34 matches found
SYS.2.2.3.A5
Ziel des Bausteins SYS.2.2.3 ist der Schutz von Informationen, die durch und auf Windows 10-Clients verarbeiten werden. Die Basis-Anforderung SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
SilverSHielD 6.x - Local Privilege Escalation
SilverSHielD 6.x - Local Privilege Escalation This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Exploit Title: extenua SilverSHielD 6.x local priviledge escalation Google Dork: na Date: 31 Jul 2019 Exploit Author: Ian...
Microsoft Windows 10 1809 - LUAFV NtSetCachedSigningLevel Device Guard Bypass Exploit
Exploit for windows platform in category local exploits Windows: LUAFV NtSetCachedSigningLevel Device Guard Bypass Platform: Windows 10 1809 not tested earlier. Note I’ve not tested this on Windows 10 SMode. Class: Security Feature Bypass Summary: The NtSetCachedSigningLevel system call can be...
Eco Search 1.0.2.0 - Denial of Service (PoC)
Exploit Title: Eco Search 1.0.2.0 - Denial of Service PoC Date: 1/18/2018 Author: 0xB9 Twitter: @0xB9Sec Contact: 0xB9atpm.me Software Link: https://www.microsoft.com/store/productId/9N05DCQP5C3W Version: 1.0.2.0 Tested on: Windows 10 Proof of Concept: Run the python script, it will create a new...
JVN#15709478: The installer of Windows10 Fall Creators Update Modify module for Security Measures tool may insecurely load Dynamic Link Libraries
The installer of Windows10 Fall Creators Update Modify module for Security Measures tool provided by NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be execut...
CVE-2018-8442
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows...
Microsoft Internet Explorer 11.371.16299.0 (Windows 10) - Denial Of Service
''' + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-INTERNET-EXPLORER-Win-10-DENIAL-OF-SERVICE.txt + ISR: ApparitionSec Vendor: ======= www.microsoft.com Product: ======== Internet Explorer Windows 10...
System Shield 5.0.0.136 - Privilege Escalation Exploit
Exploit for windows platform in category local exploits / Exploit Title - System Shield AntiVirus & AntiSpyware Arbitrary Write Privilege Escalation Date - 29th January 2018 Discovered by - Parvez Anwar @parvezghh Vendor Homepage - http://www.iolo.com/ Tested Version - 5.0.0.136 Driver Version -...
WordPress Plugin Corner Ad 1.0.7 - Cross-Site Scripting
Vulnerability information Vulnerability title: WordPress Plugin Corner Ad 1.0.7 - Cross-Site Scripting Plugin home page: https://wordpress.org/plugins/corner-ad/ Affected Plugin version: 1.0.7 Test environment: Firefox 44, Windows10 Vulnerability details...
WordPress Corner Ad 1.0.7 Plugin - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: Authorized Stored XSS at WordPress Corner-Ad plugin. Google Dork: inurl:/wp-content/plugins/corner-ad Date: 16-02-17 Exploit Author: Atik Rahman Vendor Homepage: https://wordpress.org/plugins/corner-ad/ Software Link:...
WordPress Userpro Remote File Upload Exploit
This Metasploit module exploits an arbitrary PHP code upload in thewordpress Ifileupload plugin, The vulnerability allows for unauthorization file upload and remote code execution. Exploit Title : Wordpress Userpro Remote File Upload Exploit Author : Ashiyane Digital Security Team Vendor Homepage...
Witbe - Remote Code Execution Exploit
Exploit for cgi platform in category web applications !/usr/bin/python Exploit Title: Witbe RCE Remote Code Execution Exploit Author: BeLmar Date: 05/10/2016 DEMO : https://youtu.be/ooUFXfUfIs0 Contact : email protected Vendor Homepage: http://www.witbe.net Tested on: Windows7/10 & BackBox...
Witbe - Remote Code Execution
Witbe - Remote Code Execution !/usr/bin/python Exploit Title: Witbe RCE Remote Code Execution Exploit Author: BeLmar Date: 05/10/2016 DEMO : https://youtu.be/ooUFXfUfIs0 Contact : [email protected] Vendor Homepage: http://www.witbe.net Tested on: Windows7/10 & BackBox Category: Remote Exploits...
Microsoft Windows10 AHCACHE.SYS Remote Denial Of Service
Summary A denial of service vulnerability exists in the AHCACHE.SYS driver. A specially crafted Portable Executable file can cause a bugcheck in the Windows kernel resulting in remote denial of service. Tested Versions Windows 10, AHCACHE.SYS version 10.0.10586.0 Tested on Windows 10 X86 Product...