CVE-2023-53937

Hubstaff 1.6.14 contains a DLL search order hijacking vulnerability that allows attackers to replace a missing system32 wow64log.dll with a malicious library. Attackers can generate a custom DLL using Metasploit and place it in the system32 directory to obtain a reverse shell during application...

CVE-2023-53937 Hubstaff 1.6.14 DLL Search Order Hijacking via wow64log Library

Hubstaff 1.6.14 contains a DLL search order hijacking vulnerability that allows attackers to replace a missing system32 wow64log.dll with a malicious library. Attackers can generate a custom DLL using Metasploit and place it in the system32 directory to obtain a reverse shell during application...

PT-2025-52316

Name of the Vulnerable Software and Affected Versions Hubstaff version 1.6.14 Description The software contains a DLL search order hijacking issue. An attacker can replace a missing system32wow64log.dll with a malicious library. By using tools like Metasploit to create a custom DLL and placing it...

EUVD-2007-5124

Malware in sbrugna...

Hubstaff 1.6.14-61e5e22e - (wow64log) DLL Search Order Hijacking Vulnerability

Exploit Title: Hubstaff 1.6.14-61e5e22e - 'wow64log' DLL Search Order Hijacking Exploit Author: Ahsan Azad Vendor Homepage: https://hubstaff.com/ Software Link: https://app.hubstaff.com/download Version: 1.6.13, 1.6.14 Tested On: 64-bit operating system, x64-based processor Description Hubstaff i...

Ransom.Conti Code Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/20f0c736a966142de88dee06a2e4a5b1.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Ransom.Conti Vulnerability: Code Execution Description: Conti looks for and executes DLLs ...

Forescout CounterACT 安全漏洞

Forescout CounterACT is a software application from Forescout USA. Network Access Control Software A security vulnerability exists in Forescout CounterACT versions prior to 8.1.4, which can be exploited by an attacker to point a log file to a privileged location, such as %WINDIR%System32...

Microsoft Windows Diagnostics Hub - DLL Load Privilege Escalation (MS16-125)

Microsoft Windows Diagnostics Hub - DLL Load Privilege Escalation MS16-125 / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=887 Windows: Diagnostics Hub DLL Load EoP Platform: Windows 10 10586, not tested 8.1 Update 2 or Windows 7 Class: Elevation of Privilege Summary: The fix...

Sogou input method 0DAY-vulnerability warning-the black bar safety net

Vulnerability process description: When windows is loaded sogou input method later, log in to the system, lock the computercltr+alt+del it. Switch to sogou input method, input the phonetic alphabet appears sogou input method toolbar, click on search, it will call iexplorer.exe the. Next you can b...

Energizer DUO USB battery charger software allows unauthorized remote system access

Overview The software available for the Energizer DUO USB battery charger contains a backdoor that allows unauthorized remote system access. Description Energizer DUO is a USB battery charger. An optional Windows application that allows the user to view the battery charging status has been...

搜狗输入法绕过锁屏保护漏洞

搜狗输入法是在中国广泛使用的拼音输入法。 当用户登录到Windows系统并加载了搜狗输入法后，锁屏（cltr+alt+del）再切换到该输入法，在输入法的工具栏中输入任意内容后点击“搜索”就会调用iexplorer.exe。如果登录账号属于管理员组，就可以直接在IE地址栏中进入system32目录并运行cmd。 SOGOU.COM 搜狗输入法 4.3 - Microsoft Windows 7 ultimate 厂商补丁： SOGOU.COM --------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

Microsoft SQL Server Payload Execution

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft SQ...

A file handle Arp spoofing-vulnerability warning-the black bar safety net

删除 system32\npptools.dll...

CVE-2007-5143

F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanning by using the system32 directory to store a crafted 1 archive or 2 packed executable. NOTE: in many environments, this does not cross privilege boundaries because any process able to write to...

Never killed a back door-a batch of Essentials-vulnerability warning-the black bar safety net

The code idea is the shadow Hawk DESERT friends of, the original code is too much trouble, I made improvements, this Backdoor advantage is small and will not be killed, put to the SYSTEM32 directory on it, the code is as follows: @echo off @attrib +s + r xyt. bat @net user xyt hacker /add @net...

Dove gray is registered as a system service method-reference for the black hole-vulnerability and early warning-the black bar safety net

A few days ago a pigeon to research registered into the system service method, I don't have pigeons, and found that it is using rundll32 to import an inf to achieve, this should be added a registry key to disable the reg script, disable regedit, are effective? Examples are as follows: Add a...

Windows mplay32 buffer overflow

Microsoft is aware of the vulnerability. Since this successful remote exploitation of this vulnerability depends on other mitigating factors, Microsoft believes it is not worthy of a bulletin. This overflow will be fixed in XP service pack 1. I will explain my understanding of the vulnerability...