18 matches found
EUVD-2009-0089
Malware in sbrugna...
EUVD-2009-0088
Malware in sbrugna...
EUVD-2024-49530
Malicious code in bioql PyPI...
CVE-2024-8069
Limited remote code execution with privilege of a NetworkService Account access in Citrix Session Recording if the attacker is an authenticated user on the same intranet as the session recording server...
CVE-2024-8068
Privilege escalation to NetworkService Account access in Citrix Session Recording when an attacker is an authenticated user in the same Windows Active Directory domain as the session recording server domain...
CVE-2024-8069
Limited remote code execution with privilege of a NetworkService Account access in Citrix Session Recording if the attacker is an authenticated user on the same intranet as the session recording server...
CVE-2024-8069 Limited remote code execution with privilege of a NetworkService Account access
Limited remote code execution with privilege of a NetworkService Account access in Citrix Session Recording if the attacker is an authenticated user on the same intranet as the session recording server...
CVE-2024-8069
Citrix Session Recording is affected by CVE-2024-8069 (Citrix Session Recording Deserialization of Untrusted Data). The issue allows limited remote code execution with the privileges of the NetworkService Account when an attacker is an authenticated user on the same intranet as the session record...
CVE-2024-8069 Limited remote code execution with privilege of a NetworkService Account access
Limited remote code execution with privilege of a NetworkService Account access in Citrix Session Recording if the attacker is an authenticated user on the same intranet as the session recording server...
CVE-2024-8068 Privilege escalation to NetworkService Account access
Privilege escalation to NetworkService Account access in Citrix Session Recording when an attacker is an authenticated user in the same Windows Active Directory domain as the session recording server domain...
CVE-2024-8068
CVE-2024-8068 affects Citrix Session Recording. According to Citrix’s security bulletin CTX691941, affected versions include Current Release prior to hotfix 2407 (24.5.200.8) and LTSR releases: 1912 LTSR before CU9 (19.12.9100.6), 2203 LTSR before CU5 (22.03.5100.11), and 2402 LTSR before CU1 (24...
New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration
Cybersecurity researchers have disclosed new security flaws impacting Citrix Virtual Apps and Desktop that could be exploited to achieve unauthenticated remote code execution RCE The issue, per findings from watchTowr, is rooted in the Session Recording component that allows system administrators...
VulnCheck KEV: CVE-2024-8069
Citrix Session Recording contains a deserialization of untrusted data vulnerability that allows limited remote code execution with privilege of a NetworkService Account access. Attacker must be an authenticated user on the same intranet as the session recording server...
Microsoft DNS Resolution Remote Code Execution Vulnerability (2509553)
This host is missing a critical security update according to Microsoft Bulletin MS11-030. OpenVAS Vulnerability Test $Id: secpodms11-030.nasl 8724 2018-02-08 15:02:56Z cfischer $ Microsoft DNS Resolution Remote Code Execution Vulnerability 2509553 Authors: Veerendra GG Copyright: Copyright c 2011...
MS11-030: Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553)
A flaw in the way the installed Windows DNS client processes Link- local Multicast Name Resolution LLMNR queries can be exploited to execute arbitrary code in the context of the NetworkService account. Note that Windows XP and 2003 do not support LLMNR and successful exploitation on those platfor...
Microsoft DNS Resolution Remote Code Execution Vulnerability (2509553)
This host is missing a critical security update according to Microsoft Bulletin MS11-030. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Windows - Local Procedure Call (LPC) Privilege Escalation
Microsoft Windows - Local Procedure Call LPC Privilege Escalation // source: https://www.securityfocus.com/bid/43860/info Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code and elevate their privileges to the...
CVE-2009-0078
The Windows Management Instrumentation WMI provider in Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 does not properly implement isolation among a set of distinct processes that 1 all run under the NetworkService account or 2 all run under the...