46 matches found
EUVD-2014-0599
Malware in sbrugna...
EUVD-2014-8975
Malware in sbrugna...
EUVD-2021-22906
Malware in sbrugna...
EUVD-2020-7120
Malware in sbrugna...
EUVD-2023-31852
Malicious code in bioql PyPI...
CVE-2020-14990
IOBit Advanced SystemCare Free 13.5.0.263 allows local users to gain privileges for file deletion by manipulating the Clean & Optimize feature with an NTFS junction and an Object Manager symbolic link...
CVE-2020-15401
IOBit Malware Fighter Pro 8.0.2.547 allows local users to gain privileges for file deletion by manipulating malicious flagged file locations with an NTFS junction and an Object Manager symbolic link...
Microsoft Windows NTFS Junction Heap-based Buffer Overflow Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of NT...
CVE-2023-50915
An issue exists in GalaxyClientService.exe in GOG Galaxy Beta 2.0.67.2 through 2.0.71.2 that could allow authenticated users to overwrite and corrupt critical system files via a combination of an NTFS Junction and an RPC Object Manager symbolic link and could result in a denial of service...
CVE-2023-50915
CVE-2023-50915 affects GOG Galaxy (Beta) 2.0.67.2–2.0.71.2. The issue exists in GalaxyClientService.exe and could allow an authenticated user to overwrite and corrupt critical system files by abusing a combination of an NTFS Junction and an RPC Object Manager symbolic link, potentially leading to...
CVE-2023-50915
An issue exists in GalaxyClientService.exe in GOG Galaxy Beta 2.0.67.2 through 2.0.71.2 that could allow authenticated users to overwrite and corrupt critical system files via a combination of an NTFS Junction and an RPC Object Manager symbolic link and could result in a denial of service...
PT-2024-14007 · Gog · Gog Galaxy
Name of the Vulnerable Software and Affected Versions: GOG Galaxy Beta versions 2.0.67.2 through 2.0.71.2 Description: An issue exists in GalaxyClientService.exe that could allow authenticated users to overwrite and corrupt critical system files via a combination of an NTFS Junction and an RPC...
PT-2024-1710 · Microsoft · Windows Ntfs +2
Name of the Vulnerable Software and Affected Versions: Windows Kernel affected versions not specified Microsoft Windows NTFS affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in the Windows Kernel, which can be exploited due to...
CVE-2023-28141
An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume the privileges of the process, and they may delete or otherwise on unauthorized...
Design/Logic Flaw
An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume the privileges of the process, and they may delete or otherwise on unauthorized...
CVE-2023-28141 NTFS Junction
An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume the privileges of the process, and they may delete or otherwise on unauthorized...
CVE-2023-28141 NTFS Junction
An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume the privileges of the process, and they may delete or otherwise on unauthorized...
CVE-2023-28141
The CVE-2023-28141 issue affects Qualys Cloud Agent for Windows prior to version 4.8.0.31 and is caused by an NTFS Junction condition. An attacker with local access can write files to arbitrary locations, potentially escalating to the privileges of the agent process and modifying or deleting sens...
Dell SupportAssist < 3.10 Multiple Vulnerabilities (DSA-2021-163)
According to its self-reported version number, the version of Dell SupportAssist Client Consumer is prior to 3.10. It is, therefore, affected by multiple vulnerabilities. - An arbitrary file deletion vulnerability exists due to how Dell SupportAssist handles symbolic links and NTFS junction point...
CVE-2021-36286
Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can be created by anynon-privileged user under some object...