16 matches found
Bypassing Administrator Protection by Abusing UI Access
Posted by James Forshaw In my last blog post I introduced the new Windows feature, Administrator Protection and how it aimed to create a secure boundary for UAC where one didn’t exist. I described one of the ways I was able to bypass the feature before it was released. In total I found 9 bypasses...
EUVD-2008-1477
Malware in sbrugna...
EUVD-2003-0898
Malware in sbrugna...
Kaspersky Antivirus privilege escalation
Antivirus windows is vulnerable to shatter attack...
CVE-2008-6827
The ListView control in the Client GUI AClient.exe in Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 allows local users to gain SYSTEM privileges and execute arbitrary commands via a "Shatter" style attack on the "command prompt" hidden GUI button to 1 overwrite the CommandLine...
PT-2009-2296 · Symantec +1 · Symantec Altiris Deployment Solution +1
Name of the Vulnerable Software and Affected Versions: Symantec Altiris Deployment Solution versions prior to 6.9.355 SP1 Description: The issue allows local users to gain SYSTEM privileges and execute arbitrary commands via a "Shatter" style attack. This attack targets the CommandLine parameter ...
Insomnia : ISVA-081020.1 - Altiris Deployment Server Agent - Privilege Escalation
Insomnia Security Vulnerability Advisory: ISVA-081020.1 Name: Altiris Deployment Server Agent - Privilege Escalation Released: 20 October 2008 Vendor Link: http://www.altiris.com/ Affected Products: Altiris Deployment Server 6.X Original Advisory:...
Altiris Notification Server Agent GUI Local Privilege Escalation (KB 39159)
Altiris Notification Server Agent, also known as Altiris Agent, is installed on the remote host, allowing it to be managed by an Altiris Notification Server. The installed version of the Altiris Agent is reportedly vulnerable to a Shatter Attack involving its GUI that can allow local users to...
Symantec Altiris Deployment服务器代理AClient.exe本地权限提升漏洞
BUGTRAQ ID: 28110 Symantec Altiris Deployment Solution是自动化的操作系统部署解决方案,用于从统一的位置部署和管理服务器、桌面和笔记本等。 Symantec Altiris Deployment服务器代理存在权限提升漏洞,本地攻击者可以通过shatter攻击获得非授权的特权访问。仅有登录到运行了Symantec Altiris Deployment Solution代理(AClient.exe) 的系统的攻击者才可以利用这个漏洞。 Symantec Altiris Deployment Solution 6.8.x Symantec...
Altiris AClient < 6.9.164 Multiple Local Vulnerabilities
The version of the Altiris Client Agent aclient installed on the remote host reportedly is susceptible to a shatter attack that could allow a local user to elevate his or her privileges on the affected system. In addition, the Altiris Deployment Solution reportedly stores the AClient password in...
CVE-2008-0716
The agent in Symantec Altiris Notification Server before 6.0 SP3 R7 allows local users to gain privileges via a "Shatter" style attack...
Anti-vir vulnerability
I found a vulnerability in the free version of the antivira antivir. The vulnerability is a shatter attack against a system window. progress bar shatter. The window in question is the the start update. I'll not release any exploit...
Bypass personal firewall application protection . Again.
Bypass personal firewall application protection . Again. coded by offtopic [email protected] 2004 Special thank to 3APA3A for links to the debuggers for Windows. quote src= http://www.security.nnov.ru/advisories/bypassing.asp?l=EN Personal firewall usually restricts access to network to the list o...
PT-2004-1378 · Microsoft · Winhlp32.Exe +2
Name of the Vulnerable Software and Affected Versions: Windows 2000 Description: The issue allows local users to gain system privileges via a "Shatter" style attack. This is achieved by sending a Windows message to Utility Manager, which launches winhlp32.exe with raised privileges. The attack...
Windows ListBox/ComboBox buffer overflow
Buffer overflow in Windows components makes it possible to launch shatter attack...
Microsoft Windows XP2000NT 4.0 - Window Message Subsystem Design Error (2)
Microsoft Windows XP2000NT 4.0 - Window Message Subsystem Design Error 2 // source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely...