Lucene search
K

1759 matches found

myhack58
myhack58
added 2019/01/25 12:0 a.m.61 views

Impact of 62 million devices: the interpretation I is how to find the Marvell Avastar Wi-Fi remote code execution vulnerability-vulnerability warning-the black bar safety net

One, overview In the present study, I will mainly analyze the Marvell WiFi-FullMAC SoC security. Since we have not yet completed the product with a chip of a wireless device of research, and therefore which may contain large amounts of unaudited code, which might appear serious security problems...

7.4AI score
Exploits0
NVD
NVD
added 2018/12/23 2:29 a.m.21 views

CVE-2018-20331

Local attackers can trigger a Kernel Pool Buffer Overflow in Antiy AVL ATool v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of IOCTL 0x80002004 by the...

7.8CVSS7.7AI score0.00613EPSS
Exploits2References1
Cvelist
Cvelist
added 2018/12/23 2:0 a.m.26 views

CVE-2018-20331

Local attackers can trigger a Kernel Pool Buffer Overflow in Antiy AVL ATool v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of IOCTL 0x80002004 by the...

7.7AI score0.00613EPSS
Exploits2References1
NVD
NVD
added 2018/12/05 10:29 p.m.13 views

CVE-2018-19650

Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

7.8CVSS8AI score0.00613EPSS
Exploits2References1
Prion
Prion
added 2018/12/05 10:29 p.m.11 views

Stack overflow

Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

7.2CVSS8AI score0.00613EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2018/12/05 10:0 p.m.15 views

CVE-2018-19650

Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

8AI score0.00613EPSS
Exploits2References1
0day.today
0day.today
added 2018/12/01 12:0 a.m.42 views

ATool 1.0.0.22 Stack Buffer Overflow Vulnerability

Exploit for windows platform in category local exploits Exploit Title: Kernel stack buffer overflow ATool - 1.0.0.22 0day CVE: CVE-2018-19650 Software Link: http://www.antiy.net/ Vendor Homepage: http://www.antiy.net/ http://www.antiy.net/ Category: Windows Attack Type: local Impact:Code...

0.00613EPSS
Exploits2
Prion
Prion
added 2018/11/28 3:29 p.m.19 views

Design/Logic Flaw

Secure application can access QSEE kernel memory through Ontario kernel driver in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660,...

7.2CVSS7.6AI score0.00223EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/11/28 3:0 p.m.30 views

CVE-2017-18316

Secure application can access QSEE kernel memory through Ontario kernel driver in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660,...

7.6AI score0.00223EPSS
Exploits0References2
CNVD
CNVD
added 2018/11/15 12:0 a.m.4 views

Microsoft Windows Security Feature Bypass Vulnerability (CNVD-2019-02774)

Windows is a set of operating systems developed by Microsoft Corporation in the U.S. Windows uses a graphical mode GUI. A security feature bypass vulnerability exists in Microsoft Windows. The vulnerability stems from Windows failing to properly verify kernel driver signatures. An attacker could...

5.5CVSS7.1AI score0.01184EPSS
Exploits0References1
OSV
OSV
added 2018/11/14 1:29 a.m.1 views

CVE-2018-8549

A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...

5.5CVSS7.3AI score0.01184EPSS
Exploits0References3
NVD
NVD
added 2018/11/14 1:29 a.m.20 views

CVE-2018-8549

A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...

5.5CVSS6.8AI score0.01184EPSS
Exploits0References3
Prion
Prion
added 2018/11/14 1:29 a.m.25 views

Security feature bypass

A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...

2.1CVSS5.6AI score0.01184EPSS
Exploits0References3Affected Software3
ATTACKERKB
ATTACKERKB
added 2018/11/14 1:29 a.m.2 views

CVE-2018-8407

An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider" driver improperly initializes objects in memory, aka "MSRPC Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019,...

5.5CVSS5.5AI score0.01655EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2018/11/14 1:29 a.m.3 views

CVE-2018-8549

A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...

5.5CVSS5.4AI score0.01184EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/11/14 1:0 a.m.30 views

CVE-2018-8549

A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 1...

6.8AI score0.01184EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2018/11/13 8:0 a.m.28 views

Windows Security Feature Bypass Vulnerability

A security feature bypass exists when Windows incorrectly validates kernel driver signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed drivers into the kernel. In an attack scenario, an attacker could bypass security...

5.5CVSS3.8AI score0.01184EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/11/13 12:0 a.m.159 views

KB4467703: Windows 8.1 and Windows Server 2012 R2 November 2018 Security Update

The remote Windows host is missing security update 4467703 or cumulative update 4467697. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...

10CVSS8.1AI score0.63294EPSS
Exploits10References19
Tenable Nessus
Tenable Nessus
added 2018/11/13 12:0 a.m.213 views

KB4467691: Windows 10 Version 1607 and Windows Server 2016 November 2018 Security Update

The remote Windows host is missing security update 4467691. It is, therefore, affected by multiple vulnerabilities : - A security feature bypass vulnerability exists in Microsoft JScript that could allow an attacker to bypass Device Guard. CVE-2018-8417 - A remote code execution vulnerability...

10CVSS7.8AI score0.63294EPSS
Exploits12References27
Packet Storm
Packet Storm
added 2018/10/27 12:0 a.m.260 views

ASRock Drivers Privilege Escalation / Code Execution

SecureAuth - SecureAuth Labs Advisory http://www.secureauth.com/ ASRock Drivers Elevation of Privilege Vulnerabilities 1. Advisory Information Title: ASRock Drivers Elevation of Privilege Vulnerabilities Advisory ID: CORE-2018-0005 Advisory URL:...

1.1AI score0.01545EPSS
Exploits8
Rows per page
Query Builder