CVE-2024-5246

NETGEAR ProSAFE Network Management System Tomcat Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this vulnerability. The specific...

PT-2023-7459 · Microsoft +1 · Sccm +1

Name of the Vulnerable Software and Affected Versions: IntelR SCS Add-on software installer for Microsoft SCCM all versions Description: The issue is related to incorrect default permissions in the IntelR SCS Add-on software installer for Microsoft SCCM, which may allow an authenticated user to...

Cisco AnyConnect Privilege Escalations (CVE-2020-3153 and CVE-2020-3433)

The installer component of Cisco AnyConnect Secure Mobility Client for Windows prior to 4.8.02042 is vulnerable to path traversal and allows local attackers to create/overwrite files in arbitrary locations with system level privileges. The installer component of Cisco AnyConnect Secure Mobility...

Mozilla Firefox / Thunderbird DLL Hijacking

Hi @ll despite better knowledge and MULTIPLE bug/vulnerability reports see , , , ... Mozilla continues to ship Firefox and Thunderbird for Windows with a vulnerable executable installer. Proof of concept/demonstration: 1. visit , download and save it as ShimEng.dll in your "Downloads" folder, the...