11 matches found
CVE-2024-31226
Sunshine (Moonlight’s self-hosted game stream host) for Windows is affected in versions 0.17.0–0.22.2 when running as a service. An attacker could place a file named C:\Program.exe, C:\Program.bat, or C:\Program.cmd on the target machine and trigger hijacked execution flow during service terminat...
ROS-20240402-12
A vulnerability in Nextcloud cloud storage creation and utilization software Server is related to the ability to update any personal or global external storage, making it inaccessible to everyone else. Exploitation of the vulnerability could allow an attacker, acting remotely, to bypass existing...
Microsoft SAFER Bypass Vulnerability
Hi @ll, Microsoft introduced SAFER alias Software Restriction Policies SRP with Windows XP about 20 years ago. See for the API, plus the TechNet articles "How Software Restriction Policies Work" and "Using Software Restriction Policies to Protect Against Unauthorized Software" for the use case...
SYS.2.2.2.A14
Ziel des Bausteins SYS.2.2.2 ist der Schutz von Informationen, die durch und auf Windows 8.1-Clients verarbeiten werden. Die Kern-Anforderung Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...
Applocker Evasion - Windows Presentation Foundation Host
This module will assist you in evading Microsoft Windows Applocker and Software Restriction Policies. This technique utilises the Microsoft signed binary PresentationHost.exe to execute user supplied code. This module requires Metasploit: https://metasploit.com/download Current source:...
Applocker Evasion - MSBuild
This module will assist you in evading Microsoft Windows Applocker and Software Restriction Policies. This technique utilises the Microsoft signed binary MSBuild.exe to execute user supplied code. This module requires Metasploit: https://metasploit.com/download Current source:...
Applocker Evasion - .NET Framework Installation Utility
This module will assist you in evading Microsoft Windows Applocker and Software Restriction Policies. This technique utilises the Microsoft signed binary InstallUtil.exe to execute user supplied code. This module requires Metasploit: https://metasploit.com/download Current source:...
God Horses are Floating Clouds: The Story of a Chinese Banker Trojan
Dong Yan In China these days, e-commerce has become an important part of daily life, especially among young people. According to a report from CNNIC China Internet Network Information Center, the number of Chinese e-commerce users reached 242 million at the end of the December 2012. This is nearl...
Cisco Security Advisory: Cisco Content Services Gateway Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco Content Services Gateway Vulnerabilities Advisory ID: cisco-sa-20110126-csg2 http://www.cisco.com/warp/public/707/cisco-sa-20110126-csg2.shtml Revision 1.0 For Public Release 2011 January 26 1600 UTC GMT...
Java Dynamic Management Kit privilege escalation
Invalid appliance of restriction policies allows to access Inter-ORB applications data...
Windows Software Restriction Policy Protection Bypass
Windows Software Restriction Policy Protection Bypass Class: Protection bypass Vector: Local Tested on: Windows XP SP2, Windows Server 2003 SP1 Risk: Low Remark: I don't know, what is it - bug or feature, but I can't find any documentation on this issue. Description: Software Restriction Policies...