27 matches found
EUVD-2021-23621
Malware in sbrugna...
EUVD-2017-17526
Malware in sbrugna...
CVE-2024-38614
CVE-2024-38614 affects the Linux kernel OpenRISC traps handling. The issue: trap handling could send signals to kernel-mode threads (not user processes), which should not occur; it may be treated as an error when it happens. The patch adds explicit checks to terminate/die when these exceptions ar...
Exploit for Incorrect Permission Assignment for Critical Resource in Microsoft
CVE-2024-21305 This repo contains the report and PoC of CVE-...
Exploring a New Class of Kernel Exploit Primitive
The security landscape is dynamic, changing often and as a result, attack surfaces evolve. MSRC receives a wide variety of cases spanning different products, bug types and exploit primitives. One particularly interesting primitive we see is an arbitrary kernel pointer read. These often happen whe...
Exploring a New Class of Kernel Exploit Primitive
The security landscape is dynamic, changing often and as a result, attack surfaces evolve. MSRC receives a wide variety of cases spanning different products, bug types and exploit primitives. One particularly interesting primitive we see is an arbitrary kernel pointer read. These often happen whe...
Huawei HarmonyOS UAF vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a microkernel-based, fully distributed operating system. Huawei HarmonyOS has a security vulnerability that could be exploited by an attacker to cause a device to reboot unexpectedly and execute kernel-mode code...
CVE-2021-37045
There is an UAF vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart unexpectedly and the kernel-mode code to be executed...
Spoofing
There is an UAF vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart unexpectedly and the kernel-mode code to be executed...
CVE-2021-37045
There is an UAF vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart unexpectedly and the kernel-mode code to be executed...
Exploit for CVE-2015-2365
This repository contains a collection of proof-of-concept PoC exploits and tools for various vulnerabilities, including CVE-2015-2365, CVE-2015-2366, and CVE-2015-2507. The exploits are written in C and use assembly code to manipulate system calls and memory. CVE-2015-2365 is a vulnerability in t...
CVE-2020-16890
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create ne...
Microsoft Windows Win32k Elevation of Privilege Vulnerability (CNVD-2020-14702)
Microsoft Windows is a set of operating systems for use on personal devices from the American company Microsoft. An elevation of privilege vulnerability exists in Microsoft Windows Win32k, which arises from a failure of the Windows kernel mode driver to properly handle objects in memory. The...
CVE-2018-11465
A vulnerability has been identified in SINUMERIK 808D V4.7 All versions, SINUMERIK 808D V4.8 All versions, SINUMERIK 828D V4.7 All versions V4.7 SP6 HF1, SINUMERIK 840D sl V4.7 All versions V4.7 SP6 HF5, SINUMERIK 840D sl V4.8 All versions V4.8 SP3. A local attacker could use ioctl calls to do ou...
63 New Flaws (Including 0-Days) Windows Users Need to Patch Now
It's Patch Tuesday once again…time for another round of security updates for the Windows operating system and other Microsoft products. This month Windows users and system administrators need to immediately take care of a total of 63 security vulnerabilities, of which 12 are rated critical, 49...
Microsoft Windows: Turn On Virtualization Based Security (Virtualization Based Protection of Code Integrity)
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winvbsprotectioncodeintegrity.nasl 11381 2018-09-13 14:55:03Z emoss $ Check value for Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity Authors: Emanuel Moss Copyright: Copyright c 2018...
Microsoft Windows Win32k Elevation of Privilege Vulnerability (CNVD-2018-10986)
Microsoft Windows is a set of operating systems developed by Microsoft Corporation in the U.S. Windows uses a graphical mode GUI. Microsoft Windows suffers from an elevation of privilege vulnerability. The vulnerability arises because the Win32k component fails to properly handle objects in memor...
CVE-2017-8576
The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application, aka "Microsoft Graphics Component Elevation of Privilege Vulnerability."...
Microsoft Windows Kernel 'Win32k.sys' local elevation of privilege vulnerability (CNVD-2017-03699)
Microsoft Windows is the popular computer operating system. A local elevation of privilege vulnerability exists in Microsoft Windows Kernel 'Win32k.sys'. An attacker can exploit the vulnerability to run arbitrary code in kernel mode...
Microsoft Fixes Hyper-V Denial of Service Issue
In addition to the usual slew of patches Microsoft dropped this week, the company on Tuesday also addressed an issue in its hypervisor, Hyper-V, that could lead to a denial of service condition. Microsoft warned about the issue in an advisory separate from its usual Patch Tuesday bulletins. The...