19 matches found
CVE-2024-14012
Potential privilege escalation issue in Revenera InstallShield version 2023 R1 running a renamed Setup.exe on Windows. When a local administrator executes a renamed Setup.exe, the MPR.dll may get loaded from an insecure location and can result in a privilege escalation. The issue has been fixed i...
EUVD-2024-55044
Potential privilege escalation issue in Revenera InstallShield version 2023 R1 running a renamed Setup.exe on Windows. When a local administrator executes a renamed Setup.exe, the MPR.dll may get loaded from an insecure location and can result in a privilege escalation. The issue has been fixed i...
CVE-2024-14012
CVE-2024-14012 describes a privilege elevation in Revenera InstallShield 2023 R1 on Windows when a local administrator runs a renamed Setup.exe, causing MPR.dll to be loaded from an insecure location. The vulnerability is caused by the loader path for MPR.dll and can lead to elevated privileges. ...
EUVD-2007-4124
Malware in sbrugna...
Enhanced SSO Feature does not work. Applications fail to launch on Windows 11 devices.
After setting up Enhanced SSO according to https://docs.citrix.com/en-us/citrix-workspace-app-for-windows/domain-passthrough-for-single-sign-on , it doesn't work. When trying to launch an application, nothing happens. When using traditional SSO using the old SSONVR.exe mechanism, there is no issu...
CVE-2022-23086
Handlers for CFGPAGE read / write ioctls in the mpr, mps, and mpt drivers allocated a buffer of a caller-specified size, but copied to it a fixed size header. Other heap content would be overwritten if the specified size was too small. Users with access to the mpr, mps or mpt device node may...
CVE-2022-23086 mpr/mps/mpt driver ioctl heap out-of-bounds write
Handlers for CFGPAGE read / write ioctls in the mpr, mps, and mpt drivers allocated a buffer of a caller-specified size, but copied to it a fixed size header. Other heap content would be overwritten if the specified size was too small. Users with access to the mpr, mps or mpt device node may...
CVE-2022-23086
CVE-2022-23086 affects FreeBSD: the mpr/mps/mpt disk controller drivers expose _CFG_PAGE ioctls that allocate a caller-specified buffer size but copy a fixed-size header into it. This can result in heap data being overwritten if the input size is too small, potentially enabling privilege escalati...
FreeBSD-SA-22:06.ioctl
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-22:06.ioctl Security Advisory The FreeBSD Project Topic: mpr/mps/mpt driver ioctl heap out-of-bounds write Category: core Module: mpr, mps, mpt Announced:...
FreeBSD -- mpr/mps/mpt driver ioctl heap out-of-bounds write
Problem Description: Handlers for CFGPAGE read / write ioctls in the mpr, mps, and mpt drivers allocated a buffer of a caller-specified size, but copied to it a fixed size header. Other heap content would be overwritten if the specified size was too small. Impact: Users with access to the mpr, mp...
Live For Speed 2 Buffer Overflow
/ Live For Speed 2 Version Z .Mpr Local buffer Overflow Exploit !! X version .mpr header specifications can be found at http://www.lfs.net/?page=MPR Version :Patch Z and all previous versions. Vendor :http://www.lfs.net/ Release date: July 14th 2009 Patch for this vulnerability can be found here...
Buffer overflow
Buffer overflow in Live for Speed LFS S2 ALPHA PATCH 0.5x allows user-assisted remote attackers to execute arbitrary code via a .mpr file replay file that contains a long car name...
CVE-2007-4140
Buffer overflow in Live for Speed LFS S2 ALPHA PATCH 0.5x allows user-assisted remote attackers to execute arbitrary code via a .mpr file replay file that contains a long car name...
CVE-2007-4140
CVE-2007-4140 : Buffer overflow in Live for Speed (LFS) S2 ALPHA PATCH 0.5x allows remote attackers to execute arbitrary code via a replay file (.mpr) containing a long car name. The vulnerability is due to an overflow in the replay file handling. Exploitation details or patches are not provided ...
CVE-2007-4140
Buffer overflow in Live for Speed LFS S2 ALPHA PATCH 0.5x allows user-assisted remote attackers to execute arbitrary code via a .mpr file replay file that contains a long car name...
Live for Speed MPR文件处理本地缓冲区溢出漏洞
BUGTRAQ ID: 25168 Live for Speed是一种在线赛车游戏。 Live for Speed处理本地的重玩存档文件时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞通过诱使用户处理畸形恶意的MPR文件控制用户系统。 Live for Speed Live for Speed S2 Live for Speed Live for Speed S1 Live for Speed Live for Speed DEMO Live for Speed -------------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Live for Speed S1/S2/Demo (.mpr replay file) Buffer Overflow Exploit
No description provided by source. / 0day Live for speed patch x s2 /s1 and demo local .mpr buffer over flow Credit's to n00b for finding bug and writing the exploit Lfs is a racing simulator with a huge player data-base with 100,000+ user's. I found a local buffer over flow where im able to...
Live for Speed S1S2Demo - .mpr replay Local Buffer Overflow
Live for Speed S1S2Demo - .mpr replay Local Buffer Overflow / 0day Live for speed patch x s2 /s1 and demo local .mpr buffer over flow Credit's to n00b for finding bug and writing the exploit Lfs is a racing simulator with a huge player data-base with 100,000+ user's. I found a local buffer over...
Live for Speed S1/S2/Demo (.mpr replay file) Buffer Overflow Exploit
Exploit for unknown platform in category local exploits ==================================================================== Live for Speed S1/S2/Demo .mpr replay file Buffer Overflow Exploit ==================================================================== / 0day Live for speed patch x s2 /s1...