Microsoft Windows 10 SMB 3.1.1 Local Privilege Escalation
March 31st, 2020 📆 | 3258 Views ⚑
Microsoft Windows 10 SMB version 3.1.1 SMBGhost local privilege escalation exploit. Source link
Browsing the "privilege" Tag
Tagged with: advisory • CSRF • escalation • exploit • local • microsoft • overflow • privilege • scanner • security • SMB • vulnerability • whitepaper • windows • XSS
Microsoft Windows 10 (1903/1909) – ‘SMBGhost’ SMB3.1.1 ‘SMB2_COMPRESSION_CAPABILITIES’ Local Privilege Escalation
March 31st, 2020 📆 | 4787 Views ⚑
# CVE-2020-0796 Windows SMBv3 LPE Exploit !exploit](https://user-images.githubusercontent.com/1675387/77913732-110d4f80-7295-11ea-9af6-f17201c66673.gif) ## Authors * Daniel García Gutiérrez (@danigargu](https://twitter.com/danigargu)) * Manuel Blanco Parajón (@dialluvioso_](https://twitter.com/dialluvioso_)) ##
Tagged with: capabilities • compression • CVE-2020-0796 • escalation • local • microsoft • privilege • SMB2COMPRESSIONCAPABILITIES • SMB311 • smbghost • windows
HP ThinPro 6.x / 7.x Privilege Escalation ↭
March 26th, 2020 📆 | 4178 Views ⚑
HP ThinPro – Privilege escalation=============================================================================== Identifiers————————————————-* CVE-2019-16287 CVSSv3 score————————————————-6.1 (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N) Vendor————————————————-HP – https://www.hp.com](https://www.hp.com) Product————————————————-Deliver secure desktop virtualization that’s as comfortable
Tagged with: advisory • CSRF • escalation • exploit • overflow • privilege • scanner • security • thinpro • vulnerability • whitepaper • XSS
VMware patches privilege escalation vulnerability in Fusion, Horizon
March 25th, 2020 📆 | 6246 Views ⚑
VMware has resolved two vulnerabilities that could lead to privilege escalation or denial-of-service conditions in a variety of software. On
Tagged with: escalation • fusion • horizon • patches • privilege • vmware • vulnerability
Cisco tackles root privilege vulnerability in SD-WAN software
March 25th, 2020 📆 | 5947 Views ⚑
Cisco has tackled three vulnerabilities in SD-WAN that could be exploited to compromise routers, controller software, and network management systems.
Tagged with: cisco • privilege • root • SDWAN • software • tackles • vulnerability
VMware Fusion 11.5.2 – Privilege Escalation
March 23rd, 2020 📆 | 5665 Views ⚑
# Exploit Title: VMware Fusion 11.5.2 - Privilege Escalation # Date: 2020-03-17 # Exploit Author: Rich Mirch # Vendor Homepage:
Tagged with: CVE-2020-3950 • escalation • fusion • local • macos • privilege • vmware
VMWare Fusion – Local Privilege Escalation
March 23rd, 2020 📆 | 8321 Views ⚑
Local Privilege Escalation via VMWare Fusion Overview: A directory traversal vulnerability in VMware Fusion's SUID binaries can allow an attacker
Tagged with: escalation • fusion • local • macos • privilege • vmware
Avast Secure Browser 76.0.1659.101 Local Privilege Escalation ↭
March 21st, 2020 📆 | 6227 Views ⚑
===== Tempest Security Intelligence – ADV-01/2020]========================== Avast Secure Browser 76.0.1659.101Author: Silton SantosTempest Security Intelligence – Recife, Pernambuco – Brazil =====
Tagged with: advisory • avast • browser • CSRF • escalation • exploit • local • overflow • privilege • scanner • secure • security • vulnerability • whitepaper • XSS
VMware Fusion 11.5.2 Privilege Escalation ↭
March 20th, 2020 📆 | 5719 Views ⚑
# Exploit Title: VMware Fusion 11.5.2 – Privilege Escalation# Date: 2020-03-17# Exploit Author: Rich Mirch# Vendor Homepage: https://www.vmware.com/products/fusion.html# Vendor Advisory:
Tagged with: advisory • CSRF • escalation • exploit • fusion • overflow • privilege • scanner • security • vmware • vulnerability • whitepaper • XSS
VMware Fusion Local Privilege Escalation / Directory Traversal ↭
March 18th, 2020 📆 | 5087 Views ⚑
Local Privilege Escalation via VMWare Fusion Overview:A directory traversal vulnerability in VMware Fusion’s SUID binaries can allowan attacker to run
Tagged with: advisory • CSRF • directory • escalation • exploit • fusion • local • overflow • privilege • scanner • security • traversal • vmware • vulnerability • whitepaper • XSS
ShaderCache Arbitrary File Creation / Privilege Escalation
March 16th, 2020 📆 | 1675 Views ⚑
The shared ShaderCache directory can be exploited to create an arbitrary file on the file system leading to elevation of
Tagged with: advisory • arbitrary • creation • CSRF • escalation • exploit • File • overflow • privilege • scanner • security • shadercache • vulnerability • whitepaper • XSS
ZDI-20-292: Parallels Desktop VGA Out-Of-Bounds Write Privilege Escalation Vulnerability
March 16th, 2020 📆 | 1998 Views ⚑
ZDI-20-292: Parallels Desktop VGA Out-Of-Bounds Write Privilege Escalation Vulnerability Source link
Tagged with: bounds • desktop • escalation • OutofBounds • parallels • privilege • VGA • vulnerability • write • ZDI20292
ZDI-20-294: Parallels Desktop xHCI Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability
March 16th, 2020 📆 | 2104 Views ⚑
ZDI-20-294: Parallels Desktop xHCI Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability Source link
Tagged with: check • desktop • escalation • parallels • privilege • TimeOfCheck • TimeOfUse • vulnerability • xHCI • ZDI20294
ZDI-20-295: Parallels Desktop xHCI Integer Overflow Privilege Escalation Vulnerability
March 15th, 2020 📆 | 6550 Views ⚑
ZDI-20-295: Parallels Desktop xHCI Integer Overflow Privilege Escalation Vulnerability Source link
Tagged with: desktop • escalation • integer • overflow • parallels • privilege • vulnerability • xHCI • ZDI20295
ZDI-20-296: Parallels Desktop OS X Host Kernel Module Out-Of-Bounds Write Privilege Escalation Vulnerability
March 15th, 2020 📆 | 1635 Views ⚑
ZDI-20-296: Parallels Desktop OS X Host Kernel Module Out-Of-Bounds Write Privilege Escalation Vulnerability Source link
Tagged with: bounds • desktop • escalation • host • kernel • module • OutofBounds • parallels • privilege • vulnerability • write • ZDI20296
ZDI-20-298: VMware Workstation vmnetdhcp Use-After-Free Privilege Escalation Vulnerability
March 15th, 2020 📆 | 4955 Views ⚑
ZDI-20-298: VMware Workstation vmnetdhcp Use-After-Free Privilege Escalation Vulnerability Source link
Tagged with: after • escalation • privilege • UseAfterFree • vmnetdhcp • vmware • vulnerability • Workstation • ZDI20298
ZDI-20-299: VMware Workstation Virtual Printer External Control of File Name Privilege Escalation Vulnerability
March 15th, 2020 📆 | 2559 Views ⚑
ZDI-20-299: VMware Workstation Virtual Printer External Control of File Name Privilege Escalation Vulnerability Source link
Tagged with: control • escalation • external • File • printer • privilege • virtual • vmware • vulnerability • Workstation • ZDI20299
OpenSMTPD – OOB Read Local Privilege Escalation (Metasploit)
March 15th, 2020 📆 | 2801 Views ⚑
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Local # smtpd(8) may crash
Tagged with: CVE-2020-8794 • escalation • linux • local • metasploit • OOB • opensmtpd • privilege • read
Microsoft Windows – ‘WizardOpium’ Local Privilege Escalation
March 14th, 2020 📆 | 6735 Views ⚑
*] *]#include #include extern "C" NTSTATUS NtUserMessageCall(HWND hWnd, UINT msg, WPARAM wParam, LPARAM lParam, ULONG_PTR ResultInfo, DWORD dwType, BOOL bAscii);
Tagged with: CVE-2019-1458 • escalation • local • microsoft • privilege • windows • wizardopium
Microsoft Windows WizardOpium Local Privilege Escalation ≈ ↲
March 9th, 2020 📆 | 5119 Views ⚑
*]#include *]#include extern “C” NTSTATUS NtUserMessageCall(HWND hWnd, UINT msg, WPARAM wParam, LPARAM lParam, ULONG_PTR ResultInfo, DWORD dwType, BOOL bAscii); int
Tagged with: advisory • CSRF • escalation • exploit • local • microsoft • overflow • privilege • scanner • security • vulnerability • whitepaper • windows • wizardopium • XSS
Wing FTP Server 6.2.5 – Privilege Escalation
March 6th, 2020 📆 | 4604 Views ⚑
# Exploit Title: Wing FTP Server 6.2.5 - Privilege Escalation # Google Dork: intitle:"Wing FTP Server - Web" # Date:
Tagged with: escalation • FTP • multiple • privilege • server • webapps • Wing
Wing FTP Server 6.2.3 – Privilege Escalation
March 5th, 2020 📆 | 6129 Views ⚑
*] # Exploit Title: Wing FTP Server 6.2.3 - Privilege Escalation # Google Dork: intitle:"Wing FTP Server - Web" #
Tagged with: escalation • FTP • local • privilege • server • windows • Wing
OpenSMTPD Out-Of-Bounds Read / Local Privilege Escalation ≈ ↲
March 5th, 2020 📆 | 2096 Views ⚑
### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework## class MetasploitModule < Msf::Exploit::Local # smtpd(8) may crash on a malformed
Tagged with: advisory • bounds • CSRF • escalation • exploit • local • opensmtpd • OutofBounds • overflow • privilege • read • scanner • security • vulnerability • whitepaper • XSS
Wing FTP Server 6.2.3 Privilege Escalation ≈ ↲
March 2nd, 2020 📆 | 3767 Views ⚑
*]# Exploit Title: Wing FTP Server 6.2.3 – Privilege Escalation*]# Google Dork: intitle:”Wing FTP Server – Web”*]# Date: 2020-03-02*]# Exploit
Tagged with: advisory • CSRF • escalation • exploit • FTP • overflow • privilege • scanner • security • server • vulnerability • whitepaper • Wing • XSS
Popular
Trickbot campaign targets Coronavirus fears in Italy… March 9, 2020 The operators of a Trickbot spam campaign have found a…
Incorporation of Private Limited Company March 10, 2020 Features of Private Limited Company: Separate Legal Existence Annual General…
Liz Crokin Claims Celebrities Are Getting… March 18, 2020 Liz Crokin Claims Celebrities Are Getting Coronavirus From Tainted 'Adrenochrome…
Why the Wawa Data Breach Serves as a Warning That… March 10, 2020 Wawa’s nine-month long network breach resulted in the theft of…
Windows 10 Version 2004 Receives Build 19041.153 (KB4541738) March 13, 2020 Windows 10 Build 19041.153 is available for Windows Insiders in…
Netlink GPON Router 1.0.11 – Remote Code Execution March 23, 2020 # Exploit Title: Netlink GPON Router 1.0.11 - Remote Code…
Voter records for the entire country of Georgia… March 30, 2020 Image via Mostafa Meraji Voter information for more than 4.9…
Comments