Design/Logic Flaw

On Windows systems, the logger run by the Windows updater deletes the file "update.log" before it runs in order to write a new log of that name. The path to this file is supplied at the command line to the updater and could be used in concert with another local exploit to delete a different file...

CVE-2017-7796

On Windows systems, the logger run by the Windows updater deletes the file "update.log" before it runs in order to write a new log of that name. The path to this file is supplied at the command line to the updater and could be used in concert with another local exploit to delete a different file...

CVE-2018-10505

A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL 0x220008 in the TMWFP driver. An attacker must first obtain the ability to...

10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH)

Exploit Title : 10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow SEH Exploit Author : Hashim Jawad - ihack4falafel Vendor Homepage : https://www.10-strike.com/ Vulnerable Software: https://www.10-strike.com/networkinventoryexplorer/network-inventory-setup.exe Tested on : Windows ...

CVE-2013-10046

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/agnitumoutpostacs.rb 2025-10-23 21:12:57+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

Prime95 29.4b8 - Stack Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Author: crashmanucoot Contact: twitter.com/crashmanucoot Vendor Homepage: https://www.mersenne.org/ Software Link: https://www.mersenne.org/download/download Version: 29.4b8 Tested on: Windows 10 Pro x64 SPANISH Windows 7 Home Premiu...

Prime95 29.4b8 Stack Buffer Overflow

Exploit Title: Prime95 Local Buffer Overflow SEH Date: 13-4-2018 Exploit Author: crashmanucoot Contact: twitter.com/crashmanucoot Vendor Homepage: https://www.mersenne.org/ Software Link: https://www.mersenne.org/download/download Version: 29.4b8 Tested on: Windows 10 Pro x64 SPANISH Windows 7 Ho...

Prime95 29.4b8 - Stack Buffer Overflow (SEH)

Exploit Title: Prime95 Local Buffer Overflow SEH Date: 13-4-2018 Exploit Author: crashmanucoot Contact: twitter.com/crashmanucoot Vendor Homepage: https://www.mersenne.org/ Software Link: https://www.mersenne.org/download/download Version: 29.4b8 Tested on: Windows 10 Pro x64 SPANISH Windows 7 Ho...

Perl 'pack' function heap buffer overflow vulnerability

Perl is a free and powerful cross-platform programming language developed by American programmer Larry Wall. A heap buffer overflow vulnerability exists in the 'pack' function in Perl versions prior to 5.26.2. A local attacker can exploit this vulnerability to execute arbitrary code...

Linux kernel denial of service vulnerability (CNVD-2018-07824)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'kernelwait4' function in the kernel/exit.c file in versions of Linux kernel prior to 4.13. A local attacker could exploit this...

CVE-2018-1234

RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list ACL permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to...

Authentication flaw

RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list ACL permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to...

CVE-2018-8896

In 2345 Security Guard 3.6, the driver file 2345DumpBlock.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x00222044...

CVE-2014-2885

Concrete details from connected documents show that CVE-2014-2885 affects TrueCrypt 7.1a via two integer-overflow vectors: (1) OriginalLength handling in EncryptedIoQueue.c:MainThreadProc, enabling local information disclosure; (2) large StartingOffset/Length handling in Ntdriver.c:ProcessVolumeD...

kernel: Race condition in raw_sendmsg function allows denial-of-service or kernel addresses leak

A flaw was found in the Linux kernel's implementation of rawsendmsg allowing a local attacker to panic the kernel or possibly leak kernel addresses. A local attacker, with the privilege of creating raw sockets, can abuse a possible race condition when setting the socket option to allow the kernel...

Dell EMC Isilon OneFS Multiple Vulnerabilities

1. Advisory Information Title: Dell EMC Isilon OneFS Multiple Vulnerabilities Advisory ID: CORE-2017-0009 Advisory URL:https://www.coresecurity.com/core-labs/advisories/dell-emc-isilon-onefs-multiple-vulnerabilities Date published: 2018-02-14 Date of last update: 2018-02-15 Vendors contacted: Del...

Juju-run Agent Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Juju-run Agent Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Juju agent systems running the juju-run...

The vulnerability of the sctp_do_peeloff function in the Linux operating system allows a hacker to cause a service failure or exert other effects.

The vulnerability of the sctpdopeeloff function in the Linux operating system’s net/sctp/socket.c file is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker, acting locally, to cause service failures or other effects through specially crafted...

Linux kernel denial of service vulnerability (CNVD-2017-38511)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A denial of service vulnerability exists in kernel/bpf/verifier.c in Linux kernel version 4.14.8 and earlier. A local...

CVE-2017-14355

A potential security vulnerability has been identified in HPE Connected Backup versions 8.6 and 8.8.6. The vulnerability could be exploited locally to allow escalation of privilege...