Samsung - m2m1shot Kernel Driver Buffer Overflow

Samsung - m2m1shot Kernel Driver Buffer Overflow Source: https://code.google.com/p/google-security-research/issues/detail?id=493 The Samsung m2m1shot driver framework is used to provide hardware acceleration for certain media functions, such as JPEG decoding and scaling images. The driver endpoin...

Samsung - 'm2m1shot' Kernel Driver Buffer Overflow

Source: https://code.google.com/p/google-security-research/issues/detail?id=493 The Samsung m2m1shot driver framework is used to provide hardware acceleration for certain media functions, such as JPEG decoding and scaling images. The driver endpoint /dev/m2m1shotjpeg is accessible by the media...

Win10Pcap-Exploit: the use of Win10Pcap kernel driver vulnerability to achieve local mention right-vulnerability warning-the black bar safety net

A few days ago I was in win10pcap drive found in a coin can be local to mention the right vulnerability, when it had been reported to the official, now you can update to get a fix. http://www.win10pcap.org/download/ At the request of many friends request, then the sample exploit posted for everyo...

The vulnerability of the Windows Embedded Standard 2009 operating system, which allows a perpetrator to trigger a service failure

The Windows Embedded Standard 2009 operating system contains a vulnerability in the kernel mode driver rdpwd.sys, located in the S:\Windows\System32 directory. This driver does not handle dynamic memory correctly, as it is allocated for storing array elements. Using specially crafted requests sen...

Microsoft Windows Win32k Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the Microsoft Windows kernel mode driver and can be exploited by an attacker to run arbitrary code in kernel mode...

Nexus Security Bulletin—August 2015Stay organized with collectionsSave and categorize content based on your preferences.

We have released a security update to Nexus devices through an over-the-air OTA update as part of our Android Security Bulletin Monthly Release process. The Nexus firmware images have also been released to the Google Developer site. Builds LMY48I or later address these issues. Partners were...

The vulnerability of the Windows operating system, which allows a perpetrator to gain access to protected information

The vulnerability of kernel-level drivers in the Windows operating system is related to the lack of protection for privileged data. Exploiting this vulnerability can allow a local attacker to gain access to protected information through a specially crafted application...

Oracle solaris DHCP Server Component Denial of Service Vulnerability

Oracle solaris is a unix operating system. A security vulnerability in the Oracle solaris kernel domain virtualization NIC driver component allows local attackers to exploit the vulnerability to crash the system...

Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2015-04663)

Microsoft Windows Server is a series of servers based on the windows operating system launched by the U.S. Microsoft Microsoft. A security vulnerability exists in the win32k.sys file in the kernel-mode driver for Microsoft Windows. A local attacker can exploit this vulnerability to gain privilege...

Hacking Team attack code analysis Part 3 : the Adobe Font Driver kernel driver elevation of privilege vulnerability-vulnerability warning-the black bar safety net

In order to in IE and Chrome bypassing its sandbox mechanism to completely control the user's system, Hacking Team also utilizes a Windows kernel driver: the Adobe Font Driveratmfd.dllin the presence of a font 0day vulnerability to achieve privilege escalation and bypass the sandbox mechanism. Th...

Microsoft Windows - ClientCopyImage Win32k (MS15-051) (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class Metasploit3 'Windows ClientCopyImage Win32k Exploit', 'Description' = %q Thi...

In-Console-Able

Posted by James Forshaw, giving the security community a shoulder to cry on. TL;DR; this blog post describes an unfixed bug in Windows 8.1 which allows you to escape restrictive job objects in order to help to develop a sandbox escape chain in Chrome or similar sandboxes. If you’re trying to...

Microsoft windows kernel mode driver kernel information disclosure vulnerability (CNVD-2015-01615)

Microsoft Windows is a popular operating system. The Microsoft Windows kernel mode driver leaks sensitive address information when calling functions, allowing attackers to exploit the vulnerability to obtain sensitive information and bypass ASLR protection...

MS15-010: Vulnerabilities in Windows kernel mode driver could allow remote code execution: February 10, 2015

Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if an attacker convinces a user to open a specially crafted document or visit an untrusted website that contains embedded TrueType fonts.SummaryThis security update resolves one publicly disclosed and five...

McAfee Data Loss Prevention Endpoint Elevation of Privilege Vulnerability

McAfee Network Data Loss Prevention monitors network traffic and protects against data loss. An elevation of privilege vulnerability exists in McAfee Data Loss Prevention Endpoint, which could allow a remote attacker to obtain elevation of privilege by sending carefully constructed commands to th...

F5 Networks BIG-IP : Linux kernel driver vulnerabilities (K15912)

CVE-2014-3185 Multiple buffer overflows in the commandportreadcallback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before 3.16.2 allow physically proximate attackers to execute arbitrary code or cause a denial of service memory corruption and...

CVE-2014-5307 - Privilege Escalation in Panda Security Products

Vulnerability title: Privilege Escalation in Panda Security CVE: CVE-2014-5307 Vendor: Panda Security Product: Multiple Affected version: Panda 2014 Products Fixed version: Hotfix hft131306s24r1 Reported by: Kyriakos Economou Details: Latest, and possibly earlier builds, of the PavTPK.sys kernel...

FortKnox Personal Firewall 9.0.305.0 & 10.0.305.0 - Kernel Driver (fortknoxfw.sys) Memory Corruption Vulnerability

No description provided by source. / Exploit Title: 0day FortKnox Personal Firewall kernel driver fortknoxfw.sys memory corruption vulnerability Date: 25/10/2013 Author: Arash Allebrahim Contact : [email protected] Vendor Homepage: http://www.fortknox-firewall.com/ Vulnerable software :...

Sun xVM VirtualBox < 1.6.4 Privilege Escalation Vulnerability PoC

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege Escalation...

First Phase of TrueCrypt Audit Turns Up No Backdoors

A initial audit of the popular open source encryption software TrueCrypt turned up fewer than a dozen vulnerabilities, none of which so far point toward a backdoor surreptitiously inserted into the codebase. A report on the first phase of the audit was released today by iSEC Partners, which was...