7 matches found
CVE-2023-42757
Process Explorer before 17.04 allows attackers to make it functionally unavailable a denial of service for analysis by renaming an executable file to a new extensionless 255-character name and launching it with NtCreateUserProcess. This can occur through an issue in wcscats error handling...
SUSE CVE-2018-10879
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4xattrsetentry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image...
CVE-2019-19894
In IXP EasyInstall 6.2.13723, it is possible to temporarily disable UAC by using the Agent Service on a client system. An authenticated attacker non-admin can disable UAC for other users by renaming and replacing %SYSTEMDRIVE%\IXP\DATA\IXPAS.IXP...
LiteManager 4.5.0 - Insecure File Permissions Exploit
Exploit Title: LiteManager 4.5.0 - Insecure File Permissions Exploit Author: ZwX Exploit Date: 2019-11-21 Vendor Homepage : LiteManager Team Software Link: http://html.tucows.com/preview/1594042/LiteManager-Free?q=remote+support Tested on OS: Windows 7 Proof of Concept PoC:...
Code injection
Controller/Async/FilesystemManager.php in the filemanager in Bolt before 3.6.5 allows remote attackers to execute arbitrary PHP code by renaming a previously uploaded file to have a .php extension...
The vulnerability of the Flash Player software, which allows a perpetrator to execute arbitrary code
The vulnerability of the Clipboard class in the Flash Player software platform is related to data processing functions. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by renaming and executing the file remotely...
The vulnerability of the NetCharts Server data visualization platform allows a hacker to execute arbitrary code.
The vulnerability of the projectContents.jsp page on the NetCharts Server visualization platform is related to deficiencies in access control for files. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by renaming and executing the file...