13 matches found
EUVD-2000-0297
Malware in sbrugna...
Microsoft Windows Deployment Services Unattend Gatherer
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Windows Deployment Services Unattend Gatherer', 'Description' = %q This module will search remote file shares for unattended installati...
Unattended Installation of XenServer Tools
This article describes about the unattended installation of XenServer Tools using Microsoft’s Windows Installer program, msiexec. Background XenTools delivered with XenServer 6.1 version are able to make use of Microsoft’s Windows Installer program, msiexec. One of those is a way to install...
PT-2021-24205 · Knime · Knime Server
Name of the Vulnerable Software and Affected Versions: KNIME Server versions 4.12.5 and earlier KNIME Server versions 4.13.x before 4.13.4 Description: The issue allows local users to read the administrator's password from a file due to inadequate file access controls when the software is install...
Security update for virtualbox (important)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2021:1403-1 Rating: important References: 1191104 1191526 1191869 Cross-References: CVE-2021-2475 CVE-2021-35538 CVE-2021-35540 CVE-2021-35542 CVE-2021-35545 CVSS scores: CVE-2021-2475 NVD : 4.4...
Onionhead Cloud Reinstallation suffers from DLL hijacking vulnerability
Onionhead Cloud Reinstall is a powerful one-key reinstallation system tool, intelligent adaptation of the current system environment, DOS and PE dual-mode free switching; support for GHO, WIM, ESD, ISO and other image suffixes; support for unattended installation of the windows system under the...
Updates to Citrix Workspace app installer
Objective This update is applicable to Citrix Workspace app 1904 and above Citrix Workspace app installer starts certain processes during the installation of the software. Citrix Workspace app 1904 for Windows onwards certain changes have been made to the process handling in the installer. Althou...
Microsoft Windows Deployment Services Unattend Gatherer
This module will search remote file shares for unattended installation files that may contain domain credentials. This is often used after discovering domain credentials with the auxiliary/scanner/dcerpc/windowsdeploymentservices module or in cases where you already have domain credentials. This...
CVE-2000-0298
CVE-2000-0298 concerns Windows 2000 unattended installations using the OEMPreinstall option. The provided sources state that this setup creates insecure permissions on the All Users and Default Users directories, enabling potential local compromise with complete confidentiality, integrity, and av...
All Users startup folder left open if unattended install and OEMP reinstall=1
About a month ago I posted the following to the win2ksecadvice list. However, I received no response. I thought I'd try again since I consider this problem to be pretty serious since it will allow any user to introduce a code stream on another user. I recently noticed a problem with Windows 2000...
CVE-2000-0298
The unattended installation of Windows 2000 with the OEMPreinstall option sets insecure permissions for the All Users and Default Users directories...
CVE-1999-0701
After an unattended installation of Windows NT 4.0, an installation file could include sensitive information such as the local Administrator password...
CVE-1999-0701
The vulnerability CVE-1999-0701 relates to an unattended installation of Windows NT 4.0 where the installation file could contain sensitive information such as the local Administrator password. This is confirmed across multiple sources (NVD/NVD-derived entries and Red Hat security references). No...