3051 matches found
MS Windows Improper Token Validation Local Exploit (working)
Exploit for unknown platform in category local exploits ============================================================ MS Windows Improper Token Validation Local Exploit working ============================================================ / Removed include "stdafx.h" / str0ke / include include defi...
Microsoft Windows - Improper Token Validation Privilege Escalation
/ Removed include "stdafx.h" / str0ke / include include define INFOBUFFERSIZE MAXCOMPUTERNAMELENGTH + 1 define PATHSIZE INFOBUFFERSIZE + MAXPATH + 4 typedef UINT WINAPI PFnMsiInstallProductLPCSTR szPackagePath, LPCSTR szCommandLine; int mainint argc, char argv HANDLE hToken,hThread; HMODULE hMsi ...
CVE-2004-1149
Computer Associates eTrust EZ Antivirus 7.0.0 to 7.0.4, including 7.0.1.4, installs its files with insecure permissions ACLs, which allows local users to gain privileges by replacing critical programs with malicious ones, as demonstrated using VetMsg.exe...
Microsoft Security Bulletin MS04-044 Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege (885835)
Microsoft Security Bulletin MS04-044 Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege 885835 Issued: December 14, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft Windows Impact of Vulnerability: Elevation of Privilege Maximum...
Microsoft Security Bulletin MS04-040 Cumulative Security Update for Internet Explorer (889293)
Microsoft Security Bulletin MS04-040 Cumulative Security Update for Internet Explorer 889293 Issued: December 1, 2004 Version: 1.0 Summary Who should read this document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical...
Microsoft Security Bulletin MS04-004
Microsoft Security Bulletin MS04-004 Cumulative Security Update for Internet Explorer 832894 Issued: February 2, 2004 Version: 1.0 Summary Who should read this document: Customers who are using Microsoft® Internet Explorer Impact of vulnerability: Remote Code Execution Maximum Severity Rating:...
Free Community Detection
Free Community is installed on the remote host. This is an adware program that monitors web traffic, and replaces banner advertisements with advertisements of its choosing. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12014; scriptversion"1.15";...
CVE-2003-0359
nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code...
CVE-2003-0365
ICQLite 2003a creates the ICQ Lite directory with an ACE for "Full Control" privileges for Interactive Users, which allows local users to gain privileges as other users by replacing the executables with malicious programs...
ICQLite executable trojaning
bugtraq@, Title: ICQ Lite executable trojaning Affected: ICQLite 2003a Vendor: ICQ Inc Vendor URL: http://www.icq.com Risk: Average Exploitable: Yes Remote: No Date: May, 29 2003 Advisory URL: http://www.security.nnov.ru/advisories/icqlite.asp I. Intro: ICQ Lite is popular internet messenger...
SAP Database 7.37.4 - SDBINST Race Condition
SAP Database 7.37.4 - SDBINST Race Condition source: https://www.securityfocus.com/bid/7421/info SAP Database SDBINST has been reported prone to a race condition vulnerability. It has been reported that the SAP Database install tool SDBINST may perform operations non-atomically when installing th...
TFTPD32 2.50 - Arbitrary File DownloadUpload
TFTPD32 2.50 - Arbitrary File DownloadUpload source: https://www.securityfocus.com/bid/6198/info A vulnerability has been discovered in Tftpd32 which allows a remote attacker to download and upload arbitrary system files. The ability to upload system files may allow an attacker to replaced key...
3Com® HomeConnect® Cable Modem Denial of Service
INFO: ====================================================== object class Failure to Handle Exceptional Conditions remote Yes local No vulnerable: 3Com® HomeConnect® Cable Modem External with USB 3CR29223 -- DISCONTINUED Not Tested: 3CR29223-A -- DISCONTINUED DISCUSSION:...
Advisory: PGP 7.0 signature verification vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Product: Pretty Good Privacy Severity: Medium to high Impact: Users with write access to signed exported key blocks may replace them with arbitrary keys without any warning being issued upon import of those keys Local: Yes Remote: No though...
VariCAD 7.0 premission vulnerability
Content-Type: premission/vulnerability Date : 10/08/2000 18:34 Sender : Narrow [email protected] Subject : VariCAD 7.0 premission vulnerability X-System : Red Hat 6.0 X-Status : Narrow-ADV-07 DESCRIPTION VariCAD is a CAD for mechanical engineering for both 2D and 3D. VariCAD 7.0 is shipped with Re...
Omnis Studio 2.4 - Weak Database Field Encryption
Omnis Studio 2.4 - Weak Database Field Encryption source: https://www.securityfocus.com/bid/1255/info Omnis Studio 2.4 is a development tool for creating database applications. The tool gives developers the option to encrypt database entries. However, the encryption scheme used is weak and easily...
Проблемы с eToken
При наличии физического доступа к устройству возможно подменить PIN/ключ доступа путем перепрошивки EPROM...
CVE-1999-0998
Cisco Cache Engine allows an attacker to replace content in the cache...
ssh-xauth.txt
The default SSH configuration for SSH1 and SSH2 allow for remote controlling of X sessions through X forwarding. All children of the SSH connection are able to tunnel X11 sessions through the X tunnel to the client X11 session. This is accomplished by running xauth upon logging in. If xauth is...
KB4599861: Setup Dynamic Update for Windows 10, version 2004 and 20H2: February 2, 2021
KB4599861: Setup Dynamic Update for Windows 10, version 2004 and 20H2: February 2, 2021 Summary This update makes improvements to Setup binaries or any files that Setup uses for feature updates in Windows 10, version 2004 and 20H2. How to get this update This update is available through Windows...