Lucene search
+L

7331 matches found

Prion
Prion
added 2014/04/30 10:49 a.m.25 views

Directory traversal

maintenserviceinstaller.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process...

6.9CVSS6.9AI score0.00408EPSS
Exploits3References10Affected Software3
ATTACKERKB
ATTACKERKB
added 2014/04/30 10:49 a.m.3 views

CVE-2014-1520

maintenserviceinstaller.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process...

6.9CVSS5.9AI score0.00408EPSS
Exploits3References11
Cvelist
Cvelist
added 2014/04/30 10:0 a.m.30 views

CVE-2014-1520

maintenserviceinstaller.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process...

9AI score0.00408EPSS
Exploits3References10
CVE
CVE
added 2014/04/30 10:0 a.m.105 views

CVE-2014-1520

CVE-2014-1520 affects Mozilla Firefox on Windows prior to version 29.0 and Firefox ESR prior to 24.5. The issue is a local privilege escalation by placing a Trojan horse DLL into a temporary directory during the update process of the Mozilla installer, enabling the attacker to gain elevated privi...

6.9CVSS8.8AI score0.00408EPSS
Exploits3References10Affected Software1
Kitploit
Kitploit
added 2014/04/30 2:9 a.m.27 views

BlackArch Linux v2014.04.21 - Lightweight expansion to Arch Linux for pentesters and security researchers

BlackArch Linux is an Arch-based GNU/Linux distribution for pentesters and security researchers. The BlackArch package repository is compatible with existing Arch installs. Changelog v2014.04.21 added new system packages: mplayer, abs, ack, bc, bridge-utils, darkhttpd, flashplugin, inotify-tools,...

7.4AI score
Exploits0
Prion
Prion
added 2014/04/15 10:55 a.m.18 views

Design/Logic Flaw

Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a guiinputtest.pl params parameter to servlet/Installer...

9CVSS8.2AI score0.04723EPSS
Exploits0References1
Cvelist
Cvelist
added 2014/04/15 10:0 a.m.22 views

CVE-2014-0359

Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a guiinputtest.pl params parameter to servlet/Installer...

7.6AI score0.04723EPSS
Exploits0References1
Kitploit
Kitploit
added 2014/04/14 10:33 p.m.11 views

Hidden File Finder v3.0 - Free Tool to Find and Unhide/Remove all the Hidden Files

Hidden File Finder is the free software to quickly scan and discover all the Hidden files on your Windows system. It performs swift multi threaded scan of all the folders parallely and quickly uncovers all the hidden files. It automatically detects the Hidden Executable Files EXE, DLL, COM etc an...

7AI score
Exploits0
CVE
CVE
added 2014/03/20 7:0 p.m.48 views

CVE-2011-5273

CVE-2011-5273 : Domain Technologie Control (DTC) before 0.34.1 has a directory traversal flaw in the shared/package-installer component. An authenticated remote user can craft a problematic pkg parameter in a do_install action to dtc/ to trigger arbitrary PHP code execution. Root cause is imprope...

6.5CVSS7.4AI score0.01484EPSS
Exploits0References3Affected Software1
Kitploit
Kitploit
added 2014/02/09 10:35 p.m.14 views

[Thunderbird Password Decryptor] Thunderbird Password Recovery Software

Thunderbird Password Decryptor is the FREE software to instantly recover the stored Mail account password by Thunderbird. Thunderbird is a free, open-source, cross-platform application for managing email and news feeds. Like other Email applications, it also stores the mail account passwords on t...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2014/02/05 12:0 a.m.214 views

Apache Tomcat Manager - Application Upload (Authenticated) Code Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 /Apache.Coyote|Tomcat/ CSRFVAR = 'CSRFNONCE=' include Msf::Exploit::Remote::HttpClient include Msf::Exploit::EXE def initializeinfo =...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2014/01/20 11:23 p.m.55 views

[Password Sniffer Spy v2.0] Tool to Sniff and Capture HTTP/FTP/POP3/SMTP/IMAP Passwords

Password Sniffer Spy is the all-in-one Password Sniffing Tool to capture Email, Web and FTP login passwords passing through the network. It automatically detects the login packets on network for various protocols and instantly decodes the passwords. Here is the list of supported protocols, HTTP...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2014/01/20 4:45 p.m.17 views

[Social Password Decryptor v4.0] All-in-one Social Network Password Recovery Software

Social Password Decryptor is the FREE software to instantly recover Passwords for popular Social Networks such as Facebook, Twitter, Google Plus etc. It can automatically discover and recover all the social passwords stored by web browsers & messengers including Firefox, Chrome, IE, GTalk and mor...

6.4AI score
Exploits0
Metasploit
Metasploit
added 2013/10/12 9:8 p.m.19 views

Mac OS X Persistent Payload Installer

This module provides a persistent boot payload by creating a launch item, which can be a LaunchAgent or a LaunchDaemon. LaunchAgents run with user level permissions and are triggered upon login by a plist entry in /Library/LaunchAgents. LaunchDaemons run with elevated privilleges, and are launche...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2013/10/03 12:0 a.m.112 views

APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004 OS X Mountain Lion v10.8.5 and Security Update 2013-004 is now available and addresses the following: Apache Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lio...

10CVSS0.4AI score0.54312EPSS
Exploits26
ThreatPost
ThreatPost
added 2013/09/16 1:37 p.m.9 views

Apple Fixes 30 Bugs With Mountain Lion Update

Apple pushed a handful of patches late last week and updated its OS X Mountain Lion to 10.8.5, improving “stability, compatibility and security” issues and fixing 30 different vulnerabilities in the operating system. The update fixes multiple vulnerabilities in Apache that could have led to a...

1.2AI score
Exploits0References4
NVD
NVD
added 2013/09/16 1:2 p.m.16 views

CVE-2013-1027

Installer in Apple Mac OS X before 10.8.5 provides an option to continue a package's installation after encountering a revoked certificate, which might allow user-assisted remote attackers to execute arbitrary code via a crafted package...

6.8CVSS7.2AI score0.01589EPSS
Exploits0References2
Prion
Prion
added 2013/09/16 1:2 p.m.18 views

Code injection

Installer in Apple Mac OS X before 10.8.5 provides an option to continue a package's installation after encountering a revoked certificate, which might allow user-assisted remote attackers to execute arbitrary code via a crafted package...

6.8CVSS7.7AI score0.01589EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2013/09/16 1:0 a.m.58 views

CVE-2013-1027

CVE-2013-1027 affects Apple Mac OS X Installer prior to 10.8.5. The installer allowed a user to continue after a revoked certificate, which could enable a user‑assisted remote attacker to execute arbitrary code via a crafted package. The issue was addressed by Apple in Mountain Lion 10.8.5 / Secu...

6.8CVSS7.4AI score0.01589EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/09/13 12:0 a.m.149 views

Mac OS X 10.8.x < 10.8.5 Multiple Vulnerabilities

The remote host is running a version of Mac OS X 10.8.x that is prior to 10.8.5. The newer version contains multiple security-related fixes for the following components : - Apache - Bind - Certificate Trust Policy - CoreGraphics - ImageIO - Installer - IPSec - Kernel - Mobile Device Management -...

10CVSS7.5AI score0.54312EPSS
Exploits33References34
Rows per page
Query Builder