PT-2026-26413

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.22 Description OpenClaw versions prior to 2026.2.22 contain an arbitrary shell execution issue in the shell environment fallback mechanism. This occurs because the software trusts the unvalidated SHELL path fr...

Uncontrolled Search Path Element

tkeasygui is vulnerable to Uncontrolled Search Path Element. The vulnerability is due to improper control over the directories searched for executable files, which allows an attacker to place malicious files in a trusted path and execute arbitrary code with the privileges of the running program...

SUSE CVE-2003-0255

The key validation code in GnuPG before 1.2.2 does not properly determine the validity of keys with multiple user IDs and assigns the greatest validity of the most valid user ID, which prevents GnuPG from warning the encrypting user when a user ID does not have a trusted path...

SUSE CVE-2013-1673

The Mozilla Updater in Mozilla Firefox before 21.0 on Windows does not properly maintain Mozilla Maintenance Service registry entries in certain situations involving upgrades from older Firefox versions, which allows local users to gain privileges by leveraging write access to a "trusted path."...

Trusted Path Elevation of Privilege Vulnerability in Micropoint Baihui Active Defense Software Web Edition

Micropoint Baihui Active Defense Software Network Edition realizes real-time intelligent defense against unknown Trojans and new viruses on the network. There is a trusted path privilege elevation vulnerability in the network version of Micropoint's Active Defense Software, which can be exploited...

Trusted Path Elevation of Privilege Vulnerability in Micropoint Baihui Security Antivirus Enterprise Edition

Micropoint Baihui security antivirus software is the second generation of antivirus software independently developed by Micropoint Baihui Beijing Information Security Technology Co. Micropoint Baihui security antivirus software is mainly for the increasingly prominent virus, Trojan horse, malware...

Trusted Path Elevation of Privilege Vulnerability in Micropoint Baihui Intelligent Defense Software Enterprise Edition

Micropoint Baihui Intelligent Defense Software Enterprise Edition is a new generation of network antivirus products developed by Micropoint Baihui for enterprise network virus protection and management characteristics. The enterprise version of Micropoint Intelligent Defense Software has a truste...

Trusted Path Elevation of Privilege Vulnerability in FireWool Security Software

Firedown Security is a computer security software. FireFlush Security Software has a trusted path elevation of privilege vulnerability that can be exploited by an attacker to gain server privileges through a local elevation of privilege...

Trusted Path Code Execution Vulnerability in Lenovo PC Manager

Lenovo PC Manager is a system cleanup software, the software can help users easily and quickly clean up the computer system junk files, and can provide users with real-time monitoring of the computer's cpu temperature, real-time intelligent control of the computer temperature, so as to protect th...

RealTimes (Realplayer) 18.0.1.6 Privilege Escalation Vulnerability

RealTimes Realplayer versions 18.0.1.6 and below suffer from a desktop service trusted path privilege escalation vulnerability. RealTimes Realplayer Desktop Service Trusted Path Privilege Escalation Affected Version: 18.0.1.6 or below Vendor Homepage: http://www.real.com/?ref=cloud Vulnerability...

Mobilis 3G mobiconnect Privilege Escalation

Exploit Title:mobilis 3g mobiconnect 3G++ ZDServer 1.0.1.2 Service Trusted Path Privilege Escalation Date: 07/12/2014 Author: Hadji Samir [email protected] Product web page: http://www.3G.dz/ http://www.mobilis.dz/ Affected version: 1.0.1.2 Tested on: Windows 7 FR Thanks Rachid Ben elkharchi mobili...

Telefonica O2 Connection Manager 8.7 Service Trusted Path Privilege Escalation

Summary O2 Connection Manager will help you to manage your internet connections by getting you connected to the fastest available network. Automatically connect you to the fastest available network including your home broadband if you have a wireless router. Description The O2 Connection Manager'...

ibstat $PATH Privilege Escalation

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class Metasploit4 Msf::Exploit::Local Rank = ExcellentRanking include Msf::Post::File include Msf::Exploit::FileDropper def initializein...

ibstat $PATH Privilege Escalation Exploit

Exploit for linux platform in category local exploits This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class Metasploit4 "ibstat $PATH Privilege Escalation", "Description" = %q This module exploits the trusted $PATH...

Windows Service Trusted Path Privilege Escalation

Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

CVE-2003-0255

The key validation code in GnuPG before 1.2.2 does not properly determine the validity of keys with multiple user IDs and assigns the greatest validity of the most valid user ID, which prevents GnuPG from warning the encrypting user when a user ID does not have a trusted path...

OpenBSD local DoS

-----BEGIN PGP SIGNED MESSAGE----- A local denial of service attack against OpenBSD was published today Sunday Dec 02 to the [email protected] mailing list by Marco Peereboom [email protected]. I'm forwarding his message on to the general security community. The effect of the attack is to crash...