Lucene search
K

128 matches found

redhatcve
redhatcve
added 2022/01/17 5:36 p.m.66 views

CVE-2022-0264

A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating som...

5.5CVSS6AI score0.00255EPSS
Exploits0References3
kitploit
kitploit
added 2021/07/16 12:30 p.m.50 views

Exploit_Mitigations - Knowledge Base Of Exploit Mitigations Available Across Numerous Operating Systems, Architectures And Applications And Versions

The goal is to list exploitation mitigations added over time in various operating systems, software, libraries or hardware. It becomes handy to know if a given vulnerability is easily exploitable or not depending on exploitation mitigations in place. An example is the following: Supported targets...

6.6AI score
Exploits0References14
googleprojectzero
googleprojectzero
added 2020/09/01 12:0 a.m.101 views

JITSploitation I: A JIT Bug

By Samuel Groß, Project Zero This three-part series highlights the technical challenges involved in finding and exploiting JavaScript engine vulnerabilities in modern web browsers and evaluates current exploit mitigation technologies. The exploited vulnerability, CVE-2020-9802, was fixed in iOS...

8.8CVSS9.5AI score0.08207EPSS
Exploits4
openvas
openvas
added 2020/07/27 12:0 a.m.19 views

Adobe Creative Cloud Security Update (APSB20-33) - Windows

Adobe Creative cloud is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:creativecloud";...

10CVSS9.6AI score0.04306EPSS
Exploits0References1
prion
prion
added 2020/07/17 12:15 a.m.22 views

Privilege escalation

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a lack of exploit mitigations vulnerability. Successful exploitation could lead to privilege escalation...

7.5CVSS9.2AI score0.03436EPSS
Exploits0References1Affected Software1
cve
cve
added 2020/07/16 11:59 p.m.327 views

CVE-2020-9669

CVE-2020-9669 affects Adobe Creative Cloud Desktop Application 5.1 and earlier. Root cause: lack of exploit mitigations enabling privilege escalation. Impact: could escalate privileges within the user context. Public details come from Adobe’s APSB20-33 advisory and related vendor/NVD entries. Rem...

9.8CVSS9.2AI score0.03436EPSS
Exploits0References1Affected Software1
attackerkb
attackerkb
added 2020/07/15 12:0 a.m.31 views

CVE-2020-14511

Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers versions prior to 5.4. Recent assessments: wvu-r7 at July 31, 2020 3:51pm UTC reported: The web server is a 32-bit, big-endian MIPS...

9.8CVSS9.1AI score0.01355EPSS
Exploits0References3
kitploit
kitploit
added 2019/08/16 10:0 p.m.556 views

Iris - WinDbg Extension To Perform Basic Detection Of Common Windows Exploit Mitigations

Iris WinDbg extension performs basic detection of common Windows exploit mitigations 32 and 64 bits. The checks implemented, as can be seen in the screenshot above, are for the loaded modules: DynamicBase ASLR DEP SEH SafeSEH CFG RFG GS AppContainer If you don't know the meaning of some of the...

7.3AI score
Exploits0References5
zdt
zdt
added 2018/04/17 12:0 a.m.59 views

Microsoft Windows - nt!NtQueryInformationTransactionManager (TransactionManagerRecoveryInformation)

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryInformationTransactionManager system call invoked with the TransactionManagerRecoveryInformation 4 information class may disclose uninitialized kernel pool memory to user-mode clients. The vulnerability...

6.2AI score0.0358EPSS
Exploits1
zdt
zdt
added 2018/04/17 12:0 a.m.55 views

Microsoft Windows - nt!NtQuerySystemInformation (SystemPageFileInformation(Ex)) Kernel 64-bit Stack

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQuerySystemInformation system call invoked with the SystemPageFileInformation 0x12 and SystemPageFileInformationEx 0x90 information classes discloses uninitialized kernel stack memory to user-mode clients. The...

6.2AI score0.0358EPSS
Exploits1
exploitpack
exploitpack
added 2018/04/16 12:0 a.m.12 views

Microsoft Windows - nt!NtQueryInformationProcess (ProcessImageFileName) Kernel 64-bit PoolStack Memory Disclosure

Microsoft Windows - nt!NtQueryInformationProcess ProcessImageFileName Kernel 64-bit PoolStack Memory Disclosure / We have discovered that the nt!NtQueryInformationProcess system call invoked with the ProcessImageFileName 0x1B information class discloses uninitialized kernel memory to user-mode...

0.2AI score
Exploits0
exploitdb
exploitdb
added 2018/04/16 12:0 a.m.86 views

Microsoft Windows - 'nt!NtQueryInformationTransactionManager (TransactionManagerRecoveryInformation)' Kernel Pool Memory Disclosure

/ We have discovered that the nt!NtQueryInformationTransactionManager system call invoked with the TransactionManagerRecoveryInformation 4 information class may disclose uninitialized kernel pool memory to user-mode clients. The vulnerability affects Windows 7 to 10, 32/64-bit. The output structu...

7AI score
Exploits0
exploitdb
exploitdb
added 2018/04/16 12:0 a.m.50 views

Microsoft Windows - 'nt!NtQueryInformationProcess (ProcessImageFileName)' Kernel 64-bit Pool/Stack Memory Disclosure

/ We have discovered that the nt!NtQueryInformationProcess system call invoked with the ProcessImageFileName 0x1B information class discloses uninitialized kernel memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. According to the ZwQueryInformationProcess...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2018/04/16 12:0 a.m.113 views

Microsoft Windows - 'nt!NtQueryVirtualMemory (Memory(Privileged)BasicInformation)' Kernel 64-bit Stack Memory Disclosure

/ We have discovered that the nt!NtQueryVirtualMemory system call invoked with the MemoryBasicInformation 0x0 and MemoryPrivilegedBasicInformation 0x8 information classes discloses uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10...

7AI score
Exploits0
exploitdb
exploitdb
added 2018/04/16 12:0 a.m.251 views

Microsoft Windows - 'nt!NtQuerySystemInformation (SystemPageFileInformation(Ex))' Kernel 64-bit Stack Memory Disclosure

/ We have discovered that the nt!NtQuerySystemInformation system call invoked with the SystemPageFileInformation 0x12 and SystemPageFileInformationEx 0x90 information classes discloses uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 t...

7.4AI score
Exploits0
seebug
seebug
added 2018/03/23 12:0 a.m.75 views

Windows Kernel 64-bit stack memory disclosure in NtQueryInformationThread(ThreadBasicInformation)(CVE-2018-0895)

We have discovered that the nt!NtQueryInformationThread system call invoked with the 0 information class ThreadBasicInformation discloses portions of uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. The specific layout of the...

5.3AI score0.02866EPSS
Exploits2
seebug
seebug
added 2018/03/23 12:0 a.m.43 views

Windows Kernel 64-bit stack memory disclosure in win32k!PROXYPORT::SendRequest(CVE-2018-0814)

We have discovered that the win32k!PROXYPORT::SendRequest function sends ALPC messages with portions of uninitialized memory from the local stack frame on Windows 7 64-bit other versions were not tested. The message is 0x20 bytes long, 8 of which are uninitialized. The layout of the memory area i...

5.6AI score0.0188EPSS
Exploits1
zdt
zdt
added 2018/03/20 12:0 a.m.76 views

Microsoft Windows Kernel - NtQueryInformationThread(ThreadBasicInformation) 64-bit Stack Memory Disc

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryInformationThread system call invoked with the 0 information class ThreadBasicInformation discloses portions of uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit...

5.5AI score0.02866EPSS
Exploits2
zdt
zdt
added 2018/03/20 12:0 a.m.193 views

Microsoft Windows Kernel - NtQueryVirtualMemory(MemoryMappedFilenameInformation) 64-bit Pool Memory

Exploit for windows platform in category dos / poc / We have discovered that the nt!NtQueryVirtualMemory system call invoked with the 2 information class MemoryMappedFilenameInformation discloses portions of uninitialized kernel pool memory to user-mode clients. The vulnerability affects 64-bit...

1.9CVSS5.5AI score0.02435EPSS
Exploits3
exploitdb
exploitdb
added 2018/03/20 12:0 a.m.60 views

Microsoft Windows Kernel - 'NtQueryInformationThread(ThreadBasicInformation)' 64-bit Stack Memory Disclosure

/ We have discovered that the nt!NtQueryInformationThread system call invoked with the 0 information class ThreadBasicInformation discloses portions of uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. The specific layout of the...

7.4AI score
Exploits0
Rows per page
Query Builder