37 matches found
CVE-2022-24286
Acer QuickAccess 2.01.300x before 2.01.3030 and 3.00.30xx before 3.00.3038 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general...
CVE-2022-24285
Acer Care Center 4.00.30xx before 4.00.3042 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority called ACCsvc through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general user. In addition,...
CVE-2021-23352
This affects the package madge before 4.0.1. It is possible to specify a custom Graphviz path via the graphVizPath option parameter which when the .image, .svg or .dot functions are called, is executed by the childprocess.exec function...
CVE-2017-15870
Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to gain SYSTEM privileges via vectors involving "image path execution hijacking."...
Design/Logic Flaw
Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to gain SYSTEM privileges via vectors involving "image path execution hijacking."...
CVE-2017-15870
Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to gain SYSTEM privileges via vectors involving "image path execution hijacking."...
CVE-2017-15870
CVE-2017-15870 affects Palo Alto Networks GlobalProtect Client/App on macOS up to version 4.0.2 (before 4.0.3). The vulnerability is a local privilege escalation via an image path execution hijacking vector. Exploitation requires local administrative privileges on the compromised host and can gra...
GlobalProtect App Vulnerability
An "image path execution hijacking" vulnerability affects the Palo Alto Networks Global Protect Client. Exploitation of this issue requires the root privileges on the local station. An attacker could exploit this vulnerability to obtain a certain level of persistence on the compromised host. ref...
From the patch compare to the PoC to reproduce it MS16-0 3 0-vulnerability warning-the black bar safety net
MS16-0 3 0 vulnerability MS16-0 3 0 vulnerabilities Windows OLE remote code execution vulnerability, since OLE does not have the correct validation of user input, causing by the special structure of the file or the program can trigger the vulnerability, causing the user to click on after the remo...
Complex Code Reuse Attacks: ROPMEMU
ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks Talos has developed ROPMEMU, a framework to analyze, dissect and decompile complex code-reuse attacks. It adopts a set of different techniques to analyze ROP chains and reconstruct their equivalent code in a form...
QNX RTOS 6.2 Application Packager Non-Explicit Path Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6146/info A vulnerability has been discovered in an application packager shipped with QNX RTOS. It should be noted that the vulnerable packager is installed setuid root by default. It has been reported that the packager...
CVE-2008-7196
CVE-2008-7196 affects metashell before 0.03. Description cites a "PATH execution security flaw" potentially arising from an untrusted search path, but the connected documents do not provide concrete details on affected components, impact scope, exploitation status, or remediation. The Red Hat/EUV...
Mandriva Update for xinitrc MDVA-2008:066 (xinitrc)
Check for the Version of xinitrc OpenVAS Vulnerability Test Mandriva Update for xinitrc MDVA-2008:066 xinitrc Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
F-Secure Internet Gatekeeper antivirus privilege escalation
Different scripts execute external application by relative path...
OpenBSD local DoS
-----BEGIN PGP SIGNED MESSAGE----- A local denial of service attack against OpenBSD was published today Sunday Dec 02 to the [email protected] mailing list by Marco Peereboom [email protected]. I'm forwarding his message on to the general security community. The effect of the attack is to crash...
def-2001-25: Carello E-Commerce Arbitrary Command Execution
====================================================================== Defcom Labs Advisory def-2001-25 Carello E-Commerce Arbitrary Command Execution Author: Peter Grьndl [email protected] Release Date: 2001-05-14 ======================================================================...
GNU GNU bash 1.14 - Path Embedded Code Execution
GNU GNU bash 1.14 - Path Embedded Code Execution source: https://www.securityfocus.com/bid/119/info A vulnerability in bash may allow inadvertently running commands embedded in the path to the currently working directory. If an unsuspecting user enters a directory created by some malicious user...