10 matches found
📄 Microsoft Windows TBroker Registry Symlink Information Disclosure
This code demonstrates a proof of concept attack targeting Windows ATBroker Assistive Technology Broker to achieve sensitive information disclosure through unsafe Registry handling...
📄 OSK Registry-Based Privilege Escalation / Symlink Attack
The provided code is a conceptual Windows privilege escalation exploit targeting the On-Screen Keyboard osk.exe and Accessibility AT registry infrastructure. It attempts to abuse weak trust boundaries between user-level registry configuration and system-level execution paths...
EUVD-2022-42749
Malicious code in bioql PyPI...
CVE-2022-3369
An Improper Access Control vulnerability in the bdservicehost.exe component, as used in Bitdefender Engines for Windows, allows an attacker to delete privileged registry keys by pointing a Registry symlink to a privileged key. This issue affects: Bitdefender Engines versions prior to 7.92659. It...
CVE-2022-3369
An Improper Access Control vulnerability in the bdservicehost.exe component, as used in Bitdefender Engines for Windows, allows an attacker to delete privileged registry keys by pointing a Registry symlink to a privileged key. This issue affects: Bitdefender Engines versions prior to 7.92659. It...
CVE-2022-3369
CVE-2022-3369 describes an Improper Access Control flaw in the bdservicehost.exe component used by Bitdefender engines on Windows. An attacker can delete privileged registry keys by directing a registry symbolic link to a privileged key, enabling local impact. Affected products include Bitdefende...
PT-2022-21805 · Bitdefender · Bitdefender Internet Security +5
Name of the Vulnerable Software and Affected Versions: Bitdefender Engines versions prior to 7.92659 Bitdefender Antivirus Free versions prior to 7.92659 Bitdefender Antivirus Plus versions prior to 7.92659 Bitdefender Internet Security versions prior to 7.92659 Bitdefender Total Security version...
MS13-097 Registry Symlink IE Sandbox Escape
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' require 'msf/core/exploit/exe' require 'msf/core/exploit/powershell' class Metasploit3...
MS13-097 Registry Symlink IE Sandbox Escape
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' require 'msf/core/exploit/exe' require 'msf/core/exploit/powershell' class Metasploit3 'MS13-097 Registry Symlink IE Sandbox Escape',...
MS13-097 Registry Symlink IE Sandbox Escape
This module exploits a vulnerability in Internet Explorer Sandbox which allows to escape the Enhanced Protected Mode and execute code with Medium Integrity. The vulnerability exists in the IESetProtectedModeRegKeyOnly function from the ieframe.dll component, which can be abused to force medium...