|
2017-07-07
|
|
Counter Strike: Condition Zero - '.BSP' Map File Code Execution
|
35 |
LOCAL
|
Grant Hernandez
|
|
2017-07-13
|
|
CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation
|
28 |
LOCAL
|
geoda
|
|
2017-07-10
|
|
Pelco VideoXpert 1.12.105 - Local Privilege Escalation
|
25 |
LOCAL
|
LiquidWorm
|
|
2017-07-10
|
|
NfSen < 1.3.7 / AlienVault OSSIM < 5.3.6 - Local Privilege Escalation
|
30 |
LOCAL
|
Paul Taylor
|
|
2017-06-28
|
|
Linux Kernel (Debian 9/10 / Ubuntu 14.04.5/16.04.2/17.04 / Fedora 23/24/25) - 'ldso_dynamic Stack Cl
|
40 |
LOCAL
|
Qualys Corporation
|
|
2017-06-28
|
|
Linux Kernel (Debian 7.7/8.5/9.0 / Ubuntu 14.04.2/16.04.2/17.04 / Fedora 22/25 / CentOS 7.3.1611) -
|
36 |
LOCAL
|
Qualys Corporation
|
|
2017-06-28
|
|
Linux Kernel (Debian 7/8/9/10 / Fedora 23/24/25 / CentOS 5.3/5.11/6.0/6.8/7.2.1511) - 'ldso_hwcap St
|
32 |
LOCAL
|
Qualys Corporation
|
|
2017-06-28
|
|
Linux Kernel - 'offset2lib' Stack Clash
|
30 |
LOCAL
|
Qualys Corporation
|
|
2017-06-28
|
|
OpenBSD - 'at Stack Clash' Local Privilege Escalation
|
28 |
LOCAL
|
Qualys Corporation
|
|
2017-06-28
|
|
Oracle Solaris 11.1/11.3 (RSH) - 'Stack Clash' Local Privilege Escalation
|
36 |
LOCAL
|
Qualys Corporation
|
|
2017-06-28
|
|
Easy File Sharing Web Server 7.2 - Account Import Local Buffer Overflow (SEH)
|
29 |
LOCAL
|
Chako
|
|
2017-06-28
|
|
Flat Assembler 1.7.21 - Local Buffer Overflow
|
30 |
LOCAL
|
Juan Sacco
|
|
2017-06-26
|
|
JAD Java Decompiler 1.5.8e - Local Buffer Overflow (NX Enabled)
|
31 |
LOCAL
|
Juan Sacco
|
|
2017-06-14
|
|
Sudo 1.8.20 - 'get_process_ttyname()' Local Privilege Escalation
|
28 |
LOCAL
|
Qualys Corporation
|
|
2017-06-15
|
|
VX Search Enterprise 9.7.18 - Local Buffer Overflow
|
31 |
LOCAL
|
ScrR1pTK1dd13
|
|
2017-06-13
|
|
Easy MOV Converter 1.4.24 - 'Enter User Name' Local Buffer Overflow (SEH)
|
29 |
LOCAL
|
abatchy17
|
|
2017-06-12
|
|
Disk Pulse 9.7.26 - 'Add Directory' Local Buffer Overflow
|
32 |
LOCAL
|
abatchy17
|
|
2017-06-11
|
|
Sync Breeze 9.7.26 - 'Add Exclude Directory' Local Buffer Overflow
|
30 |
LOCAL
|
abatchy17
|
|
2017-06-11
|
|
DiskBoss 8.0.16 - 'Input Directory' Local Buffer Overflow
|
27 |
LOCAL
|
abatchy17
|
|
2017-06-10
|
|
Disk Sorter 9.7.14 - 'Input Directory' Local Buffer Overflow
|
28 |
LOCAL
|
abatchy17
|
|
2017-06-09
|
|
Apple macOS - Disk Arbitration Daemon Race Condition
|
26 |
LOCAL
|
phoenhex
|
|
2017-06-09
|
|
Apple macOS 10.12.3 / iOS < 10.3.2 - Userspace Entitlement Checking Race Condition
|
27 |
LOCAL
|
Google Security Research
|
|
2017-06-08
|
|
Microsoft Windows - UAC Protection Bypass via FodHelper Registry Key (Metasploit)
|
31 |
LOCAL
|
Metasploit
|
|
2017-06-08
|
|
Microsoft Windows - UAC Protection Bypass via FodHelper Registry Key (Metasploit)
|
24 |
LOCAL
|
Metasploit
|
|
2017-06-08
|
|
Net Monitor for Employees Pro < 5.3.4 - Unquoted Service Path Privilege Escalation
|
26 |
LOCAL
|
Saeid Atabaki
|
|
2017-06-05
|
|
BIND 9.10.5 - Unquoted Service Path Privilege Escalation
|
26 |
LOCAL
|
hyp3rlinx
|
|
2017-06-05
|
|
Subsonic 6.1.1 - XML External Entity Injection
|
26 |
LOCAL
|
hyp3rlinx
|
|
2017-06-05
|
|
Parallels Desktop - Virtual Machine Escape
|
29 |
LOCAL
|
Mohammad Reza Espargham
|
|
2017-05-30
|
|
TiEmu 2.08 - Local Buffer Overflow
|
26 |
LOCAL
|
Juan Sacco
|
|
2017-05-26
|
|
Microsoft MsMpEng - Multiple Problems Handling ntdll!NtControlChannel Commands
|
28 |
LOCAL
|
Google Security Research
|
|
2017-05-26
|
|
JAD Java Decompiler 1.5.8e - Local Buffer Overflow
|
26 |
LOCAL
|
Juan Sacco
|
|
2017-05-24
|
|
Dup Scout Enterprise 9.7.18 - '.xml' Local Buffer Overflow
|
30 |
LOCAL
|
ScrR1pTK1dd13
|
|
2017-05-18
|
|
KDE 4/5 - 'KAuth' Local Privilege Escalation
|
36 |
LOCAL
|
Stealth
|
|
2017-05-22
|
|
VMware Workstation for Linux 12.5.2 build-4638234 - ALSA Configuration Host Local Privilege Escalati
|
27 |
LOCAL
|
Google Security Research
|
|
2017-05-17
|
|
Microsoft Windows - COM Aggregate Marshaler/IRemUnknown2 Type Confusion Privilege Escalation
|
32 |
LOCAL
|
Google Security Research
|
|
2017-05-12
|
|
Dive Assistant Template Builder 8.0 - XML External Entity Injection
|
29 |
LOCAL
|
Trent Gordon
|
|
2016-02-22
|
|
Linux Kernel 3.x (Ubuntu 14.04 / Mint 17.3 / Fedora 22) - Double-free usb-midi SMEP Privilege Escala
|
34 |
LOCAL
|
Andrey Konovalov
|
|
2017-03-22
|
|
Linux Kernel 3.11 < 4.8 0 - 'SO_SNDBUFFORCE' / 'SO_RCVBUFFORCE' Local Privilege Escalation
|
29 |
LOCAL
|
Andrey Konovalov
|
|
2017-05-11
|
|
Linux Kernel 4.8.0-41-generic (Ubuntu) - Packet Socket Local Privilege Escalation
|
29 |
LOCAL
|
Andrey Konovalov
|
|
2017-05-08
|
|
Xen 64bit PV Guest - pagetable use-after-type-change Breakout
|
34 |
LOCAL
|
Google Security Research
|
|
2017-05-08
|
|
Gemalto SmartDiag Diagnosis Tool < 2.5 - Local Buffer Overflow (SEH)
|
28 |
LOCAL
|
Majid Alqabandi
|
|
2017-05-08
|
|
MediaCoder 0.8.48.5888 - Local Buffer Overflow (SEH)
|
36 |
LOCAL
|
Muhann4d
|
|
2017-05-03
|
|
Serviio PRO 1.8 DLNA Media Streaming Server - Local Privilege Escalation
|
34 |
LOCAL
|
LiquidWorm
|
|
2017-05-02
|
|
Ghostscript 9.21 - Type Confusion Arbitrary Command Execution (Metasploit)
|
32 |
LOCAL
|
Metasploit
|
|
2017-05-02
|
|
Ghostscript 9.21 - Type Confusion Arbitrary Command Execution (Metasploit)
|
34 |
LOCAL
|
Metasploit
|
|
2017-05-01
|
|
HideMyAss Pro VPN Client for macOS 3.x - Local Privilege Escalation
|
41 |
LOCAL
|
Han Sahin
|
|
2017-05-01
|
|
HideMyAss Pro VPN Client for OS X 2.2.7.0 - Local Privilege Escalation
|
36 |
LOCAL
|
Han Sahin
|
|
2017-04-25
|
|
Realtek Audio Driver 6.0.1.7898 (Windows 10) - Dolby Audio X2 Service Privilege Escalation
|
33 |
LOCAL
|
Google Security Research
|
|
2017-04-25
|
|
LightDM (Ubuntu 16.04/16.10) - 'Guest Account' Local Privilege Escalation
|
38 |
LOCAL
|
G. Geshev
|
|
2017-04-25
|
|
Dell Customer Connect 1.3.28.0 - Local Privilege Escalation
|
26 |
LOCAL
|
Kacper Szurek
|
|
2017-04-20
|
|
Oracle VM VirtualBox 5.0.32 r112930 (x64) - Windows Process COM Injection Privilege Escalation
|
25 |
LOCAL
|
Google Security Research
|
|
2017-04-20
|
|
Oracle VM VirtualBox 5.1.14 r112924 - Unprivileged Host User to Host Kernel Privilege Escalation via
|
27 |
LOCAL
|
Google Security Research
|
|
2017-04-20
|
|
Oracle VM VirtualBox - Guest-to-Host Privilege Escalation via Broken Length Handling in slirp Copy
|
30 |
LOCAL
|
Google Security Research
|
|
2017-04-20
|
|
Microsoft Windows 10 - Runtime Broker ClipboardBroker Privilege Escalation
|
32 |
LOCAL
|
Google Security Research
|
|
2017-04-20
|
|
Microsoft Windows 10 (Build 10586) - 'IEETWCollector' Arbitrary Directory/File Deletion Privilege Es
|
30 |
LOCAL
|
Google Security Research
|
|
2017-04-14
|
|
VirusChaser 8.0 - Local Buffer Overflow (SEH)
|
26 |
LOCAL
|
0x41Li
|
|
2017-04-15
|
|
Linux Kernel 4.8.0 UDEV < 232 - Local Privilege Escalation
|
30 |
LOCAL
|
Nassim Asrir
|
|
2017-04-13
|
|
Adobe Creative Cloud Desktop Application < 4.0.0.185 - Local Privilege Escalation
|
26 |
LOCAL
|
hyp3rlinx
|
|
2017-04-02
|
|
Linux Kernel (PonyOS 4.0) - 'fluttershy' LD_LIBRARY_PATH Local Privilege Escalation
|
25 |
LOCAL
|
Hacker Fantastic
|
|
2017-04-13
|
|
GNS3 Mac OS-X 1.5.2 - 'ubridge' Local Privilege Escalation
|
28 |
LOCAL
|
Hacker Fantastic
|
|
2017-04-12
|
|
Solaris 7 < 11 (SPARC/x86) - 'EXTREMEPARR' dtappgather Privilege Escalation
|
25 |
LOCAL
|
Hacker Fantastic
|
|
2017-04-11
|
|
Xen - Broken Check in 'memory_exchange()' Permits PV Guest Breakout
|
28 |
LOCAL
|
Google Security Research
|
|
2017-04-11
|
|
Proxifier for Mac 2.17/2.18 - Privesc Escalation
|
29 |
LOCAL
|
Mark Wadham
|
|
2017-04-11
|
|
Proxifier for Mac 2.18 - Multiple Vulnerabilities
|
29 |
LOCAL
|
Securify
|
|
2017-04-04
|
|
Apple macOS/iOS Kernel 10.12.3 (16D32) - Double-Free Due to Bad Locking in fsevents Device
|
34 |
LOCAL
|
Google Security Research
|
|
2017-04-03
|
|
Bluecoat ASG 6.6/CAS 1.3 - Local Privilege Escalation (Metasploit)
|
27 |
LOCAL
|
Chris Hebert
|
|
2017-03-29
|
|
Sync Breeze Enterprise 9.5.16 - 'Import Command' Local Buffer Overflow
|
26 |
LOCAL
|
Daniel Teixeira
|
|
2017-03-29
|
|
DiskBoss Enterprise 7.8.16 - 'Import Command' Local Buffer Overflow
|
27 |
LOCAL
|
Daniel Teixeira
|
|
2017-03-29
|
|
Disk Sorter Enterprise 9.5.12 - 'Import Command' Local Buffer Overflow
|
29 |
LOCAL
|
Daniel Teixeira
|
|
2011-01-17
|
|
Linux Kernel 2.6.32 (Ubuntu 10.04) - '/proc' Handling SUID Privilege Escalation
|
30 |
LOCAL
|
halfdog
|
|
2012-10-19
|
|
Vm86 - Syscall Task Switch Kernel Panic Denial of Service / Privilege Escalation
|
25 |
LOCAL
|
halfdog
|
|
2015-03-12
|
|
Ubuntu 15.04 (Development) - 'Upstart' Logrotation Privilege Escalation
|
47 |
LOCAL
|
halfdog
|
|
2016-01-21
|
|
NTP - Local Privilege Escalation
|
27 |
LOCAL
|
halfdog
|
|
2016-11-22
|
|
Ubuntu 15.10 - 'USERNS ' Overlayfs Over Fuse Privilege Escalation
|
28 |
LOCAL
|
halfdog
|
|
2016-11-22
|
|
Ubuntu 14.04/15.10 - User Namespace Overlayfs Xattr SetGID Privilege Escalation
|
24 |
LOCAL
|
halfdog
|
|
2016-02-19
|
|
AUFS (Ubuntu 15.10) - 'allow_userns' Fuse/Xattr User Namespaces Privilege Escalation
|
24 |
LOCAL
|
halfdog
|
|
2016-02-22
|
|
Ubuntu < 15.10 - PT Chown Arbitrary PTs Access Via User Namespace Privilege Escalation
|
29 |
LOCAL
|
halfdog
|
|
2017-03-28
|
|
Intermec PM43 Industrial Printer - Local Privilege Escalation
|
26 |
LOCAL
|
Jean-Marie Bourbon
|
|
2017-03-27
|
|
QNAP QTS < 4.2.4 - Domain Privilege Escalation
|
26 |
LOCAL
|
Pasquale Fiorillo
|
|
2017-03-25
|
|
Fortinet FortiClient 5.2.3 (Windows 10 x64 Post-Anniversary) - Local Privilege Escalation
|
33 |
LOCAL
|
sickness
|
|
2017-03-25
|
|
Fortinet FortiClient 5.2.3 (Windows 10 x64 Pre-Anniversary) - Local Privilege Escalation
|
27 |
LOCAL
|
sickness
|
|
2013-02-02
|
|
CADA 3S CoDeSys Gateway Server - Directory Traversal (Metasploit)
|
26 |
LOCAL
|
Metasploit
|
|
2016-08-06
|
|
VMware Host Guest Client Redirector - DLL Side Loading (Metasploit)
|
23 |
LOCAL
|
Metasploit
|
|
2012-08-29
|
|
HP Intelligent Management Center < 5.0 E0102 - UAM Buffer Overflow (Metasploit)
|
27 |
LOCAL
|
Metasploit
|
|
2013-01-31
|
|
Firebird - Relational Database CNCT Group Number Buffer Overflow (Metasploit)
|
25 |
LOCAL
|
Metasploit
|
|
2015-04-12
|
|
Lenovo System Update - Local Privilege Escalation (Metasploit)
|
28 |
LOCAL
|
Metasploit
|
|
2011-07-25
|
|
CA Arcserve D2D - GWT RPC Credential Information Disclosure (Metasploit)
|
24 |
LOCAL
|
Metasploit
|
|
2015-12-08
|
|
Microsoft Office - OLE Multiple DLL Side Loading Vulnerabilities (MS15-132/MS16-014/MS16-025/MS16-04
|
27 |
LOCAL
|
Metasploit
|
|
2017-03-11
|
|
Fortinet FortiClient 5.2.3 (Windows 10 x86) - Local Privilege Escalation
|
29 |
LOCAL
|
sickness
|
|
2011-02-27
|
|
EMC Replication Manager < 5.3 - Command Execution (Metasploit)
|
28 |
LOCAL
|
Metasploit
|
|
2013-03-12
|
|
Microsoft Silverlight - ScriptObject Unsafe Memory Access (MS13-022/MS13-087) (Metasploit)
|
30 |
LOCAL
|
Metasploit
|
|
2014-12-16
|
|
Malwarebytes Anti-Malware < 2.0.3 / Anti-Exploit < 1.03.1.1220 - Update Code Execution (Metasploit)
|
31 |
LOCAL
|
Metasploit
|
|
2010-04-09
|
|
Sun Java Web Start Plugin - Command Line Argument Injection (Metasploit)
|
33 |
LOCAL
|
Metasploit
|
|
2013-01-08
|
|
Mozilla Firefox < 17.0.1 - Flash Privileged Code Injection (Metasploit)
|
29 |
LOCAL
|
Metasploit
|
|
2012-12-21
|
|
Google Android 4.2 Browser and WebView - 'addJavascriptInterface' Code Execution (Metasploit)
|
40 |
LOCAL
|
Metasploit
|
|
2017-03-16
|
|
Microsoft Windows DVD Maker 6.1.7 - XML External Entity Injection
|
28 |
LOCAL
|
hyp3rlinx
|
|
2017-03-15
|
|
Microsoft Windows - COM Session Moniker Privilege Escalation (MS17-012)
|
40 |
LOCAL
|
Google Security Research
|
|
2017-03-15
|
|
PCAUSA Rawether (ASUS PCE-AC56 WLAN Card Utilities Windows 10 x64) - Local Privilege Escalation
|
31 |
LOCAL
|
ReWolf
|
|
2017-03-13
|
|
Oracle VM VirtualBox - Cooperating VMs can Escape from Shared Folder
|
26 |
LOCAL
|
Google Security Research
|
|
2017-03-07
|
|
USBPcap 1.1.0.0 (WireShark 2.2.5) - Local Privilege Escalation
|
28 |
LOCAL
|
Parvez Anwar
|
|
2017-03-06
|
|
CyberGhost 6.0.4.2205 - Local Privilege Escalation
|
24 |
LOCAL
|
Kacper Szurek
|
|
2017-02-28
|
|
Cisco AnyConnect Secure Mobility Client 4.3.04027 - Local Privilege Escalation
|
32 |
LOCAL
|
Pcchillin
|
|
2017-02-26
|
|
Linux Kernel 4.4.0 (Ubuntu) - DCCP Double-Free Privilege Escalation
|
38 |
LOCAL
|
Andrey Konovalov
|
|
2016-12-26
|
|
Shutter 0.93.1 - Code Execution
|
33 |
LOCAL
|
Prajith
|
|
2017-02-14
|
|
ntfs-3g - Unsanitized modprobe Environment Privilege Escalation
|
32 |
LOCAL
|
Google Security Research
|
|
2017-02-14
|
|
ShadeYouVPN Client 2.0.1.11 - Local Privilege Escalation
|
25 |
LOCAL
|
Kacper Szurek
|
|
2017-02-12
|
|
Cimetrics BACnet Explorer 4.0 - XML External Entity Injection
|
27 |
LOCAL
|
LiquidWorm
|
|
2017-02-12
|
|
Cimetrics BACstac 6.2f - Local Privilege Escalation
|
29 |
LOCAL
|
LiquidWorm
|
|
2017-02-06
|
|
IVPN Client 2.6.1 - Local Privilege Escalation
|
32 |
LOCAL
|
Kacper Szurek
|
|
2017-02-03
|
|
ntfs-3g (Debian 9) - Local Privilege Escalation
|
25 |
LOCAL
|
Kristian Erik Hermansen
|
|
2017-02-02
|
|
Ghostscript 9.20 - 'Filename' Command Execution
|
28 |
LOCAL
|
hyp3rlinx
|
|
2017-02-01
|
|
Google Android - RKP EL1 Code Loading Bypass
|
31 |
LOCAL
|
Google Security Research
|
|
2017-01-31
|
|
Viscosity 1.6.7 - Local Privilege Escalation
|
26 |
LOCAL
|
Kacper Szurek
|
|
2017-01-27
|
|
Oracle VM VirtualBox < 5.0.32 / < 5.1.14 - Local Privilege Escalation
|
25 |
LOCAL
|
Wolfgang Hotwagner
|
|
2017-01-26
|
|
Palo Alto Networks Terminal Services Agent 7.0.3-13 - Integer Overflow
|
30 |
LOCAL
|
Parvez Anwar
|
|
2017-01-26
|
|
OpenSSH 6.8 < 6.9 - 'PTY' Local Privilege Escalation
|
26 |
LOCAL
|
Federico Bento
|
|
2017-01-24
|
|
Systemd 228 (SUSE 12 SP2 / Ubuntu Touch 15.04) - Local Privilege Escalation
|
28 |
LOCAL
|
Sebastian Krahmer
|
|
2015-12-02
|
|
Man-db 2.6.7.1 - Local Privilege Escalation
|
24 |
LOCAL
|
halfdog
|
|
2017-01-25
|
|
GNU Screen 4.5.0 - Local Privilege Escalation
|
28 |
LOCAL
|
Xiphos Research Ltd
|
|
2017-01-24
|
|
GNU Screen 4.5.0 - Local Privilege Escalation (PoC)
|
28 |
LOCAL
|
Donald Buczek
|
|
2017-01-23
|
|
Microsoft Remote Desktop Client for Mac 8.0.36 - Code Execution
|
26 |
LOCAL
|
Filippo Cavallarin
|
|
2017-01-21
|
|
Microsoft Power Point 2016 - Java Code Execution
|
29 |
LOCAL
|
Fady Mohammed Osman
|
|
2017-01-19
|
|
Google Android TSP sysfs - 'cmd_store' Multiple Overflows
|
33 |
LOCAL
|
Google Security Research
|
|
2017-01-18
|
|
SentryHD 02.01.12e - Local Privilege Escalation
|
25 |
LOCAL
|
Kacper Szurek
|
|
2017-01-16
|
|
iSelect v1.4 - Local Buffer Overflow
|
24 |
LOCAL
|
Juan Sacco
|
