Logic Flaw

Unquoted Windows search path vulnerability in EEDService in Symantec Endpoint Encryption SEE 11.x before 11.1.1 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe...