Lucene search
+L

154 matches found

Zero Day Initiative
Zero Day Initiative
added 2019/01/10 12:0 a.m.31 views

Microsoft Visual Studio asm Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on executables compiled using vulnerable installations of Microsoft Visual Studio. Attack vectors will vary depending on the nature of the executable in question. The specific flaw exists within the compilation of asm blocks in Visual...

8.1CVSS4.9AI score0.16113EPSS
Exploits0References1
Kitploit
Kitploit
added 2018/11/04 1:31 p.m.123 views

BlobRunner - Quickly Debug Shellcode Extracted During Malware Analysis

BlobRunner is a simple tool to quickly debug shellcode extracted during malware analysis. BlobRunner allocates memory for the target file and jumps to the base or offset of the allocated memory. This allows an analyst to quickly debug into extracted artifacts with minimal overhead and effort. To...

7.3AI score
Exploits0References3
Microsoft KB
Microsoft KB
added 2018/10/09 7:0 a.m.319 views

MS11-025: Description of the security update for Visual C++ 2010 Service Pack 1: August 9, 2011

None None...

9.3CVSS7AI score0.09038EPSS
Exploits1
0day.today
0day.today
added 2018/09/30 12:0 a.m.84 views

Intel Extreme Tuning Utility 6.4.1.23 Code Execution / Privilege Escalation Vulnerabilities

Intel Extreme Tuning Utility version 6.4.1.23 suffers from code execution, privilege escalation, and denial of service vulnerabilities. Intel Extreme Tuning Utility 6.4.1.23 Code Execution / Privilege Escalation Hi @ll, the executable installer of the Intel Extreme Tuning Utility, version 6.4.1.2...

1.3AI score
Exploits0
Packet Storm
Packet Storm
added 2018/09/28 12:0 a.m.45 views

Intel Extreme Tuning Utility 6.4.1.23 Code Execution / Privilege Escalation

Hi @ll, the executable installer of the Intel Extreme Tuning Utility, version 6.4.1.23 Latest, released 5/18/2018, available from via is SURPRISE! vulnerable. CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H Vulnerability 0: ================= The executable installer XTU-Setup.exe comes with at least...

0.9AI score
Exploits0
Prion
Prion
added 2018/06/26 2:29 p.m.22 views

Design/Logic Flaw

Untrusted search path vulnerability in the installer of Visual C++ Redistributable allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

9.3CVSS7.6AI score0.04589EPSS
Exploits0References2
CVE
CVE
added 2018/06/26 2:0 p.m.75 views

CVE-2018-0599

The CVE-2018-0599 issue affects the Visual C++ Redistributable installer. A vulnerability exists in the installer’s DLL search path (DLL planting) that can allow arbitrary code execution with the privileges of the user invoking the installer. Affected component is the installer for Visual C++ Red...

9.3CVSS7.7AI score0.04589EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/06/26 2:0 p.m.22 views

CVE-2018-0599

Untrusted search path vulnerability in the installer of Visual C++ Redistributable allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.7AI score0.04589EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2018/06/19 7:0 a.m.16 views

Update Rollup 22 for Exchange Server 2010 Service Pack 3

Update Rollup 22 for Exchange Server 2010 Service Pack 3 Update Rollup 22 for Microsoft Exchange Server 2010 Service Pack 3 SP3 was released on June 19, 2018. Before you install this update, you must remove all interim updates for Exchange Server 2010 SP3. Also, see this important information abo...

6.8AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2018/05/17 12:0 a.m.70 views

JVN#81196185: The installer of Visual C++ Redistributable may insecurely load Dynamic Link Libraries

The installer of Visual C++ Redistributable provided Microsoft contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries in the same directory as the installer CWE-427. Microsoft states that the root cause of this vulnerability is "Application Directo...

9.3CVSS7.7AI score0.04589EPSS
Exploits0
Citrix
Citrix
added 2017/05/21 12:0 a.m.10 views

Microsoft Visual C redistributable fails to install during VDA installation

While installing VDA in a platform layer. The VDA has MS VC redistributable pre-reqs and the pre-reqs were failing to install...

7AI score
Exploits0
Kitploit
Kitploit
added 2017/04/26 2:15 p.m.27 views

InfectPE - Inject Custom Code into PE File

Using this tool you can inject x-code/shellcode into PE file. InjectPE works only with 32-bit executable files. Why you need InjectPE? You can test your security products. Use in a phishing campaign. Learn how PE injection works. ...and so on. In the project, there is hardcoded x-code of...

7.6AI score
Exploits0References2
n0where
n0where
added 2017/04/25 4:28 p.m.36 views

Inject Custom Code Into PE File: InfectPE

Inject Custom Code Into PE File Using this tool you can inject x-code/shellcode into PE file. InjectPE works only with 32-bit executable files. Why you need InjectPE? You can test your security products. Use in a phishing campaign. Learn how PE injection works. …and so on. In the project, there i...

0.1AI score
Exploits0References1
Veeam
Veeam
added 2017/01/26 12:0 a.m.25 views

vSphere 6.5 backup/replication jobs hang

Challenge vSphere 6.5 backup/replication jobs may hang forever if you're using Windows Server 2008 R2 or Windows 7 backup proxies. Agent…Source.log files contain lines similar to the following: 16.01.2017 16:16:08 vdl| Loading VDDK library. Version: 6.5, directory: 'C:\Program Files...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2016/11/04 2:30 p.m.33 views

Radium-Keylogger - Python keylogger with multiple features

Python keylogger with multiple features. Features Applications and keystrokes logging Screenshot logging Drive tree structure Logs sending by email Password Recovery for Chrome Mozilla Filezilla Core FTP CyberDuck FTPNavigator WinSCP Outlook Putty Skype Generic Network Cookie stealer Keylogger st...

7.3AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2016/08/06 11:59 p.m.22 views

CVE-2016-6503

The CORBA IDL dissectors in Wireshark 2.x before 2.0.5 on 64-bit Windows platforms do not properly interact with Visual C++ compiler options, which allows remote attackers to cause a denial of service application crash via a crafted packet...

5.9CVSS6.6AI score0.06444EPSS
Exploits1References5
exploitpack
exploitpack
added 2016/08/03 12:0 a.m.25 views

Wireshark 2.0.0 2.0.4 - CORBA IDL Dissectors Denial of Service

Wireshark 2.0.0 2.0.4 - CORBA IDL Dissectors Denial of Service GIOP capture Build Information: Version 2.0.3 v2.0.3-0-geed34f0 from master-2.0 Copyright 1998-2016 Gerald Combs and contributors. License GPLv2+: GNU GPL version 2 or later This is free software; see the source for copying conditions...

0.4AI score
Exploits0
OSV
OSV
added 2016/06/19 1:59 a.m.4 views

CVE-2016-4819

The printfDx function in Takumi Yamada DX Library for Borland C++ 3.13f through 3.16b, DX Library for Gnu C++ 3.13f through 3.16b, and DX Library for Visual C++ 3.13f through 3.16b allows remote attackers to execute arbitrary code via a crafted string...

9.8CVSS6.1AI score0.03816EPSS
Exploits0References3
securityvulns
securityvulns
added 2015/10/05 12:0 a.m.146 views

APPLE-SA-2015-09-16-3 iTunes 12.3

APPLE-SA-2015-09-16-3 iTunes 12.3 iTunes 12.3 is now available and addresses the following: iTunes Available for: Windows 7 and later Impact: Applications that use CoreText may be vulnerable to unexpected application termination or arbitrary code execution Description: Multiple memory corruption...

9.3CVSS0.6AI score0.2447EPSS
Exploits5
Veeam
Veeam
added 2014/07/25 12:0 a.m.22 views

Failed to load jet library

Challenge The following error occurs when attempting to perform a restore using Veeam Explorer for Exchange: "Failed to load jet library from C:\ProgramData\Veeam\Backup\ExchangeExplorer\ESE\V15\ese.dll" Solution To solve, upgrade to Internet Explorer 10+ as it contains the necessary Windows file...

6.9AI score
Exploits0
Rows per page
Query Builder