CVE-2015-2525

Task Scheduler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to bypass intended filesystem restrictions and delete arbitrary files via unspecifi...

Privilege escalation

Task Scheduler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to bypass intended filesystem restrictions and delete arbitrary files via unspecifi...

Immunity Canvas: MS15_102

Name| ms15102 ---|--- CVE| CVE-2015-2525 Exploit Pack| CANVAS Description| Windows Task Arbitrary File Deletion Notes| Repeatability: Infinite Notes: This module exploits a vulnerability on the Task Scheduler Service schedsvc.dll. When a scheduled task is created with the DeleteExpiredTaskAfter...

Privilege escalation

Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 do not properly constrain impersonation levels, which allows local users to gain privileges via a crafted application, aka "Windows Task Management Elevation of Privilege Vulnerability," a...

Microsoft Windows Task Management Privilege Elevation Vulnerabilities (3089657)

This host is missing an important security update according to Microsoft Bulletin MS15-102. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2015-2525

Task Scheduler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to bypass intended filesystem restrictions and delete arbitrary files via unspecifi...

CVE-2015-2525

CVE-2015-2525 affects Windows Task Scheduler across multiple OS versions (Vista SP2, Server 2008 SP2/R2, Windows 7/8/8.1, Server 2012/2012 R2, RT/10). The vulnerability allows local privilege escalation by bypassing filesystem restrictions during task deletion via Task Scheduler (schedsvc.dll) wi...

MS15-102: Vulnerabilities in Windows Task Management Could Allow Elevation of Privilege (3089657)

The remote Windows host is affected by multiple elevation of privilege vulnerabilities in Windows Task Management : - An elevation of privilege vulnerability exists due to a failure to properly validate and enforce impersonation levels. An authenticated, remote attacker can exploit this, via a...

KLA10656 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows and related products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, gain privileges or execute arbitrary code. Below is a complete list of vulnerabilities 1. Imprope...

Microsoft Windows Task Scheduler CVE-2015-2525 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with elevated privileges in the context of the affected computer. Technologies Affected Avaya Meeting Exchange - Client Registration Server 6.0...

MS15-102: Vulnerabilities in Windows Task Management could allow elevation of privilege: September 8, 2015

Resolves vulnerabilities in Windows that could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application.SummaryThis security update resolves vulnerabilities in Windows that could allow elevation of privilege if an attacker logs on to a system and ru...

DLA-304-1 openslp-dfsg - security update

Bulletin has no description...

Intrigue - Intelligence Gathering Framework

Intrigue-core is an API-first intelligence gathering framework for Internet reconnaissance and research. Setting up a development environment The following are presumed available and configured in your environment redis sudo nmap zmap masscan java runtime Sudo is used to allow root access for...

[SECURITY] Fedora 21 Update: rt-4.2.12-1.fc21

RT is an enterprise-grade ticketing system which enables a group of people to intelligently and efficiently manage tasks, issues, and requests submitt ed by a community of users...

[SECURITY] Fedora 23 Update: rt-4.2.12-1.fc23

RT is an enterprise-grade ticketing system which enables a group of people to intelligently and efficiently manage tasks, issues, and requests submitt ed by a community of users...

The vulnerability of the EMC Documentum electronic document management system allows a hacker to redirect users to any desired website.

The vulnerabilities of the Documentum WebTop, Documentum Administrator, Documentum Digital Assets Manager, Documentum Web Publishers, and Documentum Task Space components of the EMC Documentum electronic document management system are related to the use of open redirection. Exploiting these...

New Android Vulnerable Lets Hackers Take Over Your Phone

This time Everything is Affected! Yet another potentially dangerous vulnerability has reportedly been disclosed in the Google's mobile operating system platform – Android. Android has been hit by a number of security flaws this month, including: Stagefright vulnerability that affects 950 Million...

CVE-2015-4530

EMC Documentum CSRF vulnerability CVE-2015-4530 affects WebTop and related components (WebTop, WebTop-based clients; Administrator up to 7.2; DAM 6.5SP6; Web Publishers 6.5SP7; Task Space 6.7SP2). Root cause: incomplete fix for CVE-2014-2518. Impact: attackers can hijack user sessions, performing...

CVE-2015-5163

The import task action in OpenStack Image Service Glance 2015.1.x before 2015.1.2 kilo, when using the V2 API, allows remote authenticated users to read arbitrary files via a crafted backing file for a qcow2 image...

Design/Logic Flaw

OpenStack Glance before 2015.1.1 kilo allows remote authenticated users to cause a denial of service disk consumption by repeatedly using the import task flow API to create images and then deleting them...