Lucene search
K

100 matches found

Prion
Prion
added 2020/02/20 4:15 p.m.25 views

Design/Logic Flaw

Electronic Arts Origin 10.5.55.33574 is vulnerable to local privilege escalation due to arbitrary directory DACL manipulation, a different issue than CVE-2019-19247 and CVE-2019-19248. When Origin.exe connects to the named pipe OriginClientService, the privileged service verifies the client's...

7.2CVSS7.9AI score0.00723EPSS
Exploits0References1Affected Software1
Kitploit
Kitploit
added 2019/11/23 12:30 p.m.111 views

RdpThief - Extracting Clear Text Passwords From Mstsc.Exe Using API Hooking

RdpThief by itself is a standalone DLL that when injected in the mstsc.exe process, will perform API hooking, extract the clear-text credentials and save them to a file. An aggressor script accompanies it, which is responsible for managing the state, monitoring for new processes and injecting the...

7.4AI score
Exploits0References2
exploitpack
exploitpack
added 2019/11/03 12:0 a.m.12 views

DOUBLEPULSAR (x64) - Hooking srv!SrvTransactionNotImplemented in srv!SrvTransaction2DispatchTable

DOUBLEPULSAR x64 - Hooking srv!SrvTransactionNotImplemented in srv!SrvTransaction2DispatchTable EDB Download https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47685.zip...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/03 12:0 a.m.148 views

DOUBLEPULSAR (x64) - Hooking 'srv!SrvTransactionNotImplemented' in 'srv!SrvTransaction2DispatchTable'

EDB Download https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/47685.zip...

7.4AI score
Exploits0
Veracode
Veracode
added 2019/09/03 12:20 a.m.29 views

Safer Restriction Bypass

Ghostscript is vulnerable to safer restriction bypass. The attack is possible due to a flaw of exposing .forceput in setsystemparams when hooking errors...

9.8CVSS2.2AI score0.11397EPSS
Exploits0References19Affected Software1
Carbon Black Blog
Carbon Black Blog
added 2019/08/21 1:35 p.m.60 views

The Twists and Turns on the Road to Binee

On August 10, we introduced Binee—a binary emulation environment—to the world at DEFCON and, in an earlier blog, we shared a little bit of how and why we created this tool. Today, Binee is a tool that malware researchers can use as part of their reverse engineering processes. It’s an open-sourced...

7.2AI score
Exploits0
0day.today
0day.today
added 2019/07/28 12:0 a.m.385 views

Microsoft Windows 7 build 7601 (x86) - Local Privilege Escalation Exploit

Exploit for windows platform in category local exploits include include / EDB Note: Download https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47176.zip / / PREPROCESSOR DEFINITIONS / define MNSELECTITEM 0x1E5 define MNSELECTFIRSTVALIDITEM 0x1E7 define...

7.2CVSS7.6AI score0.09788EPSS
Exploits2
Gitee
Gitee
added 2019/07/01 7:47 p.m.4 views

AndroidSecNotes

It is an offensive tool for Android. The repository contains learning notes about Android Security, specifically about the Android Runtime ART and its debugging tools. The notes cover the format of Dex files, the ART runtime, and the Hook framework. The notes mention the use of the "oatdump" tool...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2019/05/16 12:0 a.m.64 views

VMware Workstation DLL Hijacking

--------------------------------------------------------- Title: VMware Workstation DLL hijacking DLLIMPORT void SHGetFolderPathW MessageBox0, "s1kr10s", "VMWare-Poc", MBICONINFORMATION; exit0; -------------------------- https://www.vmware.com/security/advisories/VMSA-2019-0007.html...

9.3CVSS0.2AI score0.0903EPSS
Exploits4
Prion
Prion
added 2019/04/18 7:29 p.m.11 views

Design/Logic Flaw

DISPUTED CertificatePinner.java in OkHttp 3.x through 3.12.0 allows man-in-the-middle attackers to bypass certificate pinning by changing SSLContext and the boolean values while hooking the application. NOTE: This id is disputed because some parties don't consider this is a vulnerability. Their...

4.3CVSS5.6AI score0.02477EPSS
Exploits1References15Affected Software1
OSV
OSV
added 2019/04/18 7:29 p.m.4 views

UBUNTU-CVE-2018-20200

DISPUTED CertificatePinner.java in OkHttp 3.x through 3.12.0 allows man-in-the-middle attackers to bypass certificate pinning by changing SSLContext and the boolean values while hooking the application. NOTE: This id is disputed because some parties don't consider this is a vulnerability. Their...

5.9CVSS6.5AI score0.02477EPSS
Exploits1References7
Kitploit
Kitploit
added 2019/03/31 9:18 p.m.145 views

IDArling - Collaborative Reverse Engineering Plugin For IDA Pro & Hex-Rays

IDArling is a collaborative reverse engineering plugin for IDA Pro and Hex-Rays. It allows to synchronize in real-time the changes made to a database by multiple users, by connecting together different instances of IDA Pro. The main features of IDArling are: hooking general user events structure...

7.3AI score
Exploits0References5
Prion
Prion
added 2018/07/06 7:29 p.m.17 views

Design/Logic Flaw

A vulnerability in Trend Micro Maximum Security's Consumer 2018 versions 12.0.1191 and below User-Mode Hooking UMH driver could allow an attacker to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be injected into other processes...

10CVSS9.2AI score0.03399EPSS
Exploits0References2Affected Software6
NVD
NVD
added 2018/07/06 7:29 p.m.19 views

CVE-2018-3608

A vulnerability in Trend Micro Maximum Security's Consumer 2018 versions 12.0.1191 and below User-Mode Hooking UMH driver could allow an attacker to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be injected into other processes...

10CVSS9.4AI score0.03399EPSS
Exploits0References2
OSV
OSV
added 2018/07/06 7:29 p.m.6 views

CVE-2018-3608

A vulnerability in Trend Micro Maximum Security's Consumer 2018 versions 12.0.1191 and below User-Mode Hooking UMH driver could allow an attacker to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be injected into other processes...

9.8CVSS5.8AI score0.03399EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/07/06 7:0 p.m.21 views

CVE-2018-3608

A vulnerability in Trend Micro Maximum Security's Consumer 2018 versions 12.0.1191 and below User-Mode Hooking UMH driver could allow an attacker to create a specially crafted packet that could alter a vulnerable system in such a way that malicious code could be injected into other processes...

9.4AI score0.03399EPSS
Exploits0References2
CVE
CVE
added 2018/07/06 7:0 p.m.62 views

CVE-2018-3608

CVE-2018-3608 affects Trend Micro Maximum Security (Consumer) for 2018, specifically affected versions 12.0.1191 and below. The vulnerability resides in the User-Mode Hooking (UMH) driver and could allow a crafted network packet to cause code to be injected into other processes on a vulnerable sy...

10CVSS9.3AI score0.03399EPSS
Exploits0References2Affected Software4
OpenVAS
OpenVAS
added 2018/05/08 12:0 a.m.40 views

Trend Micro Maximum Security Multiple Vulnerabilities (May 2018) - Windows

Trend Micro Maximum Security is prone to multiple vulnerabilities. This VT has been deprecated and split into multiple VTs based on vendor advisories: - Trend Micro Maximum Security 12.0 Build 1226 Multiple Vulnerabilities tmka-20066 OID: 1.3.6.1.4.1.25623.1.0.118643 - Trend Micro Maximum Securit...

10CVSS6.7AI score0.03399EPSS
Exploits0References3
seebug.org
seebug.org
added 2018/04/28 12:0 a.m.50 views

AXIS Communications - Cross-Site Scripting / Content Injection(CVE-2015-8258)

Technical Details The variable "imagePath=" that is prone to XSS in a large range of products also can be used to resource injection intents. If inserted a URL in this variable will be made an GET request to this URL, so this an interesting point to request malicious codes from the attacker...

7.8CVSS7.4AI score0.08759EPSS
Exploits6
ThreatPost
ThreatPost
added 2018/04/12 2:50 p.m.25 views

New ‘Early Bird’ Code Injection Technique Helps APT33 Evade Detection

Researchers have identified what they are calling an Early Bird code injection technique used by the Iranian group APT33 to burrow the TurnedUp malware inside infected systems while evading anti-malware tools. The Early Bird code injection technique, highlighted in a Wednesday report by Cyberbit,...

0.4AI score
Exploits0References4
Rows per page
Query Builder