36 matches found
NixOS Nix CVE-2019-17365 Local Privilege Escalation Vulnerability
Description NixOS Nix is prone to a local privilege-escalation vulnerability. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Nix versions through 2.3 are vulnerable. Technologies Affected NixOS Nix 1.0 NixOS Nix 1.5 NixOS Nix 1.9...
Microsoft Windows LNK CVE-2019-1280 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to execute arbitrary code on the target system. Failed attacks may cause denial of service conditions. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...
Applocker Evasion - Windows Presentation Foundation Host
This module will assist you in evading Microsoft Windows Applocker and Software Restriction Policies. This technique utilises the Microsoft signed binary PresentationHost.exe to execute user supplied code. This module requires Metasploit: https://metasploit.com/download Current source:...
Applocker Evasion - MSBuild
This module will assist you in evading Microsoft Windows Applocker and Software Restriction Policies. This technique utilises the Microsoft signed binary MSBuild.exe to execute user supplied code. This module requires Metasploit: https://metasploit.com/download Current source:...
Applocker Evasion - .NET Framework Installation Utility
This module will assist you in evading Microsoft Windows Applocker and Software Restriction Policies. This technique utilises the Microsoft signed binary InstallUtil.exe to execute user supplied code. This module requires Metasploit: https://metasploit.com/download Current source:...
Security Bulletin: Vulnerability in OpenSSL affects IBM® SDK for Node.js™ in IBM Bluemix (CVE-2015-1793)
Summary OpenSSL alternate chains certificate forgery vulnerability CVE-2015-1793 disclosed by the OpenSSL Project on July 9 2015. IBM SDK for Node.js in IBM Bluemix has addressed this CVE. Vulnerability Details CVEID: CVE-2015-1793 DESCRIPTION: OpenSSL could allow a remote attacker to bypass...
Microsoft Internet Explorer VBScript Engine CVE-2018-8174 Arbitrary Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to an unspecified arbitrary code-execution vulnerability. Attackers can exploit this vulnerability to execute arbitrary code in the context of the affected application. Note: This issue was previously titled 'Microsoft Internet Explorer Unspecified...
Microsoft Office CVE-2018-1007 Information Disclosure Vulnerability
Description Microsoft Office is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Office 2016 32-bit edition Microsoft Office 2016 64-bit edition Recommendations Run a...
Microsoft Edge CVE-2017-0241 Remote Privilege Escalation Vulnerability
Description Microsoft Edge is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Edge Recommendations Block external access at the network boundary, unless external parties require service. Filter...
God Horses are Floating Clouds: The Story of a Chinese Banker Trojan
Dong Yan In China these days, e-commerce has become an important part of daily life, especially among young people. According to a report from CNNIC China Internet Network Information Center, the number of Chinese e-commerce users reached 242 million at the end of the December 2012. This is nearl...
Windows 2008 bypass the logon password validation vulnerability-vulnerability warning-the black bar safety net
This article by Rainy'Fox original, reproduced please indicate the source ! In the login window can be seen to the lower left corner of the icon, click on the following pop-up window! Select the second magnifying glass, then click apply, the application of a magnifying glass app 因为 我们 之前 已经 用...
Macromedia Flash Player SWF文件远程代码执行漏洞(MS06-020)
Macromedia Flash Player是一款非常流行的FLASH播放器。 Flash Player在处理畸形恶意SWF文件时存在缓冲区溢出漏洞,攻击者可能利用此漏洞在客户机器上执行任意指令。 如果攻击者诱骗用户使用Flash Player加载了恶意的SWF文件的话,就会完全控制受影响的系统。 Microsoft Windows XP SP2 Microsoft Windows XP SP1 Microsoft Windows ME Microsoft Windows 98se Microsoft Windows 98 RedHat Linux WS 4 RedHat Linux ...
Macromedia Flash Player数组索引内存访问漏洞(MS06-020)
Macromedia Flash Player是一款非常流行的FLASH播放器。 Macromedia Flash Player用于播放SWF文件的Flash.ocx代码中存在漏洞,成功利用这个漏洞的攻击者可以远程执行任意代码。 其中的一个函数栈维护有256个元素的函数指针表,没有强制数组边界便将从SWF文件读取的帧类型标识符用作了数组索引。以下反汇编描述了受影响的代码: .text:1002714F mov eax, esi+0CA4h ; type number .text:10027155 mov ecx, esi+94h ; base of table .text:1002715...
Windows Software Restriction Policy Protection Bypass
Windows Software Restriction Policy Protection Bypass Class: Protection bypass Vector: Local Tested on: Windows XP SP2, Windows Server 2003 SP1 Risk: Low Remark: I don't know, what is it - bug or feature, but I can't find any documentation on this issue. Description: Software Restriction Policies...
Microsoft Windows software restriction policy protection bypass
By using RunAs function it's possible to launch any application...
File monitoring, the solution of the restricted share Software-bug warning-the black bar safety net
In the last issue of shareware crack articles, we recounted how the through the registry monitoring method, direct Lift sharing software use time and number restrictions. In fact, now there are many similar shared software uses more covert methods, in addition to in the registry to write software...