EUVD-2013-0154

Malware in sbrugna...

EUVD-2013-0153

Malware in sbrugna...

EUVD-2013-1644

Malware in sbrugna...

EUVD-1999-1198

Malware in sbrugna...

EUVD-1999-1003

Malware in sbrugna...

EUVD-2000-1110

Malware in sbrugna...

EUVD-2006-4993

Malware in sbrugna...

EUVD-2006-4997

Malware in sbrugna...

EUVD-2008-2373

Malware in sbrugna...

EUVD-2018-9990

Malware in sbrugna...

CVE-2013-0110

nvSCPAPISvr.exe in the NVIDIA Stereoscopic 3D Driver service, as distributed with the NVIDIA driver before 307.78, and Release 310 before 311.00, on Windows, lacks " double quote characters in the service path, which allows local users to gain privileges via a Trojan horse program...

CVE-2015-9267

Nullsoft Scriptable Install System NSIS before 2.49 uses temporary folder locations that allow unprivileged local users to overwrite files. This allows a local attack in which either a plugin or the uninstaller can be replaced by a Trojan horse program...

CVE-2017-7690

Proxifier for Mac before 2.19.2, when first run, allows local users to gain privileges by replacing the KLoader binary with a Trojan horse program...

CVE-2016-0921

EMC Avamar Server components Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) are affected by a local privilege escalation due to weak permissions on unspecified directories. The underlying issue is weak directory permissions that allow a local user to replace a script with a Trojan horse...

Design/Logic Flaw

Untrusted search path vulnerability in Apple OS X before 10.11.1 allows local users to bypass intended Gatekeeper restrictions and gain privileges via a Trojan horse program that is loaded from an unexpected directory by an application that has a valid Apple digital signature...

Code injection

consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows local users to gain privileges via a Trojan horse program that is located in /tmp with a name based on a predicted PID value...

Dell SonicWall NetExtender CVE-2015-4173 Remote Privilege Escalation Vulnerability

Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE%...

CVE-2015-4173

Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE%...

CVE-2015-2789

Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 through 7.0.6.1126 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder...

Various Siemens products have search path vulnerabilities

Siemens SIMATIC ProSave; SIMATIC CFC 8 SP4 upd9 8.1 upd1; SIMATIC STEP 7 5.5 SP1 Hf2 5.5 SP2 5.5 SP4 HF4 HF7 sp35.5; SIMOTION Scout 4.4 Starter 4.4 HF3 are all Siemens Siemens Germany company in Germany. A search path vulnerability exists in several Siemens products, allowing local users to gain...