EUVD-2020-3445

Malware in sbrugna...

Facebook osquery elevation of privilege vulnerability

Facebook osquery is a SQL-based, open-source operating system detection and monitoring framework from Facebook Inc. in the United States. An elevation of privilege vulnerability exists in Facebook osquery versions prior to 4.4.0. The vulnerability stems from the fact that when a Windows system is...

CVE-2020-11081

osquery before version 4.4.0 enables a privilege escalation vulnerability. If a Window system is configured with a PATH that contains a user-writable directory then a local user may write a zlib1.dll DLL, which osquery will attempt to load. Since osquery runs with elevated privileges this enables...

Privilege escalation

osquery before version 4.4.0 enables a privilege escalation vulnerability. If a Window system is configured with a PATH that contains a user-writable directory then a local user may write a zlib1.dll DLL, which osquery will attempt to load. Since osquery runs with elevated privileges this enables...

CVE-2020-11081

The vulnerability CVE-2020-11081 affects osquery prior to 4.4.0 on Windows. If PATH includes a user-writable directory, a local attacker can place a malicious zlib1.dll that osquery will load, enabling local privilege escalation because osquery runs with elevated privileges. Affected software: os...

CVE-2020-11081 osquery susceptible to DLL search order hijacking of zlib1.dll

osquery before version 4.4.0 enables a privilege escalation vulnerability. If a Window system is configured with a PATH that contains a user-writable directory then a local user may write a zlib1.dll DLL, which osquery will attempt to load. Since osquery runs with elevated privileges this enables...

PT-2020-12538 · Facebook · Osquery

Name of the Vulnerable Software and Affected Versions: osquery versions prior to 4.4.0 Description: The issue allows for a privilege escalation. If a Windows system has a PATH containing a user-writable directory, a local user can create a zlib1.dll DLL that osquery will attempt to load, enabling...

Vulnerable DLLs distributed with Terratec HomeCinema 6.3

Once again a sad story of poor software "engineering", missing QA and a TOTALLY unresponsive vendor. The current version 6.3 of Terratec's TV software HomeCinema http://ftp.terratec.de/Receiver/TerraTecHomeCinema/TerraTecHomeCinema6.3.exe from 2009-05-05 installs outdated and vulnerable .DLLs the...

XBMC 8.10 - GET Remote Buffer Overflow (SEH) (Universal)

XBMC 8.10 - GET Remote Buffer Overflow SEH Universal !/usr/bin/env python ''' Xbmc get request remote buffer overflow 8.10 sehUniversal address!! Tested:Win xp sp2 eng Win vista sp1 Vendor url:http://xbmc.org/ Release date:April the 4th 2009 versions affected: windows all versions. I had tried...