6692 matches found
NETGATE AMITI Antivirus 23.0.305 Privilege Escalation
Exploit Title: NETGATE AMITI Antivirus Unquoted Service Path Privilege Escalation Date: 15/10/2016 Author: Amir.ght Vendor Homepage: http://www.netgate.sk/ Software Link: http://www.netgate.sk/download/download.php?id=11 version : build 23.0.305 Latest Tested on: Windows 7 AMITI Antivirus install...
Wondershare PDFelement 5.2.9 - Unquoted Service Path Privilege Escalation
Exploit Title: Wondershare PDFelement Unquoted Service Path Privilege Escalation Date: 10/14/2016 Author: Saeed Hasanzadeh Net.Hun73r Vendor Homepage: https://www.wondershare.com/ Software Link: http://download.wondershare.com/inst/pdfelementsetupfull1042.exe version : 5.2.9 Tested on: Windows 7...
CVE-2016-6935
Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.8.0.310 on Windows allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory...
IObit Malware Fighter 4.3.1 - Unquoted Service Path Privilege Escalation
IObit Malware Fighter 4.3.1 - Unquoted Service Path Privilege Escalation Exploit Title: IObit Malware Fighter Unquoted Service Path Privilege Escalation Date: 12/10/2016 Author: Amir.ght Vendor Homepage: http://www.iobit.com/en/index.php Software Link:...
IObit Malware Fighter 4.3.1 - Unquoted Service Path Privilege Escalation
Exploit for windows platform in category local exploits Exploit Title: IObit Malware Fighter Unquoted Service Path Privilege Escalation Date: 12/10/2016 Author: Amir.ght Vendor Homepage: http://www.iobit.com/en/index.php Software Link:...
Subversion 1.6.6/1.6.12 - Code Execution
This is an exploit for the subversion vulnerability published as CVE-2013-2088. Author: GlacierZ0ne [email protected] Exploit Type: Code Execution Access Type: Authenticated Remote Exploit Prerequisites: svn command line client available, subversion server exposes webdav through apache,...
HTA Web Server
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTA Web Server', 'Description' = %q This module hosts an HTML Application HTA that when opened will run a payload via Powershell. When a user...
Detect It Easy Handles PE File Memory Corruption Vulnerability
Detect it Easy is a multifunctional PE-DIY tool mainly used for shell detection. Supports direct drag and drop of files, which can be added to the right-click menu. Detect it Easy has a memory corruption vulnerability in the processing of pe files, constructing malformed pe files can cause the...
Microsoft Browser Elevation of Privilege (MS16-118: CVE-2016-3388)
An Elevation of Privileges vulnerability exists in Internet Explorer and Edge. The vulnerability is due to a failure in properly securing a private namespace. A remote attacker could exploit this vulnerability by enticing a user to run a specially crafted executable...
Minecraft Launcher 1.6.61 - Insecure File Permissions Privilege Escalation
Minecraft Launcher: https://minecraft.net Version: 1.6.61 By Ross Marks: http://www.rossmarks.co.uk Exploit-db: https://www.exploit-db.com/author/?a=8724 Category: Local Tested on: Windows 10 x86/x64 1 Insecure File Permissions Local Privilege Escalation Minecraft's launcher minecraftLauncher.exe...
Microsoft Windows Transaction Manager Elevation of Privilege (MS16-123: CVE-2016-3341)
An elevation of privilege vulnerability has been reported in Microsoft Windows Kernel Transaction Manager. The vulnerability is due to an malformed blf file, which could be abused by attackers to gain local privilege escalation. The attacker must entice the victim to run an executable file to...
Powershell Payload Execution Exploit
Exploit for windows platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/services' require 'msf/core/post/windows/powershell' require...
Powershell Payload Execution
This module generates a dynamic executable on the session host using .NET templates. Code is pulled from C templates and impregnated with a payload before being sent to a modified PowerShell session with .NET 4 loaded. The compiler builds the executable standard or Windows service in memory and...
DWebPro 8.4.2 Local File Inclusion Vulnerability
DWebPro is a dynamic web site software package for distribution on CD/DVD or USB drives. A local file inclusion vulnerability exists in the start parameter of DWebPro, which allows an attacker to access arbitrary files and, when browsing to an executable file, execute the file with system...
Waves Audio Service - Unquoted Service Path Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Waves Audio Service: http://www.maxx.com By Ross Marks: http://www.rossmarks.co.uk Exploit-db: https://www.exploit-db.com/author/?a=8724 Category: Local Tested on: Windows 10 x86/x64 1 Unquoted Service Path Privilege Escalation Max audio...
BlueStacks 2.5.55 - Unquoted Service Path Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Exploit Title: BlueStacks 2.5.55 Unquoted Service Path Privilege Escalation Date: 24/09/2016 Author: Yunus YILDIRIM @Th3GundY Team: CT-Zer0 @CRYPTTECH Website: http://yildirimyunus.com Contact: email protected Category: local Vendor Homepage...
DEBIAN-CVE-2016-1371
ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted mew packer executable...
CVE-2016-1371
ClamAV before 0.99.2 is affected by CVE-2016-1371 and CVE-2016-1372 (and related issues) due to parsing crafted mew packer and 7z files, enabling remote DoS or application crash. Affected component is libclamav/clamav daemons prior to 0.99.2; impact is partial availability denial of service. Debi...
CVE-2016-1371
ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted mew packer executable...
Multiple memory corruption vulnerabilities in the PECompact shell pec2.exe module
PECompact shell is a shelling tool that runs on the win32 platform. The tool has multiple memory corruption vulnerabilities in the handling of pe files, allowing an attacker to cause a program crash by constructing a malformed pe file. If successfully exploited, it can cause arbitrary code...