8 matches found
CVE-2021-35052
A component in Kaspersky Password Manager could allow an attacker to elevate a process Integrity level from Medium to High...
CVE-2024-6769 Medium to High Integrity Privilege Escalation in Microsoft Windows
A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a medium integrity process to a high integri...
APT28 Targets Diplomats with HeadLace Malware via Car Sale Phishing Lure
A Russia-linked threat actor has been linked to a new campaign that employed a car for sale as a phishing lure to deliver a modular Windows backdoor called HeadLace. "The campaign likely targeted diplomats and began as early as March 2024," Palo Alto Networks Unit 42 said in a report published...
Kaspersky Password Manager 安全漏洞
Kaspersky Password Manager is an application from the Russian company Kaspersky. It provides a function to manage passwords. A security vulnerability exists in Kaspersky Password Manager that allows an attacker to increase the process integrity level from medium to high...
vulnerability details
Release Date: 03/01/2006 Affected Applications: SAP WebAS Kernel up to version 7.00 Affected Platforms: Platform-Independant Local / Remote: Remote Severity: Medium to High Author: A. Grossmann arnold.grossmann at gmail.com Vendor Status: Confirmed Product Overview cited from SAP :...
fr-dyn0.txt
FriendsReunited.co.uk - XSS hole -------------------------------- Desc: Theres' a XSS hole in FriendsReunited Risk: Medium to High can be used to include malicious code Discovered by : dyn0 codeslaghatgmail.com http://0xdeadface.co.uk Site blurb : So FriendsReunited is one of those places where...
pc26sql.txt
--Alt-Boundary-21084.11145145 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Hackers Center Security Group http://www.hackerscenter.com/ Zinho's Security Advisory Desc: SQL Injection in Product Cart 2.6 Risk: Medium to High An SQL...
SSHD-1 Logging Vulnerability
Crimelabs, Inc. www.crimelabs.net Security Note Crimelabs Security Note CLABS200101 Title: SSH-1 Brute Force Password Vulnerability Date: 5 February, 2001 Vendors: Any supported by SSH-1 Versions: At least ssh-1.2.27 and 1.2.30 Not Affected: OpenSSH Severity: Medium to High Author: Jose Nazario...