8 matches found
EUVD-2019-9090
Malware in sbrugna...
CVE-2019-19470
Unsafe usage of .NET deserialization in Named Pipe message processing allows privilege escalation to NT AUTHORITY\SYSTEM for a local attacker. Affected product is TinyWall, all versions up to and including 2.1.12. Fixed in version 2.1.13...
Unspecified Vulnerability in TinyWall
TinyWall is a lightweight firewall product based on the Windows platform. A security vulnerability exists in TinyWall. The vulnerability can be exploited by an attacker to gain additional privileges with the help of TinyWall Controller...
CVE-2019-19470
Unsafe usage of .NET deserialization in Named Pipe message processing allows privilege escalation to NT AUTHORITY\SYSTEM for a local attacker. Affected product is TinyWall, all versions up to and including 2.1.12. Fixed in version 2.1.13...
CVE-2019-19470
Unsafe usage of .NET deserialization in Named Pipe message processing allows privilege escalation to NT AUTHORITY\SYSTEM for a local attacker. Affected product is TinyWall, all versions up to and including 2.1.12. Fixed in version 2.1.13...
Deserialization of untrusted data
Unsafe usage of .NET deserialization in Named Pipe message processing allows privilege escalation to NT AUTHORITY\SYSTEM for a local attacker. Affected product is TinyWall, all versions up to and including 2.1.12. Fixed in version 2.1.13...
CVE-2019-19470
CVE-2019-19470 describes unsafe ".NET deserialization" in TinyWall’s Named Pipe message processing, enabling local privilege escalation to NT AUTHORITY\SYSTEM. Affected: TinyWall up to version 2.1.12; fixed in 2.1.13. Root cause: unsafe deserialization during Named Pipe handling, leading to eleva...
CVE-2019-19470
Unsafe usage of .NET deserialization in Named Pipe message processing allows privilege escalation to NT AUTHORITY\SYSTEM for a local attacker. Affected product is TinyWall, all versions up to and including 2.1.12. Fixed in version 2.1.13...