EUVD-2018-0774

Malware in sbrugna...

Black Basta Ransomware May Have Exploited MS Windows Zero-Day Flaw

Threat actors linked to the Black Basta ransomware may have exploited a recently disclosed privilege escalation flaw in the Microsoft Windows Error Reporting Service as a zero-day, according to new findings from Symantec. The security flaw in question is CVE-2024-26169 CVSS score: 7.8, an elevati...

SSID Stripping flaw lets hackers mimic real wireless access points

By Deeba Ahmed SSID Stripping has emerged as a significant threat because it impacts major platforms like MS Windows, macOS, Apple iOS, Ubuntu, and Android. This is a post from HackRead.com Read the original post: SSID Stripping flaw lets hackers mimic real wireless access points...

KLA11565 DoS vulnerability in MS Windows

Unspecified vulnerability was found in MS Windows. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2019-1255 Related products Microsoft-Windows Windows-Defender CVE list CVE-2019-1255 unknown KB list Solution Install necessary updates from the KB...

GHSA-R34R-F84J-5X4X Moderate severity vulnerability that affects org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11

In Apache Spark before 2.2.0, it is possible for an attacker to take advantage of a user's trust in the server to trick them into visiting a link that points to a shared Spark cluster and submits data including MHTML to the Spark master, or history server. This data, which could contain a script,...

Local file inclusion on MS Windows Platform - ownCloud

Due to an improper control of the filename for a requireonce statement in the routing component a limited local file inclusion vulnerability is existent in all below mentioned ownCloud versions when running on the MS Windows Platform. Depending on the ownCloud configuration and the authentication...

Server: Local file inclusion on MS Windows Platform

Due to an improper control of the filename for a requireonce statement in the routing component a limited local file inclusion vulnerability is existent in all below mentioned ownCloud versions when running on the MS Windows Platform. Depending on the ownCloud configuration and the authentication...

MS Windows XP/2003 - (IGMP v3) Denial of Service Exploit (MS06-007) (2)

No description provided by source. / MS06-007 Denial of Service POC exploit created by Firestorm, based on zloSend.exe win32 exploit http://www.securitylab.ru/poc/264136.php Tested on Windows XP SP2 as victim compiled/runned on Fedore Core 4 x86 FOR EDUCATIONAL PURPOSE ONLY !!! / include stdio.h...

MS Windows (RPC2) Universal Exploit & DoS (RPC3) (MS03-039)

No description provided by source...

MS Windows XP/2003 - IPv6 Remote Denial of Service Exploit

No description provided by source. // // Example usage: LandIpV6 \Device\NPFB1751317-BAA0-43BB-A69B-A0351960B28D //fe80::2a1:b0ff:fe08:8bcc 135 // // Written by: Konrad Malewski. // include stdlib.h include stdio.h include Winsock2.h include ws2tcpip.h include pcap.h include remote-ext.h...

Omnicron OmniHTTPD 1.1/2.0 Alpha 1 visiadmin.exe Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1808/info OmniHTTPD is a web-server offered by Omnicron for the MS Windows platform. One of the CGI utilities it ships with and installs by default contains a bug that could, if exploited, lead to a denial of service...

MS Windows Ancillary Function Driver Privilege Elevation Vulnerabilities (2645640)

This host is missing an important security update according to Microsoft Bulletin MS12-009. OpenVAS Vulnerability Test $Id: secpodms12-009.nasl 5346 2017-02-19 08:43:11Z cfi $ MS Windows Ancillary Function Driver Privilege Elevation Vulnerabilities 2645640 Authors: Antu Sanadi Copyright: Copyrigh...

GotoCode Online Classifieds - Multiple Vulnerabilities

GotoCode Online Classifieds - Multiple Vulnerabilities Exploit Title : GotoCode Online Classifieds Multiple Vulnerabilities Vulnerability : Privilege Escalation / Remote Database Download Date : 09/10/2011 Author : Nathaniel Carew Email : [email protected] Impact : High Software Link :...

GotoCode Online Classifieds Access Bypass

Exploit Title : GotoCode Online Classifieds Multiple Vulnerabilities Vulnerability : Privilege Escalation / Remote Database Download Date : 09/10/2011 Author : Nathaniel Carew Email : [email protected] Impact : High Software Link : http://www.gotocode.com/apps.asp?appid=5& Platform : ASP.NET Test...

GotoCode Online Bookstore Privilege Escalation / Database Disclosure

Exploit Title : GotoCode Online Bookstore Multiple Vulnerabilities Vulnerability : Privilege Escalation / Remote Database Download Date : 03/10/2011 Author : Nathaniel Carew Email : [email protected] Impact : High Software Link : http://www.gotocode.com/apps.asp?appid=3& Platform : ASP.NET Tested...

CVE-2010-4833

Untrusted search path vulnerability in modules/engines/ms-windows/xptheme.c in GTK+ before 2.24.0 allows local users to gain privileges via a Trojan horse uxtheme.dll file in the current working directory, a different vulnerability than CVE-2010-4831...

MS Windows Remote Access Service NDISTAPI Driver Privilege Elevation Vulnerability (2566454)

This host is missing an important security update according to Microsoft Bulletin MS11-062. OpenVAS Vulnerability Test $Id: secpodms11-062.nasl 5362 2017-02-20 12:46:39Z cfi $ MS Windows Remote Access Service NDISTAPI Driver Privilege Elevation Vulnerability 2566454 Authors: Veerendra GG Copyrigh...

MS11-011(CVE-2011-0045): MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC

No description provided by source. / Exploit Title: MS11-011CVE-2011-0045: MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC Date: 2011-03-01 Author: Nikita Tarakanov CISS Research Team Software Link: Version: prior to MS11-011 Tested on: Win XP SP3 CVE : CVE-2011-0045 Status :...

Microsoft Windows Server 2003 - AD BROWSER ELECTION Remote Heap Overflow

MS Windows Server 2003 AD Pre-Auth BROWSER ELECTION Remote Heap Overflow Release date: 2011-02-14 Author: Cupidon-3005 Greet: Winny Thomas, Laurent Gaffie, h07 Bug: Heap Overflow Remote Exploitability: Unlikely Local Exploitability: Likely Context: Broadcast, Pre-Auth Mrxsmb.sys, around...

MS Windows HID Functionality(Over USB) Code Execution Vulnerability

This host is installed with USB device driver software and is prone to code execution vulnerability. OpenVAS Vulnerability Test $Id: gbmswindowshidoverusbcodeexecvuln.nasl 8724 2018-02-08 15:02:56Z cfischer $ MS Windows HID FunctionalityOver USB Code Execution Vulnerability Authors: Antu Sanadi...