UBUNTU-CVE-2017-5332

The extractgroupiconcursorresource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service process crash and execute arbitrary code via a crafted executable...

Web Servers Malicious Upload Directory Traversal (CVE-2022-29596)

A directory traversal vulnerability exists in web servers. The vulnerability allows unauthorized users to upload malicious files to the server. A remote attacker can exploit this vulnerability by uploading an arbitrary, executable file and executing it under the context of SYSTEM...

Chromebackdoor - Backdoor C&C for Populars Browsers

Chromebackdoor is a pentest tool, this tool use a MITB technique for generate a windows executable ".exe" after launch run a malicious extension or script on most popular browsers, and send all DOM datas on command and control. VIDEO Install Text V 3.0 Install Video OLD Binder guide Module guide...

SoftMaker Office 201x Privilege Escalation

Hi @ll, the service pack installers for SoftMaker Office 201x, available from , are surprise.- vulnerable. The executable installer OUCH ofw16763.exe, a 7z SFX OUCH, creates an UNPROTECTED directory "%TEMP%\7zSxxxxxxxx" to extract its payload, then executes "%TEMP%\7zSxxxxxxxx\spsetup.exe"...

WampServer Arbitrary Code Execution Vulnerability

WampServer is an integrated installation of Apache, Mysql and PHP for the Windows platform. A security vulnerability exists in the wampmanager.exe and unins000.exe files in WampServer version 3.0.6. A local attacker can replace the source file with the wampmanager.exe executable or the unins000.e...

Code injection

WampServer 3.0.6 installs two services called 'wampapache' and 'wampmysqld' with weak file permissions, running with SYSTEM privileges. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system. To properly exploit th...

CVE-2016-10031

WampServer 3.0.6 installs two services called 'wampapache' and 'wampmysqld' with weak file permissions, running with SYSTEM privileges. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system. To properly exploit th...

PT-2016-4568 · Wampserver Team · Wampserver

Name of the Vulnerable Software and Affected Versions: WampServer version 3.0.6 Description: The issue concerns two files, wampmanager.exe and unins000.exe, which have a weak ACL for Modify. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with...

OWASP AntiSamy Security Bypass Vulnerability

OWASP AntiSamy is a library for HTML and CSS coding from the OWASP Foundation in the United States. A security bypass vulnerability exists in OWASP AntiSamy. An attacker can exploit this vulnerability by submitting specially crafted input to bypass the library's security protections and submit...

Wampserver 3.0.6 - Insecure File Permissions Privilege Escalation Vulnerability

Exploit for windows platform in category local exploits ===================================================== Vendor Homepage: http://www.wampserver.com/ Date: 10 Dec 2016 Version : Wampserver 3.0.6 32 bit x86 Tested on: Windows 7 Ultimate SP1 EN Author: Heliand Dema Contact: email protected...

CVE-2016-10006

In OWASP AntiSamy before 1.5.5, by submitting a specially crafted input a tag that supports style with active content, you could bypass the library protections and supply executable code. The impact is XSS...

Cross site scripting

In OWASP AntiSamy before 1.5.5, by submitting a specially crafted input a tag that supports style with active content, you could bypass the library protections and supply executable code. The impact is XSS...

CVE-2016-10006

In OWASP AntiSamy before 1.5.5, by submitting a specially crafted input a tag that supports style with active content, you could bypass the library protections and supply executable code. The impact is XSS...

CVE-2016-10006

In OWASP AntiSamy before 1.5.5, by submitting a specially crafted input a tag that supports style with active content, you could bypass the library protections and supply executable code. The impact is XSS...

Malwarebytes Handles PE Files with Memory Corruption Vulnerability

Malwarebytes is an antivirus program. Malwarebytes handles PE files with a memory corruption vulnerability. Due to by constructing malformed PE format samples can crash the antivirus program. If successfully exploited, it can lead to arbitrary code execution...

CVE-2016-7300

Untrusted search path vulnerability in Microsoft Auto Updater for Mac allows local users to gain privileges via a Trojan horse executable file, aka "Microsoft MAU Office Elevation of Privilege Vulnerability."...

Privilege escalation

Untrusted search path vulnerability in Microsoft Auto Updater for Mac allows local users to gain privileges via a Trojan horse executable file, aka "Microsoft MAU Office Elevation of Privilege Vulnerability."...

CVE-2016-7300

CVE-2016-7300 affects Microsoft Auto Update (MAU) for Mac. The root cause is an untrusted search path and improper update validation that lets a local attacker place a crafted executable to execute code with elevated privileges. Impact is local privilege escalation; public exploits exist and were...

Analyze Suspected Malware Documents: QuickSand

Analyze Suspected Malware Documents QuickSand is a compact C framework to analyze suspected malware documents to 1 identify exploits in streams of different encodings, 2 locate and extract embedded executables. By having the ability to locate embedded obfuscated executables, QuickSand could detec...

Python JSON Fuzzer: PyJFuzz

Python JSON Fuzzer PyJFuzz is a small, extensible and ready-to-use framework used to fuzz JSON inputs , such as mobile endpoint REST API, JSON implementation, Browsers, cli executable and much more. Dependencies In order to work PyJFuzz need a single dependency, bottle , you can install it from...