9784 matches found
Microsoft MsMpEng - Multiple Problems Handling ntdll!NtControlChannel Commands
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1260 MsMpEng includes a full system x86 emulator that is used to execute any untrusted files that look like PE executables. The emulator runs as NT AUTHORITY\SYSTEM and isn't sandboxed. Browsing the list of win32 APIs that the...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.1 - kernel sched/core: Fix an SMP ordering race in trytowakeup vs...
PlaySMS Remote Code Execution Vulnerability (CNVD-2017-08174)
PlaySMS is a web-based SMS platform. The platform supports connectivity to SMS gateways, personal messaging systems, and corporate group communication tools. A remote code execution vulnerability exists in the import.php file a.k.a. phonebook import function in PlaySMS version 1.4. A remote...
PlaySMs Remote Code Execution Vulnerability (CNVD-2017-10344)
PlaySMS is an open source WEB SMS platform. A remote code execution vulnerability exists in PlaySms. The vulnerability stems from the address book calling a function in import.php. An attacker can exploit the vulnerability to execute malicious code...
Remote code execution
import.php aka the Phonebook import feature in PlaySMS 1.4 allows remote code execution via vectors involving the User-Agent HTTP header and PHP code in the name of a file...
PlaySMS 1.4 - import.php Remote Code Execution
PlaySMS 1.4 - import.php Remote Code Execution Exploit Title: PlaySMS 1.4 Remote Code Execution using Phonebook import Function in import.php Date: 21-05-2017 Software Link: https://playsms.org/download/ Version: 1.4 Exploit Author: Touhid M.Shaikh Contact: http://twitter.com/touhidshaikh22...
WordPress Yoast SEO plugin <= 3.3.1 - Cross-site Request Forgery (CSRF) Vulnerability
WordPress Yoast SEO plugin Cross-site Request Forgery CSRF exists on /wp-admin/admin.php?page=wpseotools&tool=import-export page. Solution Update the plugin...
Threat Outbreak Alert RuleID29054: Email Messages Distributing Malicious Software on May 10, 2017
Medium Alert ID: 53787 First Published: 2017 May 10 18:30 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29054 may contain the following files: Name | Size...
CVE-2017-7357
Hipchat Server before 2.2.3 allows remote authenticated users with Server Administrator level privileges to execute arbitrary code by importing a file...
CVE-2017-7357
Hipchat Server before 2.2.3 allows remote authenticated users with Server Administrator level privileges to execute arbitrary code by importing a file...
Arbitrary file deletion
Hipchat Server before 2.2.3 allows remote authenticated users with Server Administrator level privileges to execute arbitrary code by importing a file...
CVE-2017-7357
CVE-2017-7357 affects Hipchat Server, specifically versions prior to 2.2.3. The vulnerability allows remote authenticated users with Server Administrator privileges to execute arbitrary code by importing a file. The issue is attributed to the Administrative Imports pathway, enabling code executio...
Unable to Import Windows 10 Gold Image into App Layering ELM: "Failed scanning a directory for files" because of Microsoft.MicrosoftOfficeHub
App Layering 4.0 - 4.5 : The Enterprise Layer Manager ELM fails while publishing an image. Error: "A failure occurred while importing the Layered Image. Failed scanning a directory for files" Be aware that this article is specifically about NTFS attribute handling regarding files in...
Automated Modular Cryptanalysis Tool: FeatherDuster
Automated Modular Cryptanalysis Tool FeatherDuster is a tool written by Daniel “unicornfurnace” Crowley of NCC Group for breaking crypto which tries to make the process of identifying and exploiting weak cryptosystems as easy as possible. Cryptanalib is the moving parts behind FeatherDuster, and...
SUSE-SU-2017:0945-1 Security update for gimp
This update for gimp fixes the following issues: This security issue was fixed: - CVE-2007-3126: Context-dependent attackers were able to cause a denial of service via an ICO file with an InfoHeader containing a Height of zero bsc1032241. These non-security issues were fixed: - bsc1025717: Prefer...
Magmi Cross-Site Scripting Vulnerability
Magmi is a set of import tools for importing product catalogs into the Magento system. A cross-site scripting vulnerability exists in Magmi version 0.7.22, which stems from the program failing to adequately filter user submissions to the magmi-git-master/magmi/web/ajaxgettime.php; URL. A remote...
WMI Based Agentless Post-Exploitation PowerShell RAT: WMImplant
WMImplant is a PowerShell based tool that leverages WMI to both perform actions against targeted machines, but also as the C2 channel for issuing commands and receiving results. WMImplant will likely require local administrator permissions on the targeted machine. It is designed to run both...
DiskBoss Enterprise 'Import Command' Buffer Overflow Vulnerability
DiskBoss is a disk management tool. A buffer overflow vulnerability exists in DiskBoss Enterprise 'Import Command'. An attacker could exploit this vulnerability to execute arbitrary code in the context of an affected application, which could also result in a denial of service...
Buffer Overflow Vulnerability in Multiple Flexense Products
Flexense SyncBreeze Enterprise Client, Disk Sorter Enterprise Clien, and DiskBoss Enterprise Client are all products of Flexense Corporation, USA.Sync Breeze Enterprise Client is Sync Breeze Enterprise Client is a file synchronization solution; Disk Sorter Enterprise Clien is a file classificatio...
CVE-2017-7310
A buffer overflow vulnerability in Import Command in SyncBreeze before 10.6, DiskSorter before 10.6, DiskBoss before 8.9, DiskPulse before 10.6, DiskSavvy before 10.6, DupScout before 10.6, and VX Search before 10.6 allows attackers to execute arbitrary code via a crafted XML file containing a lo...