Exploit for Out-of-bounds Write in Polkit_Project Polkit

CREDITS VULNERABILITY AUTHOR: https://blog.qualys.com/vulne...

CVE-2021-0585

CVE-2021-0585 is a documented Android vulnerability affecting Android 8.1–11 where an out-of-bounds write can occur in beginWrite/beginRead of MessageQueueBase.h due to improper input validation. This could enable local escalation of privilege to a system-level context without user interaction. T...

F5 BIG-IP Edge Client Windows Component Installer 7.2.1 < 7.2.1.3 / 7.1.6 < 7.1.9.9 Update 1 Privilege Escalation (K08503505)

The version of the Big-IP Edge Client Windows Component Installer installed on the remote Windows host is 7.2.1 before 7.2.1.3, or between 7.1.6 and 7.1.9.9 Update 1. It is, therefore, affected by a privilege escalation vulnerability. A local attacker can exploit this to gain privileged or...

rxvt 2.7.0 / rxvt-unicode 9.22 Code Execution Exploit

rxvt version 2.7.0 and rxvt-unicode version 9.22 incorrectly handles ANSI escape sequences allowing for arbitrary code execution. !/usr/bin/env python Title: rxvt remote code execution over scp with $SHELL=/bin/bash 0day Version: rxvt 2.7.10, rxvt-unicode 9.22 Author: def Date: 2021-05-16 CVE: N/...

Webmin <= 1.910 Remote Command Execution

A remote command execution vulnerability exists in Package Updates module. An authenticated, remote attacker can exploit this if they are authorized to the Package Updates module via the data parameter to update.cgi in order to execute arbitrary commands with root privileges. C Tenable Network...

Adobe Illustrator < 25.2 Multiple Arbitrary code execution (APSB21-12)

The version of Adobe Illustrator installed on the remote Windows host is prior to 25.2. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-12 advisory. - Adobe Illustrator version 25.1 and earlier is affected by an Out-of-bounds Write vulnerability when parsing a...

Adobe Character Animator 3.0 < 3.3 Arbitrary code execution (APSB20-25)

The version of Adobe Character Animator installed on the remote Windows host is prior to 3.3. It is, therefore, affected by a vulnerability as referenced in the APSB20-25 advisory. - Adobe Character Animator versions 3.2 and earlier have a buffer overflow vulnerability. Successful exploitation...

Photon OS 2.0: Python3 PHSA-2020-2.0-0295

An update of the python3 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0295. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

ASB-A-155094269

In various places in Telephony, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation...

Adobe Premiere Rush <= 1.5.12 Arbitrary Code Execution (APSB20-39)

The version of Adobe Premiere Rush installed on the remote Windows host is version less than or equal to 1.5.12. It is, therefore, affected by out-of-bounds read and write vulnerabilities that could lead to arbitrary code execution. Note that Nessus has not attempted to exploit these issues but h...

Adobe Premiere Pro < 14.3 Multiple Arbitrary Code Execution (APSB20-38)

The version of Adobe Premiere Pro installed on the remote Windows host is prior to 14.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB20-38 advisory. - Adobe Premiere Pro versions 14.2 and earlier have an out-of-bounds write vulnerability. Successful exploitatio...

SimplePHPGal 0.7 - Remote File Inclusion Vulnerability

Exploit for php platform in category web applications Title: SimplePHPGal 0.7 - Remote File Inclusion Author: h4shur Vendor Homepage: https://johncaruso.ca Software Link: https://johncaruso.ca/phpGallery/ Software Link: https://sourceforge.net/projects/simplephpgal/ Tested on: Windows 10 & Google...

Exim < 4.93 Privilege Escalation vulnerability

According to its banner, the version of Exim running on the remote host is prior to 4.93. It is, therefore, potentially affected by a privilege escalation vulnerability. A flaw exists in the UNIX symbolic link that could allow an attacker to execute to escalate from the mail user to root. C Tenab...

Fedora 31 : drupal8 (2020-f82db72daf)

https://www.drupal.org/project/drupal/releases?version=8 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

Zyxel 0day Affects its Firewall Products, Too

On Monday, networking hardware maker Zyxel released security updates to plug a critical security hole in its network attached storage NAS devices that is being actively exploited by crooks who specialize in deploying ransomware. Today, Zyxel acknowledged the same flaw is present in many of its...

IBM WebSphere Application Server 7.0.0.x <= 7.0.0.45 / 8.0.0.x <= 8.0.0.15 / 8.5.x < 8.5.5.15 / 9.0.0.x < 9.0.0.10 Remote Code Execution (CVE-2018-1567)

The IBM WebSphere Application Server running on the remote host is version 7.0.0.0 through 7.0.0.45, 8.0.0.0 through 8.0.0.15, 8.5.x prior to 8.5.5.15, or 9.0.0.x prior to 9.0.0.10. It is, therefore, affected by a remote code execution vulnerability. IBM WebSphere Application Server could allow...

SSLv2-Only Open Ports Unsupported

This plugin detects if the remote host has any open ports which only support SSLv2. This protocol has been deprecated since 2011 because of security vulnerabilities and most major SSL libraries such as OpenSSL, NSS, Mbed TLS, and wolfSSL do not provide this functionality in their latest versions...

Apache Solr 8.1.1 / 8.2.0 Remote Code Execution Vulnerability

The version of Apache Solr running on the remote web server is affected by a remote code vulnerability as referenced in the advisory. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid131167; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate",...

CVE-2002-2444

CVE-2002-2444 affects Snoopy prior to 2.0.0, with a security hole in exec cURL. The initial entry reports CVSS v2 base score 7.5 (HIGH) and CVSS v3.1 base score 9.8 (CRITICAL). No exploitation details or remediation are provided in the connected documents.

CVE-2002-2444

Snoopy before 2.0.0 has a security hole in exec cURL...