EUVD-2017-15073

Malware in sbrugna...

CVE-2019-15084

Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM...

Waves MaxxAudio Drivers 1.1.6.0 - 'WavesSysSvc64' Unquoted Service Path

Exploit Title: Waves MaxxAudio Drivers 1.1.6.0 - 'WavesSysSvc64' Unquoted Service Path Discovery by: Luis Martinez Discovery Date: 2019-11-24 Vendor Homepage: https://www.dell.com/ Software Link : https://www.dell.com/support/home/mx/es/mxbsdt1/drivers/driversdetails?driverid=vwpkk Tested Version...

Waves MaxxAudio Drivers 1.1.6.0 - WavesSysSvc64 Unquoted Service Path

Waves MaxxAudio Drivers 1.1.6.0 - WavesSysSvc64 Unquoted Service Path Exploit Title: Waves MaxxAudio Drivers 1.1.6.0 - 'WavesSysSvc64' Unquoted Service Path Discovery by: Luis Martinez Discovery Date: 2019-11-24 Vendor Homepage: https://www.dell.com/ Software Link :...

CVE-2019-15084

Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM...

Information disclosure

Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM...

CVE-2019-15084

Realtek Waves MaxxAudio driver 1.6.2.0 (Dell laptops) has incorrect file permissions in its service binary (WavesSysSvc64.exe), enabling local privilege escalation to SYSTEM. Documents cite a local exploit (PoC/analysis) and Dell PSIRT guidance to update to a supported driver; no official patch d...

Realtek Waves MaxxAudio driver elevation of privilege vulnerability

Realtek Waves MaxxAudio driver is an audio driver. An elevation of privilege vulnerability exists in Realtek Waves MaxxAudio driver version 1.6.2.0 for Dell laptops, which can be exploited by a local attacker to elevate privileges to SYSTEM...

CVE-2017-6005

Waves MaxxAudio, as installed on Dell laptops, adds a "WavesSysSvc" Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileg...

Design/Logic Flaw

Waves MaxxAudio, as installed on Dell laptops, adds a "WavesSysSvc" Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileg...

CVE-2017-6005

Waves MaxxAudio, as installed on Dell laptops, adds a "WavesSysSvc" Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileg...

CVE-2017-6005

Waves MaxxAudio, as installed on Dell laptops, adds a "WavesSysSvc" Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileg...

CVE-2017-6005

CVE-2017-6005 corresponds to a local privilege escalation in Waves MaxxAudio on Dell laptops. Multiple connected sources describe the issue as an Unquoted Service Path in the WavesSysSvc Windows service (File Version 1.1.6.0), allowing an authorized but non-privileged local user to execute arbitr...

Dell laptop Waves MaxxAudio Command Execution Vulnerability

The Dell laptop is a portable computer from Dell, Inc.Waves Audio Waves MaxxAudio is one of the audio enhancement components developed by Waves Audio of Israel. A security vulnerability exists in Waves MaxxAudio in Dell laptop. A local attacker could exploit this vulnerability to execute arbitrar...