CVE-2018-18860

A local privilege escalation vulnerability has been identified in the SwitchVPN client 2.1012.03 for macOS. Due to over-permissive configuration settings and a SUID binary, an attacker is able to execute arbitrary binaries as root...

EulerOS Virtualization 2.5.0 : kernel (EulerOS-SA-2018-1368)

According to the version of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An integer overflow flaw was found in the Linux kernel's createelftables function. An unprivileged local user with access to SUID or...

Cisco Prime Infrastructure Unauthenticated Remote Code Execution Exploit

Cisco Prime Infrastructure CPI contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege...

Cisco Prime Infrastructure Unauthenticated Remote Code Execution

Cisco Prime Infrastructure CPI contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege...

Cisco Prime Infrastructure - Unauthenticated Remote Code Execution Exploit

Cisco Prime Infrastructure CPI contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2018-4234)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-4234 advisory. 2.6.39-400.301.2 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28710024 CVE-2018-14634 Tenable has extracted the preceding description...

CVE-2018-14634

An integer overflow flaw was found in the Linux kernel's createelftables function. An unprivileged local user with access to SUID or otherwise privileged binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable...

Solaris EXTREMEPARR dtappgather Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Solaris 'EXTREMEPARR' dtappgather Privilege Escalation", 'Description' = %q This module exploits a directory traversal vulnerability in the...

Solaris EXTREMEPARR dtappgather Privilege Escalation Exploit

This Metasploit module exploits a directory traversal vulnerability in the dtappgather executable included with Common Desktop Environment CDE on unpatched Solaris systems prior to Solaris 10u11 which allows users to gain root privileges. dtappgather allows users to create a user-owned directory ...

Solaris 'EXTREMEPARR' dtappgather Privilege Escalation

This module exploits a directory traversal vulnerability in the dtappgather executable included with Common Desktop Environment CDE on unpatched Solaris systems prior to Solaris 10u11 which allows users to gain root privileges. dtappgather allows users to create a user-owned directory at any...

Charles Proxy Local Elevation of Privilege Vulnerability

Charles Proxy is an HTTP monitor that looks at all HTTP traffic between your computer and the Intel. A local elevation of privilege vulnerability exists in the Charles Proxy Settings suid binary in versions of Charles Proxy prior to 4.2.1. A local attacker can exploit this vulnerability to gain...

Charles Proxy 4.2 - Local Privilege Escalation

Charles Proxy 4.2 - Local Privilege Escalation Charles Proxy is a great mac application for debugging web services and inspecting SSL traffic for any application on your machine. In order to inspect the SSL traffic it needs to configure the system to use a proxy so that it can capture the packets...

Charles Proxy 4.2 Local Root Privilege Escalation

Charles Proxy is a great mac application for debugging web services and inspecting SSL traffic for any application on your machine. In order to inspect the SSL traffic it needs to configure the system to use a proxy so that it can capture the packets and use its custom root CA to decode the SSL...

Charles Proxy 4.2 - Local Privilege Escalation

Charles Proxy is a great mac application for debugging web services and inspecting SSL traffic for any application on your machine. In order to inspect the SSL traffic it needs to configure the system to use a proxy so that it can capture the packets and use its custom root CA to decode the SSL...

Privilege escalation

VMware Horizon Client for Linux 4.x before 4.8.0 and prior contains a local privilege escalation vulnerability due to insecure usage of SUID binary. Successful exploitation of this issue may allow unprivileged users to escalate their privileges to root on a Linux machine where Horizon Client is...

CVE-2018-6964

VMware Horizon Client for Linux 4.x before 4.8.0 and prior contains a local privilege escalation vulnerability due to insecure usage of SUID binary. Successful exploitation of this issue may allow unprivileged users to escalate their privileges to root on a Linux machine where Horizon Client is...

CVE-2018-6964

CVE-2018-6964 affects VMware Horizon Client for Linux (4.x before 4.8.0) and is a local privilege escalation due to insecure use of an SUID binary. An unprivileged user can escalate to root on a system where Horizon Client is installed. The issue is documented by VMware in VMSA-2018-0014, which n...

VMware Horizon Client update addresses a privilege escalation vulnerability

VMware Horizon Client for Linux Horizon Client VMware Horizon Client privilege escalation vulnerability VMware Horizon Client contains a local privilege escalation vulnerability due to insecure usage of SUID binary. Successful exploitation of this issue may allow unprivileged users to escalate...

CVE-2017-16873

It is possible to exploit an unsanitized PATH in the suid binary that ships with vagrant-vmware-fusion 4.0.25 through 5.0.4 in order to escalate to root privileges...

Code injection

It is possible to exploit an unsanitized PATH in the suid binary that ships with vagrant-vmware-fusion 4.0.25 through 5.0.4 in order to escalate to root privileges...