CVE-2019-1010100

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables ALL executables on the web site. The attack vector is: CAPEC-471, CWE-426, CWE-427...

CVE-2019-1010100

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables ALL executables on the web site. The attack vector is: CAPEC-471, CWE-426, CWE-427...

CVE-2019-1010101

Akeo Consulting Rufus 3.0 and earlier is affected by: Insecure Permissions. The impact is: arbitrary code execution with escalation of privilege. The component is: Executable installer, portable executable ALL executables available. The attack vector is: CWE-29, CWE-377, CWE-379...

Privilege escalation

Akeo Consulting Rufus 3.0 and earlier is affected by: Insecure Permissions. The impact is: arbitrary code execution with escalation of privilege. The component is: Executable installer, portable executable ALL executables available. The attack vector is: CWE-29, CWE-377, CWE-379...

CVE-2019-1010101

Akeo Consulting Rufus 3.0 and earlier is affected by: Insecure Permissions. The impact is: arbitrary code execution with escalation of privilege. The component is: Executable installer, portable executable ALL executables available. The attack vector is: CWE-29, CWE-377, CWE-379...

CVE-2019-1010101

CVE-2019-1010101 affects Akeo Consulting Rufus 3.0 and earlier. The vulnerability is described as Insecure Permissions that enable arbitrary code execution with elevation of privilege. Affected component is the Executable installer and portable executable (ALL executables). Attack vectors are CWE...

CVE-2019-1010100

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables ALL executables on the web site. The attack vector is: CAPEC-471, CWE-426, CWE-427...

CVE-2019-13623

In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java from the package ghidra.app.plugin.core.archive via an archive with an executable file that has an initial ../ in its filename. This allows attackers to overwrite arbitrary files in scenarios where an intermediate analysis...

CVE-2019-13623

In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java from the package ghidra.app.plugin.core.archive via an archive with an executable file that has an initial ../ in its filename. This allows attackers to overwrite arbitrary files in scenarios where an intermediate analysis...

CVE-2019-13623

In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java from the package ghidra.app.plugin.core.archive via an archive with an executable file that has an initial ../ in its filename. This allows attackers to overwrite arbitrary files in scenarios where an intermediate analysis...

CVE-2019-13623

Ghidra CVE-2019-13623 affects NSA Ghidra prior to 9.1. A path traversal in RestoreTask.java enables an archive containing an executable with a leading ../ in its filename to overwrite arbitrary files, potentially affecting analysis results and, per the entry, enabling arbitrary code execution by ...

UACME - Defeating Windows User Account Control

Defeating Windows User Account Control by abusing built-in Windows AutoElevate backdoor. System Requirements x86-32/x64 Windows 7/8/8.1/10 client, some methods however works on server version too. Admin account with UAC set on default settings required. Usage Run executable from command line:...

Vivotek FD8136 Command Injection Vulnerability (CNVD-2019-22783)

Vivotek FD8136 is a hemispherical network camera from Vivotek, Taiwan, China. A command injection vulnerability exists in the Vivotek FD8136. The vulnerability arises from a network system or product not properly filtering specific elements of externally input data during the construction of...

CVE-2019-1010044

borg-reducer c6d5240 is affected by: Buffer Overflow. The impact is: Possible code execution and denial of service. The component is: Output parameter within the executable...

Malicious Package

antd-cloud is a malicious package. The package uploads system information to a remote server, downloads a file and executes it...

PT-2019-4352

Name of the Vulnerable Software and Affected Versions GNU Libc affected versions not specified Description The issue is related to the libld component of the GNU Libc library, which provides system calls and basic functions. It is associated with insufficient input validation, allowing a remote...

PT-2019-6468 · Solarwinds · Dameware Mini Remote Control

Name of the Vulnerable Software and Affected Versions: DameWare Mini Remote Control version 12.1.0.89 Description: The issue allows an unauthenticated, remote attacker to request smart card login and upload and execute an arbitrary executable run under the Local System account. This is due to a...

Waves MAXX Audio WavesSysSvc64.exe Privilege Mobilization Vulnerability

Waves MAXX Audio is an intelligent audio output application.WavesSysSvc64.exe is a driver for Waves MAXX Audio. A security vulnerability exists in WavesSysSvc64.exe version 1.9.29.0 in Waves MAXX Audio. An attacker can exploit the vulnerability to elevate privileges...

VulnCheck KEV: CVE-2019-0880

A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited the vulnerability could elevate privileges on an affected system from low-integrity to medium-integrity...

libvirt: arbitrary command execution via virConnectGetDomainCapabilities API

The virConnectGetDomainCapabilities libvirt API accepts an "emulatorbin" argument to specify the program providing emulation for a domain. Since v1.2.19, libvirt will execute that program to probe the domain's capabilities. Read-only clients could specify an arbitrary path for this argument,...