Lucene search
K

69 matches found

OSV
OSV
added 2020/05/08 12:15 p.m.5 views

CVE-2020-12022

Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can be executed...

9.8CVSS7.3AI score0.01672EPSS
Exploits0References2
NVD
NVD
added 2020/05/08 12:15 p.m.34 views

CVE-2020-12022

Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can be executed...

9.8CVSS9.4AI score0.01672EPSS
Exploits0References2
Prion
Prion
added 2020/05/08 12:15 p.m.16 views

Input validation

Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can be executed...

7.5CVSS9.3AI score0.01672EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/08 11:38 a.m.31 views

CVE-2020-12022

Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can be executed...

9.4AI score0.01672EPSS
Exploits0References2
CNVD
CNVD
added 2020/05/08 12:0 a.m.2 views

Advantech WebAccess Node Path Traversal Vulnerability

Advantech WebAccess is a browser-based SCADA software package for monitoring, data acquisition and visualization. It is used to automate complex industrial processes where remote operation is required. A path traversal vulnerability exists in Advantech WebAccess Node, which can be exploited by an...

7.1CVSS7.2AI score0.01009EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2019/09/25 5:27 p.m.83 views

'Narrator' Windows Utility Trojanized to Gain Full System Control

A suspected Chinese advanced persistent threat APT group has been spotted attacking tech companies using a trojanized screen-reader application, replacing the built-in Narrator “Ease of Access” feature in Windows. According to BlackBerry Cylance, the attackers also deploy a version of the...

2.2AI score
Exploits0References3
Kitploit
Kitploit
added 2019/04/18 12:46 p.m.121 views

fireELF - Fileless Linux Malware Framework

fireELF is a opensource fileless linux malware framework thats crossplatform and allows users to easily create and manage payloads. By default is comes with 'memfdcreate' which is a new way to run linux elf executables completely from memory, without having the binary touch the harddrive. Feature...

7.3AI score
Exploits0References2
Kitploit
Kitploit
added 2018/07/28 10:33 p.m.224 views

sRDI - Shellcode Implementation Of Reflective DLL Injection

sRDI allows for the conversion of DLL files to position independent shellcode. Functionality is accomplished via two components: C project which compiles a PE loader implementation RDI to shellcode Conversion code which attaches the DLL, RDI, and user data together with a bootstrap This project i...

8AI score
Exploits0References1
The Coalfire Blog
The Coalfire Blog
added 2018/05/31 9:51 p.m.21 views

PowerShell: In-Memory Injection Using CertUtil.exe

Have you ever heard the old saying," The only constant in life is change?" Nothing is truer in the world of penetration testing and information security than the certainty of change. New defenses are always emerging, and the guys and gals in the red team game are always having to evolve our effor...

1.3AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2018/03/01 10:37 p.m.343 views

FinFisher exposed: A researcher’s tale of defeating traps, tricks, and complex virtual machines

Office 365 Advanced Threat Protection Office 365 ATP blocked many notable zero-day exploits in 2017. In our analysis, one activity group stood out: NEODYMIUM. This threat actor is remarkable for two reasons: Its access to sophisticated zero-day exploits for Microsoft and Adobe software Its use of...

7.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2018/02/21 12:0 a.m.2 views

Invoke-Mimikatz Memory Injection Credential Harvesting

Mimikatz is a post-exploitation tool used to perform cerdential harvesting on a Windows machine. An attacker can use Powershell in order to inject and run Mimikatz into the system's memory...

4.3AI score
Exploits0
Packet Storm
Packet Storm
added 2017/10/12 12:0 a.m.57 views

Windows Escalate UAC Protection Bypass (In Memory Injection) Abusing WinSXS

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/exe' class MetasploitModule 'Windows Escalate UAC Protection Bypass In Memory Injection abusing WinSXS', 'Description' = %q This module will...

0.3AI score
Exploits0
FireEye
FireEye
added 2017/06/21 12:0 p.m.18 views

Remote Symbol Resolution

Introduction The following blog discusses a couple of common techniques that malware uses to obscure its access to the Windows API. In both forms examined, analysts must calculate the API start address and resolve the symbol from the runtime process in order to determine functionality. After...

7.2AI score
Exploits0References2
FireEye
FireEye
added 2017/06/21 8:0 a.m.10 views

Remote Symbol Resolution

Introduction The following blog discusses a couple of common techniques that malware uses to obscure its access to the Windows API. In both forms examined, analysts must calculate the API start address and resolve the symbol from the runtime process in order to determine functionality. After...

7.2AI score
Exploits0
myhack58
myhack58
added 2016/12/20 12:0 a.m.49 views

CVE-2016-8655 kernel race condition vulnerability the Debug analysis-vulnerability warning-the black bar safety net

12 5 March, hilipPettersson published a piece that already exists Linux kernel up to 5 years of local mention the right vulnerability, affecting virtually all Linux mainstream distributions, a time limelight without the two, no less than some time ago of“Dirty Cow”in. For this black magic...

7.6AI score0.11127EPSS
Exploits16
exploitpack
exploitpack
added 2015/09/17 12:0 a.m.96 views

VBox Satellite Express 2.3.17.3 - Arbitrary Write

VBox Satellite Express 2.3.17.3 - Arbitrary Write KL-001-2015-005 : VBox Satellite Express Arbitrary Write Privilege Escalation Title: VBox Satellite Express Arbitrary Write Privilege Escalation Advisory ID: KL-001-2015-005 Publication Date: 2015.09.16 Publication URL:...

7.2CVSS0.3AI score0.00923EPSS
Exploits5
KoreLogic Security
KoreLogic Security
added 2015/09/01 12:0 a.m.538 views

XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation

Vulnerability Details Affected Vendor: Silicon Integrated Systems Corporation Affected Product: XGI VGA Display Manager Affected Version: 6.14.10.1090 Platform: Microsoft Windows XP SP3 CWE Classification: CWE-123: Write-what-where condition Impact: Arbitrary Code Execution Attack vector: IOCTL...

7.8CVSS7.6AI score0.01129EPSS
Exploits4Affected Software1
Kitploit
Kitploit
added 2014/11/17 3:46 p.m.14 views

MeterSSH - Meterpreter over SSH

As penetration testers, it’s crucial to identify what types of attacks are detected and what’s not. After running into a recent penetration test with a next generation firewall, most analysis has shifted away from the endpoints and more towards network analysis. While there needs to be a mixture ...

7.7AI score
Exploits0References1
n0where
n0where
added 2014/11/15 12:50 a.m.21 views

Meterpreter over SSH – MeterSSH

Meterpreter over SSH As penetration testers, it’s crucial to identify what types of attacks are detected and what’s not. After running into a recent penetration test with a next generation firewall, most analysis has shifted away from the endpoints and more towards network analysis. While there...

1.2AI score
Exploits0References2
seebug.org
seebug.org
added 2014/11/13 12:0 a.m.37 views

Microsoft Bluetooth Personal Area Networking (BthPan.sys) Privilege Escalation

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/exploit/local/windowskernel' require 'rex' class Metasploit3 Msf::Exploit::Local Rank =...

7.1AI score0.23046EPSS
Exploits21
Rows per page
Query Builder