|
2017-05-18
|
|
Microsoft Windows - COM Aggregate Marshaler/IRemUnknown2 Type Confusion Privilege Escalation
|
252 |
LOCAL
|
Google Security Research
|
|
2017-05-15
|
|
Linux Kernel 3.x (Ubuntu 14.04 / Mint 17.3 / Fedora 22) - Double-free usb-midi SMEP Local Privilege
|
224 |
LOCAL
|
Andrey Konovalov
|
|
2017-05-15
|
|
Linux Kernel 3.11 < 4.8 0 - 'SO_SNDBUFFORCE' & 'SO_RCVBUFFORCE' Local Privilege Escalation
|
227 |
LOCAL
|
Andrey Konovalov
|
|
2017-05-12
|
|
Linux Kernel 4.8.0 - Packet Socket Local root Privilege Escalation
|
209 |
LOCAL
|
Andrey Konovalov
|
|
2017-05-09
|
|
Gemalto SmartDiag Diagnosis Tool < 2.5 - Buffer Overflow (SEH)
|
177 |
LOCAL
|
Majid Alqabandi
|
|
2017-05-05
|
|
Ghostscript 9.21 - Type Confusion Arbitrary Command Execution (Metasploit)
|
118 |
LOCAL
|
hdm
|
|
2017-04-26
|
|
LightDM (Ubuntu 16.04/16.10) - Guest Account Local Privilege Escalation
|
201 |
LOCAL
|
G. Geshev
|
|
2017-04-26
|
|
Dell Customer Connect 1.3.28.0 - Privilege Escalation
|
122 |
LOCAL
|
Kacper Szurek
|
|
2017-04-25
|
|
Gnome Keyring Daemon Credential Disclosure
|
104 |
LOCAL
|
Luca Ercoli
|
|
2017-04-21
|
|
VirtualBox 5.1.14 r112924 - Unprivileged Host User to Host Kernel Privilege Escalation via ALSA conf
|
93 |
LOCAL
|
Google Security Research
|
|
2017-04-21
|
|
Microsoft Windows 10 10586 - IEETWCollector Arbitrary Directory/File Deletion Privilege Escalation
|
171 |
LOCAL
|
Google Security Research
|
|
2017-04-19
|
|
VirtualBox Unprivilege Host User To Host Kernel Privilege Escalation
|
214 |
LOCAL
|
jannh
|
|
2017-04-19
|
|
Microsoft Windows taskschd.msc Privilege Escalation
|
120 |
LOCAL
|
Todor Donev
|
|
2017-04-18
|
|
VirusChaser 8.0 - Buffer Overflow (SEH)
|
88 |
LOCAL
|
0x41Li
|
|
2017-04-18
|
|
Linux Kernel 4.8.0 UDEV < 232 - Privilege Escalation
|
115 |
LOCAL
|
Nassim Asrir
|
|
2017-04-14
|
|
PonyOS 4.0 - 'fluttershy' LD_LIBRARY_PATH Local Kernel Exploit
|
103 |
LOCAL
|
Hacker Fantastic
|
|
2017-04-13
|
|
GNS3 Mac OS-X 1.5.2 - 'ubridge' Privilege Escalation
|
186 |
LOCAL
|
Hacker Fantastic
|
|
2017-04-13
|
|
Solaris 7 - 11 (x86 & SPARC) - 'EXTREMEPARR' dtappgather Privilege Escalation
|
107 |
LOCAL
|
Hacker Fantastic
|
|
2017-04-13
|
|
Adobe Creative Cloud Desktop Application 4.0.0.185 Privilege Escalation
|
119 |
LOCAL
|
hyp3rlinx
|
|
2017-04-13
|
|
Proxifier 2.19 Privilege Escalation / Code Execution
|
104 |
LOCAL
|
Mark Wadham
|
|
2017-04-12
|
|
Proxifier for Mac 2.17 / 2.18 - Privesc Escalation
|
175 |
LOCAL
|
Mark Wadham
|
|
2017-03-30
|
|
Sync Breeze Enterprise 9.5.16 - 'Import Command' Buffer Overflow
|
135 |
LOCAL
|
Daniel Teixeira
|
|
2017-03-30
|
|
DiskBoss Enterprise 7.8.16 - 'Import Command' Buffer Overflow
|
119 |
LOCAL
|
Daniel Teixeira
|
|
2017-03-30
|
|
Disk Sorter Enterprise 9.5.12 - 'Import Command' Buffer Overflow
|
150 |
LOCAL
|
Daniel Teixeira
|
|
2017-03-29
|
|
Intermec PM43 Industrial Printer - Privilege Escalation
|
189 |
LOCAL
|
Jean-Marie Bourbon
|
|
2017-03-28
|
|
QNAP QTS < 4.2.4 - Domain Privilege Escalation
|
137 |
LOCAL
|
Pasquale Fiorillo
|
|
2017-03-27
|
|
Forticlient 5.2.3 Windows 10 x64 (Post Anniversary) - Privilege Escalation
|
228 |
LOCAL
|
sickness
|
|
2017-03-27
|
|
Forticlient 5.2.3 Windows 10 x64 (Pre Anniversary) - Privilege Escalation
|
181 |
LOCAL
|
sickness
|
|
2017-03-27
|
|
VMware Host Guest Client Redirector - DLL Side Loading Exploit
|
180 |
LOCAL
|
Yorick Koster
|
|
2017-03-20
|
|
Windows DVD Maker 6.1.7 - XML External Entity Injection
|
112 |
LOCAL
|
hyp3rlinx
|
|
2017-03-16
|
|
Microsoft Windows - COM Session Moniker Privilege Escalation (MS17-012)
|
163 |
LOCAL
|
Google Security Research
|
|
2017-03-09
|
|
USBPcap - Privilege Escalation
|
214 |
LOCAL
|
Parvez Anwar
|
|
2017-03-07
|
|
CyberGhost 6.0.4.2205 - Privilege Escalation
|
342 |
LOCAL
|
Kacper Szurek
|
|
2017-03-01
|
|
Cisco AnyConnect Secure Mobility Client 4.3.04027 - Privilege Escalation
|
256 |
LOCAL
|
Pcchillin
|
|
2017-02-15
|
|
ShadeYouVPN Client 2.0.1.11 - Privilege Escalation
|
208 |
LOCAL
|
Kacper Szurek
|
|
2017-02-09
|
|
GNU / Bash v4.4 autocompletion Code Execution Vulnerability
|
147 |
LOCAL
|
Jens Heyens
|
|
2017-02-08
|
|
Zoom Player 12.7 / 13 Buffer Overflow
|
212 |
LOCAL
|
sultan
|
|
2017-02-07
|
|
IVPN Client 2.6.1 - Privilege Escalation
|
135 |
LOCAL
|
Kacper Szurek
|
|
2017-02-04
|
|
Debian 9 ntfs-3g - Privilege Escalation
|
319 |
LOCAL
|
Kristian Erik Hermansen
|
|
2017-02-03
|
|
Oracle VM VirtualBox < 5.0.32 / < 5.1.14 - Privilege Escalation (PoC)
|
234 |
LOCAL
|
Wolfgang Hotwagner
|
|
2017-02-03
|
|
Palo Alto Networks Terminal Services Agent 7.0.3-13 - Integer Overflow
|
202 |
LOCAL
|
Parvez Anwar
|
|
2017-02-03
|
|
OpenSSH 6.8 < 6.9 - 'PTY' Privilege Escalation
|
107 |
LOCAL
|
Federico Bento
|
|
2017-02-03
|
|
Systemd 228 (SUSE 12 SP2 / Ubuntu Touch 15.04) - Privilege Escalation (PoC)
|
116 |
LOCAL
|
Sebastian Krahmer
|
|
2017-02-03
|
|
Man-db 2.6.7.1 - Privilege Escalation (PoC)
|
85 |
LOCAL
|
halfdog
|
|
2017-02-03
|
|
GNU Screen 4.5.0 - Privilege Escalation
|
204 |
LOCAL
|
Xiphos Research Ltd
|
|
2017-01-22
|
|
SentryHD 02.01.12e - Privilege Escalation
|
203 |
LOCAL
|
Kacper Szurek
|
|
2017-01-12
|
|
Firejail - Privilege Escalation
|
180 |
LOCAL
|
Daniel Hodson
|
|
2017-01-12
|
|
Cemu 1.6.4b - Information Leak + Buffer Overflow (Emulator Breakout)
|
202 |
LOCAL
|
Wack0
|
|
2017-01-12
|
|
Microsoft Windows 8.1 (x64) - RGNOBJ Integer Overflow (MS16-098)
|
196 |
LOCAL
|
Saif
|
|
2017-01-12
|
|
Microsoft Windows Kernel - 'win32k.sys' 'NtSetWindowLongPtr' Privilege Escalation (MS16-135) (2)
|
376 |
LOCAL
|
Rick Larabee
|
|
2017-01-10
|
|
Enigma Fileless UAC Bypass
|
213 |
LOCAL
|
r00t-3xp10it
|
|
2017-01-05
|
|
Kaspersky 17.0.0 - Local CA root is Incorrectly Protected
|
168 |
LOCAL
|
Google Security Research
|
|
2016-12-28
|
|
Android get_user/put_user Exploit
|
259 |
LOCAL
|
timwr
|
|
2016-12-26
|
|
OpenSSH < 7.4 - 'UsePrivilegeSeparation Disabled' Forwarded Unix Domain Sockets Privilege Escalati
|
382 |
LOCAL
|
Google Security Research
|
|
2016-12-23
|
|
macOS < 10.12.2 / iOS < 10.2 - Broken Kernel Mach Port Name uref Handling Privileged Port Name Repla
|
169 |
LOCAL
|
Google Security Research
|
|
2016-12-23
|
|
macOS < 10.12.2 / iOS < 10.2 Kernel - _kernelrpc_mach_port_insert_right_trap Reference Count Leak /
|
149 |
LOCAL
|
Google Security Research
|
|
2016-12-23
|
|
Vesta Control Panel 0.9.8-16 - Local Privilege Escalation
|
149 |
LOCAL
|
Luka Pusic
|
|
2016-12-23
|
|
IBM AIX 6.1/7.1/7.2 - 'Bellmail' Privilege Escalation
|
243 |
LOCAL
|
Hector X. Monsegur
|
|
2016-12-23
|
|
at(1) Persistence Module
|
190 |
LOCAL
|
Jon Hart
|
|
2016-12-20
|
|
RedStar 3.0 Server - 'BEAM & RSSMON' Command Execution (Shellshock)
|
303 |
LOCAL
|
Hacker Fantastic
|
|
2016-12-20
|
|
Naenara Browser 3.5 (RedStar 3.0 Desktop) - 'JACKRABBIT' Client-Side Command Execution
|
311 |
LOCAL
|
Hacker Fantastic
|
|
2016-12-19
|
|
iOS 10.1.1 / macOS 10.12 16A323 XNU Kernel - set_dp_control_port Lack of Locking Use-After-Free
|
198 |
LOCAL
|
Google Security Research
|
|
2016-12-16
|
|
Nagios < 4.2.4 - Privilege Escalation
|
112 |
LOCAL
|
Dawid Golunski
|
|
2016-12-16
|
|
Nidesoft MP3 Converter 2.6.18 - SEH Local Buffer Overflow
|
114 |
LOCAL
|
malwrforensics
|
|
2016-12-13
|
|
10-Strike Network File Search Pro 2.3 - SEH Local Buffer Overflow
|
131 |
LOCAL
|
malwrforensics
|
|
2016-12-07
|
|
Microsoft PowerShell - XML External Entity Injection
|
196 |
LOCAL
|
hyp3rlinx
|
|
2016-12-07
|
|
Linux Kernel 4.4.0 (Ubuntu 14.04/16.04 x86-64) - 'AF_PACKET' Race Condition Privilege Escalation
|
242 |
LOCAL
|
rebel
|
|
2016-12-06
|
|
Apache CouchDB 2.0.0 - Local Privilege Escalation
|
114 |
LOCAL
|
hyp3rlinx
|
|
2016-12-06
|
|
Microsoft MSINFO32.EXE 6.1.7601 - '.NFO' XML External Entity Injection
|
103 |
LOCAL
|
hyp3rlinx
|
|
2016-12-06
|
|
Microsoft Event Viewer 1.0 - XML External Entity Injection
|
94 |
LOCAL
|
hyp3rlinx
|
|
2016-12-05
|
|
Microsoft Windows Media Center 6.1.7600 - 'ehshell.exe' XML External Entity Injection
|
197 |
LOCAL
|
hyp3rlinx
|
|
2016-12-05
|
|
Microsoft Excel Starter 2010 - XML External Entity Injection
|
147 |
LOCAL
|
hyp3rlinx
|
|
2016-12-05
|
|
Microsoft Authorization Manager 6.1.7601 - 'azman' XML External Entity Injection
|
106 |
LOCAL
|
hyp3rlinx
|
|
2016-12-02
|
|
Windows Escalate UAC Protection Bypass
|
168 |
LOCAL
|
OJ Reeves
|
|
2016-12-02
|
|
Opera foreignObject textNode::removeChild Use-After-Free
|
132 |
LOCAL
|
SkyLined
|
|
2016-11-30
|
|
WinPower 4.9.0.4 - Privilege Escalation
|
253 |
LOCAL
|
Kacper Szurek
|
|
2016-11-30
|
|
Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' /proc/self/mem Race Condition Privilege Escalation (/etc/p
|
155 |
LOCAL
|
Gabriele Bonacini
|
|
2016-11-29
|
|
Eagle Speed USB Modem Software Privilege Escalation
|
115 |
LOCAL
|
R-73eN
|
|
2016-11-29
|
|
Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' 'PTRACE_POKEDATA' Race Condition Privilege Escalation
|
245 |
LOCAL
|
FireFart
|
|
2016-11-29
|
|
Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' 'PTRACE_POKEDATA' Race Condition Privilege Escalation (W
|
138 |
LOCAL
|
Phil Oester
|
|
2016-11-28
|
|
Microsoft Windows Kernel - 'win32k.sys' 'NtSetWindowLongPtr' Privilege Escalation (MS16-135)
|
167 |
LOCAL
|
IOactive
|
|
2016-11-24
|
|
Linux Kernel 4.6.3 Netfilter Privilege Escalation
|
354 |
LOCAL
|
h00die
|
|
2016-11-24
|
|
Linux Kernel 2.6.x pipe.c Privilege Escalation
|
256 |
LOCAL
|
Spender
|
|
2016-11-22
|
|
Putty 0.67 Cleartext Password Storage
|
220 |
LOCAL
|
hyp3rlinx
|
|
2016-11-21
|
|
Palo Alto Networks PanOS root_reboot - Privilege Escalation
|
167 |
LOCAL
|
Google Security Research
|
|
2016-11-21
|
|
Nagios 4.2.2 - Privilege Escalation
|
232 |
LOCAL
|
Vincent Malguy
|
|
2016-11-17
|
|
Nginx (Debian-Based Distributions) - 'logrotate' Local Privilege Escalation
|
344 |
LOCAL
|
legalhackers
|
|
2016-11-16
|
|
Microsoft Windows - VHDMP Arbitrary Physical Disk Cloning Privilege Escalation (MS16-138)
|
259 |
LOCAL
|
Google Security Research
|
|
2016-11-16
|
|
Microsoft Windows - VHDMP ZwDeleteFile Arbitrary File Deletion Privilege Escalation (MS16-138)
|
189 |
LOCAL
|
Google Security Research
|
|
2016-11-16
|
|
Microsoft Windows - VHDMP Arbitrary File Creation Privilege Escalation (MS16-138)
|
343 |
LOCAL
|
Google Security Research
|
|
2016-11-15
|
|
Linux Kernel 4.4 (Ubuntu 16.04) - BPF Local Privilege Escalation (Metasploit)
|
199 |
LOCAL
|
h00die
|
|
2016-11-09
|
|
Avira Antivirus 15.0.21.86 - '.zip' Directory Traversal / Command Execution
|
187 |
LOCAL
|
R-73eN
|
|
2016-11-09
|
|
Solaris 8/9 passwd(1) - 'circ()' Stack-Based Buffer Overflow Privilege Escalation
|
189 |
LOCAL
|
Marco Ivaldi
|
|
2016-11-09
|
|
Solaris 7/8/9 CDE libDtHelp - Buffer Overflow Non-Exec Stack Privilege Escalation
|
195 |
LOCAL
|
Marco Ivaldi
|
|
2016-11-09
|
|
Solaris 7/8/9 CDE libDtHelp - Buffer Overflow dtprintinfo Privilege Escalation
|
184 |
LOCAL
|
Marco Ivaldi
|
|
2016-11-09
|
|
Solaris 8/9 ps - Environment Variable Information leak
|
168 |
LOCAL
|
Marco Ivaldi
|
|
2016-11-09
|
|
Linux Kernel 2.6.x < 2.6.7-rc3 - 'sys_chown()' Privilege Escalation
|
205 |
LOCAL
|
Marco Ivaldi
|
|
2016-11-08
|
|
Internet Explorer 8-11, IIS, CScript.exe/WScript.exe VBScript - CRegExp..Execute Use of Uninitialize
|
272 |
LOCAL
|
Skylined
|
|
2016-11-08
|
|
VBScript CRegExp::Execute Uninitialized Memory Use
|
114 |
LOCAL
|
SkyLined
|
|
2016-11-08
|
|
LanWhoIs.exe 1.0.1.120 SEH Local Buffer Overflow
|
223 |
LOCAL
|
H3ku
|
|
2016-11-07
|
|
IBM AIX 5.3/6.1/7.1/7.2 - 'lquerylv' Privilege Escalation
|
83 |
LOCAL
|
Hector X. Monsegur
|
|
2016-11-07
|
|
IBM AIX 6.1/7.1/7.2.0.2 - 'lsmcode' Privilege Escalation
|
238 |
LOCAL
|
Hector X. Monsegur
|
|
2016-11-04
|
|
Linux Kernel (Ubuntu / Fedora / Redhat) - 'Overlayfs' Privilege Escalation (Metasploit)
|
233 |
LOCAL
|
h00die
|
|
2016-11-02
|
|
MySQL / MariaDB / PerconaDB - 'root' Privilege Escalation
|
189 |
LOCAL
|
Dawid Golunski
|
|
2016-11-02
|
|
MySQL / MariaDB / PerconaDB - 'mysql' System User Privilege Escalation / Race Condition
|
214 |
LOCAL
|
Dawid Golunski
|
|
2016-11-02
|
|
Overlayfs Privilege Escalation
|
160 |
LOCAL
|
h00die
|
|
2016-10-31
|
|
NO-IP DUC v4.1.1 Unquoted Service Path Privilege Escalation Exploit
|
588 |
LOCAL
|
pedr0 Ubuntu
|
|
2016-10-31
|
|
PDF Complete Office Edition 4.1.12 - Unquoted Service Path Privilege Escalation Exploit
|
205 |
LOCAL
|
pedr0 Ubuntu
|
|
2016-10-28
|
|
GNU GTypist 2.9.5-2 - Local Buffer Overflow
|
104 |
LOCAL
|
Juan Sacco
|
|
2016-10-28
|
|
WSearch service (windows) - persistence backdooring + privilege escalation Exploit
|
208 |
LOCAL
|
r00t-3xp10it
|
|
2016-10-26
|
|
Network Scanner 4.0.0 - SEH Local Buffer Overflow
|
284 |
LOCAL
|
n30m1nd
|
|
2016-10-25
|
|
Microsoft Windows x86 NDISTAPI Privilege Escalation
|
170 |
LOCAL
|
Tomislav Paskalev
|
|
2016-10-25
|
|
Panda Security PSEvents Privilege Escalation
|
203 |
LOCAL
|
h00die
|
|
2016-10-24
|
|
Linux Kernel 2.6.22 < 3.9 (x86/x64) - 'Dirty COW' Race Condition Privilege Escalation (SUID)
|
237 |
LOCAL
|
Robin Verton
|
|
2016-10-24
|
|
Linux Kernel 2.6.22 < 3.9 - 'Dirty COW' Race Condition Privilege Escalation (Write Access)
|
316 |
LOCAL
|
Phil Oester
|
|
2016-10-21
|
|
Windows - NtLoadKeyEx Read Only Hive Arbitrary File Write Privilege Escalation (MS16-124)
|
263 |
LOCAL
|
Google Security Research
|
|
2016-10-21
|
|
Windows Edge/IE - Isolated Private Namespace Insecure Boundary Descriptor Privilege Escalation (MS16
|
266 |
LOCAL
|
Google Security Research
|
|
2016-10-21
|
|
Windows Edge/IE - Isolated Private Namespace Insecure DACL Privilege Escalation (MS16-118)
|
335 |
LOCAL
|
Google Security Research
|
|
2016-10-21
|
|
Oracle Netbeans IDE 8.1 - Directory Traversal
|
191 |
LOCAL
|
hyp3rlinx
|
|
2016-10-19
|
|
Windows DeviceApi CMApi - User Hive Impersonation Privilege Escalation (MS16-124)
|
229 |
LOCAL
|
Google Security Research
|
|
2016-10-19
|
|
Windows DeviceApi CMApi PiCMOpenDeviceKey - Arbitrary Registry Key Write Privilege Escalation (MS16-
|
354 |
LOCAL
|
Google Security Research
|
|
2016-10-19
|
|
LanSpy 2.0.0.155 - Local Buffer Overflow
|
68 |
LOCAL
|
n30m1nd
|
|
2016-10-19
|
|
Microsoft Windows (x86) - 'afd.sys' Privilege Escalation (MS11-046)
|
189 |
LOCAL
|
Tomislav Paskalev
|
|
2016-10-18
|
|
Microsoft Windows Diagnostics Hub - DLL Load Privilege Escalation (MS16-125)
|
235 |
LOCAL
|
Google Security Research
|
|
2016-10-11
|
|
Powershell Payload Execution
|
75 |
LOCAL
|
RageLtMan
|
