289 matches found
Applications that use the Windows Help function may be vulnerable to privilege escalation
Overview Applications or Services that call the Windows Help function in an insecure manner may allow a user unauthorized access to resrouces on the system. Applications or Services that call the Windows Help function in an insecure manner may allow a user unauthorized access to resrouces on the...
VirIT eXplorer 6.7.43 - 'tg-scan.dll' DLL Loading Arbitrary Code Execution
// source: https://www.securityfocus.com/bid/43506/info VirIT eXplorer is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to scan a file from a network share location that...
VirIT eXplorer 6.7.43 - tg-scan.dll DLL Loading Arbitrary Code Execution
VirIT eXplorer 6.7.43 - tg-scan.dll DLL Loading Arbitrary Code Execution // source: https://www.securityfocus.com/bid/43506/info VirIT eXplorer is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the...
Symantec Sygate Personal Firewall ActiveX Buffer Overflow Vulnerability
This host is installed with Symantec Sygate Personal Firewall and is prone to Buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodsymantecsygatepersonalfirewallbofvuln.nasl 5368 2017-02-20 14:34:16Z cfi $ Symantec Sygate Personal Firewall ActiveX Buffer Overflow Vulnerability...
Symantec Sygate Personal Firewall ActiveX Buffer Overflow Vulnerability
Symantec Sygate Personal Firewall is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2010-2305
Buffer overflow in an ActiveX control in SSHelper.dll for Symantec Sygate Personal Firewall 5.6 build 2808 allows remote attackers to execute arbitrary code via a long third argument to the SetRegString method...
CVE-2010-2305
The CVE-2010-2305 issue affects Symantec Sygate Personal Firewall 5.6 (build 2808). A flaw exists in the SSHelper.dll ActiveX control where a buffer overflow is triggered by passing a long third argument to the SetRegString method, allowing remote code execution. The vulnerability is tied to an A...
Sygate Personal Firewall 5.6 Build 2808 Active-X Exploit
seh = unescape"%13%16%47%06" 'ADD ESP,46C RETN rop = rop + String72, "D" 'J...
Sygate Personal Firewall 5.6 build 2808 - ActiveX with DEP Bypass
Sygate Personal Firewall 5.6 build 2808 - ActiveX with DEP Bypass !-- |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | |...
Sygate Personal Firewall 5.6 build 2808 - ActiveX with DEP Bypass
!-- |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | [email protected] | | |...
EesySec Personal Firewall Remote Buffer Overflow Exploit
!/usr/bin/perl + Bug : EesySec Personal Firewall Remote Buffer Overflow Exploit + program Download : http://www.effectmatrix.com/easysec/ + Author : theEdit0r + Contact me : the3dit0ratYahoodotcoM + Greetz to all my friends + Tested on: Windows XP Pro SP3 + web site: Expl0iters.ir Anti-security.i...
EasySec Personal Firewall buffer overflow
Buffer overflow on FTP analysis...
CVE-2009-2450
The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHODNEITHER IOCTL requests to \Device\OAmon containing arbitrary kernel addresses, as...
CVE-2009-2450
The CVE-2009-2450 issue affects the OAmon.sys kernel driver (version 3.1.0.0 and earlier) used by Tall Emu Online Armor Personal Firewall AV+ (before 3.5.0.12) and Online Armor Personal Firewall 3.5 (before 3.5.0.14). The vulnerability allows local users to gain privileges via crafted METHOD_NEIT...
Online Armor个人防火墙IOCTL请求本地权限提升漏洞
BUGTRAQ ID: 35227 Online Armor是澳大利亚Tall Emu开发的个人防火墙。 Online Armor防火墙的OAmon.sys驱动在处理用户所提交的IOCTL请求时没有执行正确的地址空间验证,本地非特权用户可以向任意地址写入任意数据,导致执行任意内核态代码。 ... .text:00013E8D @@ioctl830020C3: .text:00013E8D mov eax, ebp+OutputBuffer ; UserBuffer .text:00013E90 mov dword ptr eax, 1 ; UserBuffer0 = 1...
Online Armor 3.5.0.12 - OAmon.sys Local Privilege Escalation
Online Armor 3.5.0.12 - OAmon.sys Local Privilege Escalation //////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | Tall Emu Pty Ltd - http://www.tallemu.com/ | // // ...
Online Armor < 3.5.0.12 - 'OAmon.sys' Local Privilege Escalation
//////////////////////////////////////////////////////////////////////////////////// // +----------------------------------------------------------------------------+ // // | | // // | Tall Emu Pty Ltd - http://www.tallemu.com/ | // // | | // // | Affected Software: | // // | Online Armor Persona...
Online Armor < 3.5.0.12 (OAmon.sys) Local Privilege Escalation Exploit
Exploit for unknown platform in category local exploits ====================================================================== Online Armor 3.5.0.12 OAmon.sys Local Privilege Escalation Exploit ======================================================================...
Design/Logic Flaw
The Trend Micro Personal Firewall service aka TmPfw.exe in Trend Micro Network Security Component NSC modules, as used in Trend Micro OfficeScan 8.0 SP1 Patch 1 and Internet Security 2007 and 2008 17.0.1224, relies on client-side password protection implemented in the configuration GUI, which...
CVE-2008-3866
Affected product : Trend Micro OfficeScan NSC components (TmPfw.exe) used in OfficeScan 8.0 SP1 Patch 1 and Internet Security 2007/2008 (17.0.1224). Vulnerability : The Personal Firewall service relies on client-side password protection in the configuration GUI, but this check is not enforced by ...