Oracle solaris DHCP Server Component Denial of Service Vulnerability

Oracle solaris is a unix operating system. A security vulnerability in the Oracle solaris kernel domain virtualization NIC driver component allows local attackers to exploit the vulnerability to crash the system...

Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2015-04663)

Microsoft Windows Server is a series of servers based on the windows operating system launched by the U.S. Microsoft Microsoft. A security vulnerability exists in the win32k.sys file in the kernel-mode driver for Microsoft Windows. A local attacker can exploit this vulnerability to gain privilege...

Hacking Team attack code analysis Part 3 : the Adobe Font Driver kernel driver elevation of privilege vulnerability-vulnerability warning-the black bar safety net

In order to in IE and Chrome bypassing its sandbox mechanism to completely control the user's system, Hacking Team also utilizes a Windows kernel driver: the Adobe Font Driveratmfd.dllin the presence of a font 0day vulnerability to achieve privilege escalation and bypass the sandbox mechanism. Th...

Microsoft Windows - ClientCopyImage Win32k (MS15-051) (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class Metasploit3 'Windows ClientCopyImage Win32k Exploit', 'Description' = %q Thi...

In-Console-Able

Posted by James Forshaw, giving the security community a shoulder to cry on. TL;DR; this blog post describes an unfixed bug in Windows 8.1 which allows you to escape restrictive job objects in order to help to develop a sandbox escape chain in Chrome or similar sandboxes. If you’re trying to...

Microsoft windows kernel mode driver kernel information disclosure vulnerability (CNVD-2015-01615)

Microsoft Windows is a popular operating system. The Microsoft Windows kernel mode driver leaks sensitive address information when calling functions, allowing attackers to exploit the vulnerability to obtain sensitive information and bypass ASLR protection...

MS15-010: Vulnerabilities in Windows kernel mode driver could allow remote code execution: February 10, 2015

Resolves vulnerabilities in Microsoft Windows that could allow remote code execution if an attacker convinces a user to open a specially crafted document or visit an untrusted website that contains embedded TrueType fonts.SummaryThis security update resolves one publicly disclosed and five...

McAfee Data Loss Prevention Endpoint Elevation of Privilege Vulnerability

McAfee Network Data Loss Prevention monitors network traffic and protects against data loss. An elevation of privilege vulnerability exists in McAfee Data Loss Prevention Endpoint, which could allow a remote attacker to obtain elevation of privilege by sending carefully constructed commands to th...

F5 Networks BIG-IP : Linux kernel driver vulnerabilities (K15912)

CVE-2014-3185 Multiple buffer overflows in the commandportreadcallback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before 3.16.2 allow physically proximate attackers to execute arbitrary code or cause a denial of service memory corruption and...

CVE-2014-5307 - Privilege Escalation in Panda Security Products

Vulnerability title: Privilege Escalation in Panda Security CVE: CVE-2014-5307 Vendor: Panda Security Product: Multiple Affected version: Panda 2014 Products Fixed version: Hotfix hft131306s24r1 Reported by: Kyriakos Economou Details: Latest, and possibly earlier builds, of the PavTPK.sys kernel...

FortKnox Personal Firewall 9.0.305.0 & 10.0.305.0 - Kernel Driver (fortknoxfw.sys) Memory Corruption Vulnerability

No description provided by source. / Exploit Title: 0day FortKnox Personal Firewall kernel driver fortknoxfw.sys memory corruption vulnerability Date: 25/10/2013 Author: Arash Allebrahim Contact : [email protected] Vendor Homepage: http://www.fortknox-firewall.com/ Vulnerable software :...

Sun xVM VirtualBox < 1.6.4 Privilege Escalation Vulnerability PoC

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Sun xVM VirtualBox Privilege Escalation Vulnerability Advisory Information Title: Sun xVM VirtualBox Privilege Escalation...

First Phase of TrueCrypt Audit Turns Up No Backdoors

A initial audit of the popular open source encryption software TrueCrypt turned up fewer than a dozen vulnerabilities, none of which so far point toward a backdoor surreptitiously inserted into the codebase. A report on the first phase of the audit was released today by iSEC Partners, which was...

FortKnox Personal Firewall 9.0.305.010.0.305.0 - Kernel Driver fortknoxfw.sys Memory Corruption

FortKnox Personal Firewall 9.0.305.010.0.305.0 - Kernel Driver fortknoxfw.sys Memory Corruption / Exploit Title: 0day FortKnox Personal Firewall kernel driver fortknoxfw.sys memory corruption vulnerability Date: 25/10/2013 Author: Arash Allebrahim Contact : [email protected] Vendor...

FortKnox Personal Firewall 9.0.305.0/10.0.305.0 - Kernel Driver &#039;fortknoxfw.sys&#039; Memory Corruption

/ Exploit Title: 0day FortKnox Personal Firewall kernel driver fortknoxfw.sys memory corruption vulnerability Date: 25/10/2013 Author: Arash Allebrahim Contact : [email protected] Vendor Homepage: http://www.fortknox-firewall.com/ Vulnerable software :...

PT-2013-3097 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: Elevation of privilege issues exist due to the Windows kernel-mode driver's improper handling of objects in memory. An attacker who successfully exploits these issues could gain elevated...

PT-2013-3099 · Microsoft · Windows Server 2003 +7

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allows local users to gain privileges via a crafted application, aka "Win32k...

PT-2013-4700 · Microsoft · Windows Xp +8

Name of the Vulnerable Software and Affected Versions: Windows XP versions SP2 and SP3 Windows Server 2003 version SP2 Windows Vista version SP2 Windows Server 2008 versions SP2 and R2 SP1 Windows 7 version SP1 Windows 8 Windows Server 2012 Windows RT Description: An issue exists in the Windows...

PT-2013-3096 · Microsoft · Windows Server 2003 +6

Name of the Vulnerable Software and Affected Versions: Windows XP versions SP2 and SP3 Windows Server 2003 version SP2 Windows Vista version SP2 Windows Server 2008 versions SP2 and R2 SP1 Windows 7 version SP1 Windows 8 affected versions not specified Description: The issue allows local users to...

CVE-2013-3697

CVE-2013-3697 describes an integer overflow in NWFS.SYS (Novell Client 4.91 SP5) on Windows XP/2003 and NCPL.SYS (Novell Client 2 SP2 on Vista/2008 and SP3 on Windows 7/8/2008 R2/2012) that may let local users gain privileges via a crafted 0x1439EB IOCTL call. The impact is local privilege escala...