The Microsoft Windows kernel suffers from a 64-bit stack memory disclosure vulnerability in NtQueryInformationThread(ThreadBasicInformation).
aec9ca1968214b0e3bca89220158b22cUbuntu Security Notice 3590-1 - It was discovered that Irssi incorrectly handled certain empty nick names. An attacker could possibly use this issue to cause a denial of service. It was discovered that Irssi incorrectly handled certain nick names. An attacker could possibly use this to access sensitive information. It was discovered that Irssi incorrectly handled an increase in the number of windows. An attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.
e0c5ff89c4f84881bb1572d2af1b6fb0Microsoft Windows versions 8.1 and 2012 R2 SMB denial of service exploit.
2bfe01792d14bfc3f8a4bbfad81b0a4cWireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.
2b6f1f37c72fa15a0a1863016a0abcc0This Metasploit module exploits a stack-based buffer overflow vulnerability in Disk Savvy Enterprise version 10.4.18, caused by improper bounds checking of the request sent to the built-in server. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
bfeae1744c34384854bd5326b5010471This Metasploit module exploits a stack-based buffer overflow vulnerability in the CloudMe Sync version 1.10.9 client application. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
41dab942f2886640903e2e9e54f5e2e7NTCrackPipe is a basic local Windows account cracking tool.
8ce40f865cb88712052d4f9ea1c811eaThe 64-bit Windows kernel suffers from a stack memory disclosure vulnerability in win32k!fnHkINLPMSLLHOOKSTRUCT (via user-mode callback).
f2649d29716451a098dfbf661fbfbe0aThe 64-bit Windows kernel suffers from a stack memory disclosure vulnerability in win32k!SfnINLPHELPINFOSTRUCT (via user-mode callback).
27c78eb28b55312aa2809afbc0d3b311The 64-bit Windows kernel suffers from a stack memory disclosure vulnerability in win32k!fnHkINLPMOUSEHOOKSTRUCTEX (via user-mode callback).
51df2fe0cf72e749bba708e2ea83d84aThe 64-bit Windows kernel suffers from a pool memory disclosure vulnerability in win32k!SfnINOUTLPWINDOWPOS (via user-mode callback).
9c567298b0ec80585c4b62f8cb2074d5Windows suffers from a Constrained Impersonation Capability privilege escalation vulnerability.
1f17f321ec2055627ec4f2ce8c689dc4The Windows Kernel suffers from double fetches in win32kfull!xxxImeWindowPosChanged and win32kfull!InternalRebuildHwndListForIMEClass.
cda157a63a505b6dc3e57ec6e5981c51Windows StorSvc SvcMoveFileInheritSecurity suffers from an arbitrary file security descriptor overwrite vulnerability that allows for privilege escalation.
c23ff1030843d4b2a8918b43f35200c0Windows suffers from NPFS Symlink security feature bypass and privilege escalation vulnerabilities.
351a799b32a8be9550b61628f66dea60Windows suffer from Global Reparse Point security feature bypass and privilege escalation vulnerabilities.
84a050a0c09ac8b610c64807057eb756The Windows kernel suffers from a nt!RtlpCopyLegacyContextX86 stack memory disclosure vulnerability.
377dfc9711b87f3d2d74deede52a59efMozilla's executable installers are vulnerable to dll hijacking.
8915a3fa0d07a20bdf3b322c2c1e4179Whitepaper called Zero Day Zen Garden: Windows Exploit Development Part 5 [Return Oriented Programming Chains].
3e997bff18215da9f06ce4af9ce36ef1Advantech WebAccess Node version 8.3.0 suffers from an AspVBObj.dll code execution dll hijacking vulnerability.
d399329ffa7fecc776e24fe1316f6ea9Microsoft's Skype home-grown updater suffers from a dll hijacking vulnerability.
e378e1abd2417b24f1e060626ed42449Microsoft Windows Subsystem for Linux execve() local privilege escalation exploit.
0903b2d21e77a9343b434798a05ca282Sourcetree for macOS versions 1.0b2 up to 2.7.0 and Sourcetree for Windows versions 0.5.1.0 up to 2.4.7.0 suffers from multiple command injection vulnerabilities.
b6f6d427c28112f1184e24193c496c12This Metasploit module exploits a weak access control check in the BMC Server Automation RSCD agent that allows arbitrary operating system commands to be executed without authentication. Note: Under Windows, non-powershell commands may need to be prefixed with 'cmd /c'.
21c820bdd8fcc8d4555e107c87aa2da7BMC BladeLogic RSCD Agent version 8.3.00.64 suffers from a windows users disclosure vulnerability.
9a5bc055f019f7c0dbca70e7a76dd801
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed