exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 6 of 6 RSS Feed

Files from Silton Santos

First Active2018-08-08
Last Active2022-10-01
ZKSecurity BIO 3.0.5.0_R Privilege Escalation
Posted Oct 1, 2022
Authored by Silton Santos, Caio Burgardt

ZKSecurity BIO version 3.0.5.0_R suffers from a privilege escalation vulnerability.

tags | exploit
advisories | CVE-2022-36634
SHA-256 | b6d43dcace9b3768b3e0de50fde36243efa24ef1737964b40fee68c99c229b39
ZKSecurity BIO 4.1.2 SQL Injection / Code Execution
Posted Oct 1, 2022
Authored by Silton Santos, Caio Burgardt

ZKSecurity BIO version 4.1.2 suffers from a remote SQL injection vulnerability that can allow for remote code execution.

tags | exploit, remote, code execution, sql injection
advisories | CVE-2022-36635
SHA-256 | 2f5ddba7cf7e3024ddc6ad5a39968b8c149a652831c65c828f1565ea29f0e84d
Avast Secure Browser 76.0.1659.101 Local Privilege Escalation
Posted Mar 21, 2020
Authored by Silton Santos

A local privilege escalation issue was discovered in Avast Secure Browser version 76.0.1659.101. The vulnerability is due to an insecure ACL set by the AvastBrowserUpdate.exe (which is running as NT AUTHORITY\SYSTEM) when AvastSecureBrowser.exe checks for new updates.

tags | advisory, local
advisories | CVE-2019-17190
SHA-256 | c3807d4734d35255ec28f3968e435a787e351216fcadf4013c873c8d1ea9df67
Trend Maximum Security 2019 Unquoted Search Path
Posted Aug 24, 2019
Authored by Silton Santos

Trend Maximum Security 2019 suffers from an unquoted search path vulnerability. This application provides an unquoted path in the parameter lpApplicationName of the function CreateProcessW during process create PwmConsole.exe --- which is triggered from the feature PC Health Checkup. If an attacker has write permissions to C:\ or C:\Program Files\, it could deliver an arbitrary executable named Program.exe or Trend.exe which would be executed by the coreServiceShell process. coreServiceShell is a privileged process that will run Program.exe with same privilege.

tags | advisory, arbitrary
advisories | CVE-2019-14685
SHA-256 | 52269680ae8182e23a23e0158bbab33cb0478d44d1cb16eba85bdedcdf6abff8
Avira Free Security Suite 2019 Software Updater 2.0.6.13175 Improper Access Control
Posted Aug 4, 2019
Authored by Silton Santos

Avira Free Security Suite 2019 Software Updater version 2.0.6.13175 suffers from an improper access control that allows for arbitrary file write that can allow an unprivileged user to obtain SYSTEM privileges.

tags | advisory, arbitrary
advisories | CVE-2019-11396
SHA-256 | 69fdf1c757c972b00a6ac38b381268805e095c1577ed18107e11edadd414cc65
Responsive File Manager 9.13.1 File Disclosure
Posted Aug 8, 2018
Authored by Silton Santos

Responsive File Manager 9.13.1 suffers from a file disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | a0598e0befd3209a3e660c506e8f28daba34f7c66b0a9530ad9b38a5c5b76222
Page 1 of 1
Back1Next

File Archive:

February 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    11 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    5 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    0 Files
  • 6
    Feb 6th
    0 Files
  • 7
    Feb 7th
    0 Files
  • 8
    Feb 8th
    0 Files
  • 9
    Feb 9th
    0 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    0 Files
  • 13
    Feb 13th
    0 Files
  • 14
    Feb 14th
    0 Files
  • 15
    Feb 15th
    0 Files
  • 16
    Feb 16th
    0 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close