Lucene search
K

37 matches found

OSV
OSV
added 2023/01/03 7:20 p.m.7 views

SUSE-SU-2023:0022-1 Security update for rmt-server

This update for rmt-server fixes the following issues: Update to version 2.10: - Add option to turn off system token support bsc1205089 - Update the lastseenat column on zypper service refresh - Do not retry to import non-existing files in air-gapped mode bsc1204769 - CVE-2022-31254: Fixed a loca...

7.8CVSS7.7AI score0.00248EPSS
Exploits1References5
OSV
OSV
added 2023/01/03 7:19 p.m.5 views

SUSE-SU-2023:0021-1 Security update for rmt-server

This update for rmt-server fixes the following issues: Update to version 2.10: - Add option to turn off system token support bsc1205089 - Update the lastseenat column on zypper service refresh - Do not retry to import non-existing files in air-gapped mode bsc1204769 - CVE-2022-31254: Fixed a loca...

7.8CVSS7.7AI score0.00248EPSS
Exploits1References5
OSV
OSV
added 2023/01/03 7:19 p.m.7 views

SUSE-SU-2023:0020-1 Security update for rmt-server

This update for rmt-server fixes the following issues: Update to version 2.10: - Add option to turn off system token support bsc1205089 - Update the lastseenat column on zypper service refresh - Do not retry to import non-existing files in air-gapped mode bsc1204769 - CVE-2022-31254: Fixed a loca...

7.8CVSS7.7AI score0.00248EPSS
Exploits1References5
OSV
OSV
added 2021/06/21 1:58 p.m.9 views

OPENSUSE-SU-2021:0898-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 91.0.4472.114 boo1187481 CVE-2021-30554: Use after free in WebGL CVE-2021-30555: Use after free in Sharing CVE-2021-30556: Use after free in WebAudio CVE-2021-30557: Use after free in TabGroups Chromium 91.0.4472.106 Fix use-after-free...

8.8CVSS9.3AI score0.11747EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2021/06/08 12:0 a.m.8 views

PT-2021-3303

Name of the Vulnerable Software and Affected Versions Windows NTFS affected versions not specified Description An elevation of privilege issue exists in the ntfs.sys driver due to improper access control. The flaw involves a heap overflow—a condition where data exceeds the allocated memory buffer...

9.3CVSS8.4AI score0.20112EPSS
Exploits4References34
0day.today
0day.today
added 2021/01/07 12:0 a.m.41 views

NTLM BITS SYSTEM Token Impersonation Exploit

This Metasploit module exploit BITS behavior which tries to connect to the local Windows Remote Management server WinRM every times it starts. The module launches a fake WinRM server which listen on port 5985 and triggers BITS. When BITS starts, it tries to authenticate to the Rogue WinRM server,...

7.3AI score
Exploits0
Metasploit
Metasploit
added 2021/01/06 5:41 p.m.235 views

SYSTEM token impersonation through NTLM bits authentication on missing WinRM Service.

This module exploit BITS behavior which tries to connect to the local Windows Remote Management server WinRM every times it starts. The module launches a fake WinRM server which listen on port 5985 and triggers BITS. When BITS starts, it tries to authenticate to the Rogue WinRM server, which allo...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/06 12:0 a.m.284 views

NTLM BITS SYSTEM Token Impersonation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/post/windows/reflectivedllinjection' class MetasploitModule 'SYSTEM token impersonation through NTLM bits authentication on missing WinRM Service.',...

7.4AI score
Exploits0
n0where
n0where
added 2017/12/19 6:22 p.m.71 views

Abusing Windows Security: mimikatz

mimikatz is well known tool for extraction of plaintexts passwords, hashes, PIN codes and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets. A lot of times after the initial exploitation phase attackers may want to get a firmer foothold...

0.4AI score
Exploits0References26
0day.today
0day.today
added 2012/04/19 12:0 a.m.35 views

MS11-046 Afd.sys Proof of Concept

Exploit for windows platform in category dos / poc / MS11-046 Was a Zero day found in the wild , reported to MS by Steven Adair from the Shadowserver Foundation and Chris S . Ronnie Johndas wrote the writeup dissecting a malware with this exploit . I Rahul Sasifb1h2s just made the POC exploit...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2012/04/19 12:0 a.m.77 views

Microsoft Windows - 'afd.sys' Local Kernel (PoC) (MS11-046)

/ MS11-046 Was a Zero day found in the wild , reported to MS by Steven Adair from the Shadowserver Foundation and Chris S . Ronnie Johndas wrote the writeup dissecting a malware with this exploit . I Rahul Sasifb1h2s just made the POC exploit available . Reference: ms8-66, ms6-49 Too lazy to add...

7AI score
Exploits0
exploitpack
exploitpack
added 2011/09/28 12:0 a.m.16 views

Norman Security Suite 8 - nprosec.sys Local Privilege Escalation

Norman Security Suite 8 - nprosec.sys Local Privilege Escalation include include include include / Discovered by : Xst3nZ Jérémy Brun-Nouvion ---- Software ------------------------------------------------------------------------- Program : Norman Security Suite 8 Official page :...

Exploits0
Exploit DB
Exploit DB
added 2011/09/28 12:0 a.m.24 views

Norman Security Suite 8 - 'nprosec.sys' Local Privilege Escalation

include include include include / Discovered by : Xst3nZ Jérémy Brun-Nouvion ---- Software ------------------------------------------------------------------------- Program : Norman Security Suite 8 Official page : http://www.norman.com/products/securitysuite/en Description : "This easy-to-use...

7AI score
Exploits0
canvas
canvas
added 2007/07/11 5:30 p.m.43 views

Immunity Canvas: WINPCAP

Name| winpcap ---|--- CVE| CVE-2007-3681 Exploit Pack| CANVAS Description| winpcap Notes| CVE Name: CVE-2007-3681 VENDOR: WinPcap.org URL: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=550 Notes: This exploit will auto-target based on reading a kernel file on Windows 2000 o...

6.6CVSS0.1AI score0.02377EPSS
Exploits1
canvas
canvas
added 2006/11/06 8:7 p.m.57 views

Immunity Canvas: GDIWRITE4

Name| GDIWrite4 ---|--- CVE| CVE-2006-5758 Exploit Pack| CANVAS Description| GDIWrite4 MS07-017 Notes| CVE Name: CVE-2006-5758 VENDOR: Microsoft Notes: This exploit will auto-target based on reading a kernel file on Windows 2000 or XP. It will generate a target fingerprint when you run the...

7.2CVSS5.8AI score0.06325EPSS
Exploits6
myhack58
myhack58
added 2006/06/11 12:0 a.m.28 views

Admins group access privileges on the system the perfect solution-vulnerability warning-the black bar safety net

On the Administrators groupadministratorsaccess systemSYSTEMpermissions for a method in fact has many. Small four brother, you mentioned some:"the MSDN Series3 - The Administrator user directly to obtain SYSTEM privileges"and"remote thread injection version obtain SYSTEM privileges". Here,I first...

7.9AI score
Exploits0
canvas
canvas
added 2005/01/10 5:0 a.m.37 views

Immunity Canvas: MSIMPERSONATE

Name| msimpersonate ---|--- CVE| CVE-2004-0894 Exploit Pack| CANVAS Description| msimpersonate MS04-044 Notes| CVE Name: CVE-2004-0894 VENDOR: Microsoft MSADV: MS04-044 Discovered By: Cesar Cerrudo MSRC: http://www.microsoft.com/technet/security/bulletin/MS04-044.mspx CVE Url:...

7.2CVSS6.4AI score0.03629EPSS
Exploits1
Rows per page
Query Builder