198 matches found
CVE-2016-6783
An elevation of privilege vulnerability in the MediaTek driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: N/A. Android I...
CVE-2016-6777
An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...
Google Nexus NVIDIA GPU driver elevation of privilege vulnerability (CNVD-2017-00473)
Android on Nexus 9 is a Linux-based open source operating system for the Nexus 9 tablet developed by Google and the Open Handset Alliance OHA, and the NVIDIA camera driver is one of the camera drivers used in it. An elevation of privilege vulnerability exists in the NVIDIA GPU driver on Google...
Google Pixel NVIDIA GPU Driver elevation of privilege vulnerability (CNVD-2017-00175)
The Google Pixel C is a tablet computer from Google, U.S. The NVIDIA GPU is an NVIDIA graphics processor driver component used in... An elevation of privilege vulnerability exists in Google Nexus. An attacker can exploit the vulnerability to execute arbitrary code with elevated privileges in the...
Google Nexus NVIDIA GPU Driver Elevation of Privilege Vulnerability
Android on Nexus 9 is a Linux-based open source operating system for the Nexus 9 tablet PC developed by Google and the Open Handheld Alliance OHA.The NVIDIA GPU Driver is one of the NVIDIA GPU drivers that is used in the... An elevation of privilege vulnerability exists in the NVIDIA GPU Driver o...
Apple macOS Sierra Intel Graphics Driver Memory Misreference Vulnerability
Apple macOS Sierra is a dedicated operating system developed by Apple for Mac computers.Intel Graphics Driver is one of the drivers for the graphics card. A memory misreference vulnerability exists in Intel Graphics Driver in Apple macOS Sierra versions prior to 10.12. The vulnerability can be...
Google Nexus Qualcomm bootloader elevation of privilege vulnerability
Android on Nexus 5 is an open source Linux-based operating system developed by Google and the Open Handheld Alliance OHA for the Nexus 5, etc. Qualcomm bootloader is a Qualcomm bootloader that is used in the Nexus 5. Qualcomm bootloader is a Qualcomm-developed bootloader. An elevation of privileg...
Street Fighter 5 - 'Capcom.sys' Kernel Execution (Metasploit) Exploit
Exploit for windows platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class MetasploitModule...
Street Fighter 5 - Capcom.sys Kernel Execution (Metasploit)
Street Fighter 5 - Capcom.sys Kernel Execution Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class MetasploitModule...
Street Fighter 5 - 'Capcom.sys' Kernel Execution (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class MetasploitModule 'Windows Capcom.sys Kernel Execution Exploit x64 only',...
Windows Capcom.sys Kernel Execution Exploit (x64 only)
This Metasploit module abuses the Capcom.sys kernel driver's function that allows for an arbitrary function to be executed in the kernel from user land. This function purposely disables SMEP prior to invoking a function given by the caller. This has been tested on Windows 7 x64. This module...
Windows Capcom.sys Kernel Execution Exploit (x64 only)
This module abuses the Capcom.sys kernel driver's function that allows for an arbitrary function to be executed in the kernel from user land. This function purposely disables SMEP prior to invoking a function given by the caller. This has been tested on Windows 7, 8.1, 10 x64 and Windows 11 x64...
Symantec CIDS Driver PE File Memory Corruption Vulnerability
Symantec Client Intrusion Detection System is a client-side intrusion detection system. A memory corruption vulnerability exists in the Symantec Client Intrusion Detection System CIDS driver in the CIDS engine driver when processing constructed PE files. This could result in malicious code being...
Android Texas Instruments Haptic Driver Elevation of Privilege Vulnerability
Android is a Linux-based open-source operating system jointly developed by Google and the Open Handheld Alliance OHA.Texas Instruments Haptic Driver is one of the drivers for the DEI touch screen. An elevation of privilege vulnerability exists in Texas Instruments Haptic Driver in Android version...
Android One - mt_wifi IOCTL_GET_STRUCT Privilege Escalation
Android One - mtwifi IOCTLGETSTRUCT Privilege Escalation Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=678 The wireless driver for the Android One sprout devices has a bad copyfromuser in the handling for the wireless driver socket private read ioctl IOCTLGETSTRUCT with...
Apple OS X IOGeneralMemoryDescriptor Integer Overflow Privilege Escalation Vulnerability
This vulnerability allows local attackers to elevate privileges on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the IOGeneralMemoryDescriptor interface. The issue...
Apple OS X IOAcceleratorFamily2 Out-Of-Bounds Indexing Privilege Escalation Vulnerability
This vulnerability allows local attackers to elevate privileges on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the IOAcceleratorFamily2 interface. The issue lies i...
Microsoft Windows Kernel 'Win32k.sys' local elevation of privilege vulnerability (CNVD-2015-01105)
Microsoft Windows is a popular operating system. A security vulnerability in Microsoft Windows 'Win32k.sys' handling of in-memory objects allows local attackers to exploit the vulnerability to elevate privileges and execute arbitrary code in kernel context...