28 matches found
PT-2026-2956
Name of the Vulnerable Software and Affected Versions SumatraPDF versions 3.5.2 and earlier Description SumatraPDF is a multi-format reader for Windows. A flaw exists due to an Untrusted Search Path when the Advanced Options setting is triggered. The application executes notepad.exe without...
Cryptojackers growing in numbers and sophistication
With rising energy costs and increased volatility in the value of cryptocurrencies, we were bound to see a rise in malicious cryptomining, aka cryptojacking. If you dont know whether you will ever see a return on your investments in mining equipment, one will look for other opportunities. But if...
GlassWire: GlassWire 2.1.167 vulnerability - MSVR 56639
Arbitrary code execution vulnerability within the firewall software, GlassWire version 2.1.167 Impact After the program is installed, on first execution, it will attempt to load Wtsapi32.dll.dll from the user's PATH without doing any checks to see if the file is signed. Attached is a demo...
Cb ThreatSight Investigation Reveals RETADUP Worm Leverages AutoIt to Launch Monero Cryptomining Campaign
While monitoring a customer’s environment, the Carbon Black ThreatSight team discovered a series of unusual alerts. Further investigation of the suspect processes revealed these alerts were related to an attacker leveraging the open-source Monero framework to launch a crypto-mining campaign. Afte...
Intuit QuickBooks Desktop 2007 < 2016 - Arbitrary Code Execution
Credits: Maxim Tomashevich from Thegrideon Software + Website: https://www.thegrideon.com/ + Details: https://www.thegrideon.com/qb-internals-sql.html Vendor: --------------------- www.intuit.com www.intuit.ca www.intuit.co.uk Product: --------------------- QuickBooks Desktop versions: 2007 -...
Windows Manage Privilege Based Process Migration
This module will migrate a Meterpreter session based on session privileges. It will do everything it can to migrate, including spawning a new User level process. For sessions with Admin rights: It will try to migrate into a System level process in the following order: ANAME if specified,...
IBM HomePagePrint 1.0 7 Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/763/info Certain versions of the IBM Web page printout software IBM HomePagePrint can in some instances be remotely exploited by malicious webservers. The problem lies in a buffer overflow in the code which handles IMGSRC...
Windows EPATHOBJ::pprFlattenRec Local Privilege Escalation
Exploit for windows platform in category local exploits require 'msf/core' require 'rex' require 'msf/core/post/common' require 'msf/core/post/windows/priv' require 'msf/core/post/windows/process' class Metasploit3 'Windows EPATHOBJ::pprFlattenRec Local Privilege Escalation', 'Description' = %q...
Windows Manage Memory Payload Injection
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/exploit/exe' class...
quicktime.util.QTByteObject Initialization Security Checks Bypass
No description provided by source. / c SECURITY EXPLORATIONS 2012 poland / / http://www.security-explorations.com / / Apple QuickTime Java extensions / / quicktime.util.QTByteObject initialization security checks bypass / In order to test the POC code for the reported Issue 22, manually add...
Apple QuickTime - QuickTime.util.QTByteObject Initialization Security Checks Bypass
Apple QuickTime - QuickTime.util.QTByteObject Initialization Security Checks Bypass / c SECURITY EXPLORATIONS 2012 poland / / http://www.security-explorations.com / / Apple QuickTime Java extensions / / quicktime.util.QTByteObject initialization security checks bypass / In order to test the POC...
win32/xp sp3 (Tr) user32.dll Edit with notepad.exe Shellcode 87 bytes
Exploit for win32 platform in category shellcode ===================================================================== win32/xp sp3 Tr user32.dll Edit with notepad.exe Shellcode 87 bytes =====================================================================...
win32/xp sp2 (fr) notepad.exe 41 bytes
Exploit for win32 platform in category shellcode ======================================== win32/xp sp2 fr notepad.exe 41 bytes ======================================== windows xp-sp2 fr notepad.exe 41 bytes author opt!x hacker " in this shellcode I use 2 API finded in kernel32.dll:in windows XP S...
Microsoft Visual FoxPro 6.0 FPOLE.OCX Arbitrary Command Execution
No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"body bgcolor="E0E0E0"----------------------------------------------------------------------------- bMicrosoft Visual FoxPro 6.0 FPOLE.OCX Arbitrary Command Execution/b...
Microsoft Visual FoxPro 6.0 - 'FPOLE.OCX' Arbitrary Command Execution
----------------------------------------------------------------------------- Microsoft Visual FoxPro 6.0 FPOLE.OCX Arbitrary Command Execution url: http://www.microsoft.com Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose...
Microsoft Visual C++ - .RC Resource Files Local Buffer Overflow
Microsoft Visual C++ - .RC Resource Files Local Buffer Overflow // // // Microsoft Visual C++ 6.0 SP6 resource compiler buffer overflow // vulnerability .rc resource files exploit // // vulnerability found / exploit built by porkythepig // // include "stdio.h" include "stdlib.h" include "memory.h...
Microsoft Help Workshop 4.03.0002 (.CNT) Buffer Overflow Exploit
No description provided by source. // // // PoC exploit for .cnt files buffer overflow vulnerability in // Microsoft Help Workshop v4.03.0002 // The tool is standard component of MS Visual Studio v6.0, 2003 .NET // // vulnerability found / exploit built by porkythepig // // include "stdio.h"...
Microsoft Help Workshop 4.03.0002 (.CNT) Buffer Overflow Exploit
Exploit for unknown platform in category local exploits ================================================================ Microsoft Help Workshop 4.03.0002 .CNT Buffer Overflow Exploit ================================================================ // // // PoC exploit for .cnt files buffer...
Microsoft Help Workshop 4.03.0002 - .cnt Local Buffer Overflow
Microsoft Help Workshop 4.03.0002 - .cnt Local Buffer Overflow // // // PoC exploit for .cnt files buffer overflow vulnerability in // Microsoft Help Workshop v4.03.0002 // The tool is standard component of MS Visual Studio v6.0, 2003 .NET // // vulnerability found / exploit built by porkythepig ...
Code injection
Classic Planer in AntiVir PersonalEdition Classic 7 does not drop privileges before executing external programs, which allows local users to gain privileges via notepad.exe, which is used to display scan reports...