CVE-2019-3742

Dell/Alienware Digital Delivery (and Dell Digital Delivery) versions prior to 3.5.2013 are affected by a local privilege-escalation vulnerability. A non-privileged attacker could abuse a named pipe that deserializes binaries via a process hollowing technique to execute code with elevated privileg...

PT-2019-16685 · Dell · Dell/Alienware Digital Delivery

Name of the Vulnerable Software and Affected Versions: Dell/Alienware Digital Delivery versions prior to 3.5.2013 Description: The issue allows a local non-privileged malicious user to exploit a named pipe that performs binary deserialization via a process hollowing technique. This technique...

CVE-2018-9191

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attackers to execute unauthorized code or commands via the named pipe responsible for Forticlient updates...

Code injection

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attackers to execute unauthorized code or commands via the named pipe responsible for Forticlient updates...

CVE-2018-9191

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attackers to execute unauthorized code or commands via the named pipe responsible for Forticlient updates...

CVE-2018-9191

CVE-2018-9191 is a local privilege escalation in Fortinet FortiClient for Windows, affecting version 6.0.4 and earlier. The root cause is a vulnerability in the named pipe used for FortiClient updates, which attackers can leverage to run unauthorized code with elevated privileges. The通常 impact is...

CVE-2018-9191

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attackers to execute unauthorized code or commands via the named pipe responsible for Forticlient updates...

CVE-2018-9191

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attackers to execute unauthorized code or commands via the named pipe responsible for Forticlient updates...

CVE-2018-16156

In PaperStream IP TWAIN 1.42.0.5685 Service Update 7, the FJTWSVIC service running with SYSTEM privilege processes unauthenticated messages received over the FjtwMkicFjicube32 named pipe. One of these message processing functions attempts to dynamically load the UninOldIS.dll library and executes...

EUVD-2018-8010

In PaperStream IP TWAIN 1.42.0.5685 Service Update 7, the FJTWSVIC service running with SYSTEM privilege processes unauthenticated messages received over the FjtwMkicFjicube32 named pipe. One of these message processing functions attempts to dynamically load the UninOldIS.dll library and executes...

Arbitrary Code Execution

Artifex Ghostscript is vulnerable to arbitrary code execution. This is because incorrect restoration of privilege checking when running out of stack during exception handling. An attacker could use this flaw to supply crafted PostScript to execute code using the pipe instruction...

EulerOS Virtualization for ARM 64 3.0.1.0 : sssd (EulerOS-SA-2019-1411)

According to the versions of the sssd packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The UNIX pipe which sudo uses to contact SSSD and read the available sudo rules from SSSD utilizes too broad of a set of...

Denial Of Service (DoS)

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. It was found that the Linux kernel's implementation of vectored pipe read and write functionality did not take into account the I/O vectors that were already processed when retrying after a failed atomic acce...

CVE-2019-9486

STRATO HiDrive Desktop Client 5.0.1.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the HiDriveMaintenanceService service. This service establishes a NetNamedPipe endpoint that allows applications to connect and call publicly exposed methods. An attacker can inject...

UBUNTU-CVE-2019-10125

An issue was discovered in aiopoll in fs/aio.c in the Linux kernel through 5.0.4. A file may be released by aiopollwake if an expected event is triggered immediately e.g., by the close of a pair of pipes after the return of vfspoll, and this will cause a use-after-free...

CapMon Access Manager Access Control Error Vulnerability (CNVD-2019-07543)

CapMon Access Manager is a set of access management software from CapMon Denmark. The software supports application whitelisting/blacklisting, audit logging, and more. An access control error vulnerability exists in the AccessManagerCoreService.exe file in CapMon Access Manager version 5.4.1.1005...

CVE-2018-18497

Limitations on the URIs allowed to WebExtensions by the browser.windows.create API can be bypassed when a pipe in the URL field is used within the extension to load multiple pages as a single argument. This could allow a malicious WebExtension to open privileged about: or file: locations. This...

Low: sssd

Issue Overview: The UNIX pipe which sudo uses to contact SSSD and read the available sudo rules from SSSD utilizes too broad of a set of permissions. Any user who can send a message using the same raw protocol that sudo and SSSD use can read the sudo rules available for any user. CVE-2018-10852...

Microsoft Windows 10 - DSSVC CanonicalAndValidateFilePath Security Feature Bypass Exploit

Exploit for windows platform in category local exploits Windows: DSSVC CanonicalAndValidateFilePath Security Feature Bypass Platform: Windows 10 1803 and 1809. Class: Security Feature Bypass/Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary NOTE: This i...

Microsoft Windows 10 - DSSVC CanonicalAndValidateFilePath Security Feature Bypass

Windows: DSSVC CanonicalAndValidateFilePath Security Feature Bypass Platform: Windows 10 1803 and 1809. Class: Security Feature Bypass/Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary NOTE: This is one of multiple issues I’m reporting in the same...