|
2019-05-08
|
|
MiniFtp - 'parseconf_load_setting' Buffer Overflow
|
27 |
LOCAL
|
strider
|
|
2019-05-07
|
|
Admin Express 1.2.5.485 - 'Folder Path' Local SEH Alphanumeric Encoded Buffer Overflow
|
27 |
LOCAL
|
Connor McGarr
|
|
2019-05-07
|
|
Admin Express 1.2.5.485 - 'Folder Path' Local SEH Alphanumeric Encoded Buffer Overflow
|
23 |
LOCAL
|
Connor McGarr
|
|
2019-05-06
|
|
NSClient++ 0.5.2.35 - Privilege Escalation
|
31 |
LOCAL
|
bzyo
|
|
2019-05-06
|
|
NSClient++ 0.5.2.35 - Privilege Escalation
|
28 |
LOCAL
|
bzyo
|
|
2019-04-30
|
|
DeviceViewer 3.12.0.1 - 'user' SEH Overflow
|
32 |
LOCAL
|
Hayden Wright
|
|
2019-04-30
|
|
DeviceViewer 3.12.0.1 - 'user' SEH Overflow
|
29 |
LOCAL
|
Hayden Wright
|
|
2019-04-25
|
|
RARLAB WinRAR 5.61 - ACE Format Input Validation Remote Code Execution (Metasploit)
|
33 |
LOCAL
|
Metasploit
|
|
2019-04-25
|
|
RARLAB WinRAR 5.61 - ACE Format Input Validation Remote Code Execution (Metasploit)
|
29 |
LOCAL
|
Metasploit
|
|
2019-04-25
|
|
Lavavo CD Ripper 4.20 - 'License Activation Name' Buffer Overflow (SEH)
|
30 |
LOCAL
|
Achilles
|
|
2019-04-25
|
|
Lavavo CD Ripper 4.20 - 'License Activation Name' Buffer Overflow (SEH)
|
32 |
LOCAL
|
Achilles
|
|
2019-04-24
|
|
VirtualBox 6.0.4 r128413 - COM RPC Interface Code Injection Host Privilege Escalation
|
36 |
LOCAL
|
Google Security Research
|
|
2019-04-23
|
|
Ross Video DashBoard 8.5.1 - Insecure Permissions
|
26 |
LOCAL
|
LiquidWorm
|
|
2019-04-22
|
|
LabF nfsAxe 3.7 Ping Client - 'Host IP' Buffer Overflow (Direct Ret)
|
33 |
LOCAL
|
Dino Covotsos
|
|
2019-04-22
|
|
LabF nfsAxe 3.7 Ping Client - 'Host IP' Buffer Overflow (Direct Ret)
|
40 |
LOCAL
|
Dino Covotsos
|
|
2019-04-19
|
|
SystemTap 1.3 - MODPROBE_OPTIONS Privilege Escalation (Metasploit)
|
33 |
LOCAL
|
Metasploit
|
|
2019-04-19
|
|
SystemTap 1.3 - MODPROBE_OPTIONS Privilege Escalation (Metasploit)
|
28 |
LOCAL
|
Metasploit
|
|
2019-04-18
|
|
LibreOffice < 6.0.7 / 6.1.3 - Macro Code Execution (Metasploit)
|
27 |
LOCAL
|
Metasploit
|
|
2019-04-18
|
|
LibreOffice < 6.0.7 / 6.1.3 - Macro Code Execution (Metasploit)
|
29 |
LOCAL
|
Metasploit
|
|
2019-04-18
|
|
Evernote 7.9 - Code Execution via Path Traversal
|
34 |
LOCAL
|
Dhiraj Mishra
|
|
2019-04-16
|
|
Microsoft Windows 10 1809 - LUAFV PostLuafvPostReadWrite SECTION_OBJECT_POINTERS Race Condition Priv
|
26 |
LOCAL
|
Google Security Research
|
|
2019-04-16
|
|
Microsoft Windows 10 1809 - LUAFV Delayed Virtualization Cache Manager Poisoning Privilege Escalatio
|
36 |
LOCAL
|
Google Security Research
|
|
2019-04-16
|
|
Microsoft Windows 10 1809 - LUAFV NtSetCachedSigningLevel Device Guard Bypass
|
27 |
LOCAL
|
Google Security Research
|
|
2019-04-16
|
|
Microsoft Windows 10 1809 - LUAFV LuafvCopyShortName Arbitrary Short Name Privilege Escalation
|
35 |
LOCAL
|
Google Security Research
|
|
2019-04-16
|
|
Microsoft Windows 10 1809 - LUAFV Delayed Virtualization Cross Process Handle Duplication Privilege
|
30 |
LOCAL
|
Google Security Research
|
|
2019-04-16
|
|
Microsoft Windows 10 1809 - LUAFV Delayed Virtualization MAXIMUM_ACCESS DesiredAccess Privilege Esca
|
36 |
LOCAL
|
Google Security Research
|
|
2019-04-16
|
|
Microsoft Windows 10 1809 / 1709 - CSRSS SxSSrv Cached Manifest Privilege Escalation
|
30 |
LOCAL
|
Google Security Research
|
|
2019-04-16
|
|
Zoho ManageEngine ADManager Plus 6.6 (Build < 6659) - Privilege Escalation
|
33 |
LOCAL
|
Digital Interruption
|
|
2019-04-12
|
|
Microsoft Windows - Contact File Format Arbitary Code Execution (Metasploit)
|
28 |
LOCAL
|
Metasploit
|
|
2019-04-12
|
|
Microsoft Windows - Contact File Format Arbitary Code Execution (Metasploit)
|
28 |
LOCAL
|
Metasploit
|
|
2019-04-12
|
|
Microsoft Internet Explorer 11 - XML External Entity Injection
|
25 |
LOCAL
|
hyp3rlinx
|
|
2019-04-12
|
|
CyberArk EPM 10.2.1.603 - Security Restrictions Bypass
|
28 |
LOCAL
|
Alpcan Onaran
|
|
2019-04-10
|
|
FTPShell Server 6.83 - 'Virtual Path Mapping' Local Buffer
|
27 |
LOCAL
|
Dino Covotsos
|
|
2019-04-10
|
|
FTPShell Server 6.83 - 'Virtual Path Mapping' Local Buffer
|
26 |
LOCAL
|
Dino Covotsos
|
|
2019-04-10
|
|
FTPShell Server 6.83 - 'Account name to ban' Local Buffer
|
27 |
LOCAL
|
Dino Covotsos
|
|
2019-04-10
|
|
FTPShell Server 6.83 - 'Account name to ban' Local Buffer
|
27 |
LOCAL
|
Dino Covotsos
|
|
2019-04-09
|
|
Microsoft Windows - AppX Deployment Service Privilege Escalation
|
26 |
LOCAL
|
Nabeel Ahmed
|
|
2019-04-08
|
|
Apache 2.4.17 < 2.4.38 - 'apache2ctl graceful' 'logrotate' Local Privilege Escalation
|
28 |
LOCAL
|
cfreal
|
|
2019-04-08
|
|
Download Accelerator Plus (DAP) 10.0.6.0 - SEH Buffer Overflow
|
26 |
LOCAL
|
Peyman Forouzan
|
|
2019-04-08
|
|
Download Accelerator Plus (DAP) 10.0.6.0 - SEH Buffer Overflow
|
31 |
LOCAL
|
Peyman Forouzan
|
|
2019-04-08
|
|
River Past Cam Do 3.7.6 - 'Activation Code' Local Buffer Overflow
|
31 |
LOCAL
|
Chris Au
|
|
2019-04-08
|
|
River Past Cam Do 3.7.6 - 'Activation Code' Local Buffer Overflow
|
25 |
LOCAL
|
Chris Au
|
|
2019-04-08
|
|
AllPlayer 7.4 - SEH Buffer Overflow (Unicode)
|
29 |
LOCAL
|
Chris Au
|
|
2019-04-08
|
|
AllPlayer 7.4 - SEH Buffer Overflow (Unicode)
|
31 |
LOCAL
|
Chris Au
|
|
2019-04-08
|
|
FlexHEX 2.71 - SEH Buffer Overflow (Unicode)
|
24 |
LOCAL
|
Chris Au
|
|
2019-04-08
|
|
FlexHEX 2.71 - SEH Buffer Overflow (Unicode)
|
26 |
LOCAL
|
Chris Au
|
|
2019-04-05
|
|
AIDA64 Extreme 5.99.4900 - 'Logging' SEH Buffer Overflow
|
21 |
LOCAL
|
Peyman Forouzan
|
|
2019-04-05
|
|
AIDA64 Extreme 5.99.4900 - 'Logging' SEH Buffer Overflow
|
28 |
LOCAL
|
Peyman Forouzan
|
|
2019-04-04
|
|
AIDA64 Engineer 5.99.4900 - 'Load from file' Field Buffer Overflow (SEH)
|
25 |
LOCAL
|
Anurag Srivastava
|
|
2019-04-04
|
|
AIDA64 Engineer 5.99.4900 - 'Load from file' Field Buffer Overflow (SEH)
|
30 |
LOCAL
|
Anurag Srivastava
|
|
2019-04-03
|
|
AIDA64 Business 5.99.4900 - SEH Buffer Overflow (EggHunter)
|
30 |
LOCAL
|
Peyman Forouzan
|
|
2019-04-03
|
|
AIDA64 Business 5.99.4900 - SEH Buffer Overflow (EggHunter)
|
30 |
LOCAL
|
Peyman Forouzan
|
|
2019-04-02
|
|
AIDA64 Extreme / Engineer / Network Audit 5.99.4900 - SEH Buffer Overflow (EggHunter)
|
21 |
LOCAL
|
Peyman Forouzan
|
|
2019-03-28
|
|
Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH Egghunter)
|
28 |
LOCAL
|
Paolo Perego
|
|
2019-03-28
|
|
Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH Egghunter)
|
33 |
LOCAL
|
Paolo Perego
|
|
2019-03-25
|
|
VMware Workstation 14.1.5 / VMware Player 15 - Host VMX Process COM Class Hijack Privilege Escalatio
|
26 |
LOCAL
|
Google Security Research
|
|
2019-03-25
|
|
VMware Workstation 14.1.5 / VMware Player 15.0.2 - Host VMX Process Impersonation Hijack Privilege E
|
26 |
LOCAL
|
Google Security Research
|
|
2019-03-25
|
|
X-NetStat Pro 5.63 - Local Buffer Overflow
|
24 |
LOCAL
|
Peyman Forouzan
|
|
2019-03-25
|
|
X-NetStat Pro 5.63 - Local Buffer Overflow
|
25 |
LOCAL
|
Peyman Forouzan
|
|
2019-03-21
|
|
DVD X Player 5.5.3 - '.plf' Buffer Overflow
|
23 |
LOCAL
|
Paolo Perego
|
|
2019-03-21
|
|
DVD X Player 5.5.3 - '.plf' Buffer Overflow
|
27 |
LOCAL
|
Paolo Perego
|
|
2019-03-20
|
|
NetShareWatcher 1.5.8.0 - Local SEH Buffer Overflow
|
29 |
LOCAL
|
Peyman Forouzan
|
|
2019-03-19
|
|
Advanced Host Monitor 11.92 beta - Local Buffer Overflow
|
25 |
LOCAL
|
Peyman Forouzan
|
|
2019-03-19
|
|
Advanced Host Monitor 11.92 beta - Local Buffer Overflow
|
26 |
LOCAL
|
Peyman Forouzan
|
|
2019-02-22
|
|
WinRAR 5.61 - Path Traversal
|
29 |
LOCAL
|
WyAtu
|
|
2019-03-13
|
|
Microsoft Windows MSHTML Engine - 'Edit' Remote Code Execution
|
26 |
LOCAL
|
Eduardo Braun Prado
|
|
2019-03-11
|
|
NetSetMan 4.7.1 - Local Buffer Overflow (SEH Unicode)
|
29 |
LOCAL
|
Devin Casadey
|
|
2019-03-08
|
|
Sony Playstation 4 (PS4) < 6.20 - WebKit Code Execution (PoC)
|
33 |
LOCAL
|
Specter
|
|
2019-03-07
|
|
FreeBSD - Intel SYSRET Privilege Escalation (Metasploit)
|
26 |
LOCAL
|
Metasploit
|
|
2019-03-07
|
|
FreeBSD - Intel SYSRET Privilege Escalation (Metasploit)
|
29 |
LOCAL
|
Metasploit
|
|
2019-03-07
|
|
Anyburn 4.3 x86 - 'Copy disc to image file' Buffer Overflow (Unicode) (SEH)
|
26 |
LOCAL
|
Hodorsec
|
|
2019-03-01
|
|
Cisco WebEx Meetings < 33.6.6 / < 33.9.1 - Privilege Escalation
|
25 |
LOCAL
|
SecureAuth
|
|
2019-02-21
|
|
RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH)
|
27 |
LOCAL
|
Matteo Malvica
|
|
2019-02-21
|
|
RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH)
|
29 |
LOCAL
|
Matteo Malvica
|
|
2019-02-21
|
|
Memu Play 6.0.7 - Privilege Escalation
|
28 |
LOCAL
|
Alejandra Sánchez
|
|
2019-02-13
|
|
Apple macOS 10.13.5 - Local Privilege Escalation
|
26 |
LOCAL
|
Synacktiv
|
|
2019-02-19
|
|
MaxxAudio Drivers WavesSysSvc64.exe 1.6.2.0 - Local Privilege Escalation
|
36 |
LOCAL
|
Mike Siegel
|
|
2019-02-14
|
|
exacqVision ESM 5.12.2 - Privilege Escalation
|
30 |
LOCAL
|
bzyo
|
|
2019-02-13
|
|
runc < 1.0-rc6 (Docker < 18.09.2) - Container Breakout (2)
|
32 |
LOCAL
|
embargo
|
|
2019-02-13
|
|
snapd < 2.37 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (2)
|
30 |
LOCAL
|
Chris Moberly
|
|
2019-02-13
|
|
snapd < 2.37 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (1)
|
29 |
LOCAL
|
Chris Moberly
|
|
2019-02-12
|
|
runc < 1.0-rc6 (Docker < 18.09.2) - Container Breakout (1)
|
33 |
LOCAL
|
feexd
|
|
2019-02-11
|
|
River Past Video Cleaner 7.6.3 - Local Buffer Overflow (SEH)
|
29 |
LOCAL
|
crash_manucoot
|
|
2019-02-11
|
|
River Past Video Cleaner 7.6.3 - Local Buffer Overflow (SEH)
|
26 |
LOCAL
|
crash_manucoot
|
|
2019-02-11
|
|
Avast Anti-Virus < 19.1.2360 - Local Credentials Disclosure
|
31 |
LOCAL
|
Nathu Nandwani
|
|
2019-02-11
|
|
Evince - CBT File Command Injection (Metasploit)
|
26 |
LOCAL
|
Metasploit
|
|
2019-02-11
|
|
Evince - CBT File Command Injection (Metasploit)
|
24 |
LOCAL
|
Metasploit
|
|
2019-02-11
|
|
River Past Cam Do 3.7.6 - Local Buffer Overflow (SEH)
|
24 |
LOCAL
|
Achilles
|
|
2019-02-11
|
|
River Past Cam Do 3.7.6 - Local Buffer Overflow (SEH)
|
34 |
LOCAL
|
Achilles
|
|
2019-02-11
|
|
IP-Tools 2.5 - 'Log to file' Local Buffer Overflow (SEH) (Egghunter)
|
27 |
LOCAL
|
Juan Prescotto
|
|
2019-02-11
|
|
IP-Tools 2.5 - 'Log to file' Local Buffer Overflow (SEH) (Egghunter)
|
33 |
LOCAL
|
Juan Prescotto
|
|
2019-02-06
|
|
River Past Audio Converter 7.7.16 - Buffer Overflow (SEH)
|
27 |
LOCAL
|
Matteo Malvica
|
|
2019-02-06
|
|
River Past Audio Converter 7.7.16 - Buffer Overflow (SEH)
|
25 |
LOCAL
|
Matteo Malvica
|
|
2019-02-01
|
|
PassFab Excel Password Recovery 8.3.1 - SEH Local Exploit
|
26 |
LOCAL
|
Achilles
|
|
2019-02-01
|
|
PassFab Excel Password Recovery 8.3.1 - SEH Local Exploit
|
34 |
LOCAL
|
Achilles
|
|
2019-01-31
|
|
UltraISO 9.7.1.3519 - 'Output FileName' Local Buffer Overflow (SEH)
|
29 |
LOCAL
|
Dino Covotsos
|
|
2019-01-31
|
|
UltraISO 9.7.1.3519 - 'Output FileName' Local Buffer Overflow (SEH)
|
28 |
LOCAL
|
Dino Covotsos
|
|
2019-01-31
|
|
R 3.5.0 - Local Buffer Overflow (SEH)
|
28 |
LOCAL
|
Dino Covotsos
|
|
2019-01-31
|
|
R 3.5.0 - Local Buffer Overflow (SEH)
|
32 |
LOCAL
|
Dino Covotsos
|
|
2019-01-30
|
|
10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH) (DEP Bypass)
|
26 |
LOCAL
|
bzyo
|
|
2019-01-30
|
|
10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH) (DEP Bypass)
|
28 |
LOCAL
|
bzyo
|
|
2019-01-29
|
|
HTML5 Video Player 1.2.5 - Local Buffer Overflow (Non SEH)
|
26 |
LOCAL
|
Dino Covotsos
|
|
2019-01-29
|
|
HTML5 Video Player 1.2.5 - Local Buffer Overflow (Non SEH)
|
32 |
LOCAL
|
Dino Covotsos
|
|
2019-01-28
|
|
Faleemi Desktop Software 1.8 - Local Buffer Overflow (SEH) (DEP Bypass)
|
23 |
LOCAL
|
bzyo
|
|
2019-01-28
|
|
Faleemi Desktop Software 1.8 - Local Buffer Overflow (SEH) (DEP Bypass)
|
25 |
LOCAL
|
bzyo
|
|
2019-01-28
|
|
BEWARD Intercom 2.3.1 - Credentials Disclosure
|
27 |
LOCAL
|
LiquidWorm
|
|
2019-01-28
|
|
R 3.4.4 XP SP3 - Buffer Overflow (Non SEH)
|
28 |
LOCAL
|
Dino Covotsos
|
|
2019-01-28
|
|
R 3.4.4 XP SP3 - Buffer Overflow (Non SEH)
|
28 |
LOCAL
|
Dino Covotsos
|
|
2019-01-28
|
|
Easy Video to iPod Converter 1.6.20 - Buffer Overflow (SEH)
|
24 |
LOCAL
|
Nawaf Alkeraithe
|
|
2019-01-28
|
|
Easy Video to iPod Converter 1.6.20 - Buffer Overflow (SEH)
|
26 |
LOCAL
|
Nawaf Alkeraithe
|
|
2019-01-28
|
|
MySQL User-Defined (Linux) (x86) - 'sys_exec' Local Privilege Escalation
|
28 |
LOCAL
|
d7x
|
|
2019-01-24
|
|
AddressSanitizer (ASan) - SUID Executable Privilege Escalation (Metasploit)
|
24 |
LOCAL
|
Metasploit
|
|
2019-01-24
|
|
AddressSanitizer (ASan) - SUID Executable Privilege Escalation (Metasploit)
|
27 |
LOCAL
|
Metasploit
|
|
2019-01-23
|
|
Microsoft Windows CONTACT - HTML Injection / Remote Code Execution
|
27 |
LOCAL
|
hyp3rlinx
|
|
2019-01-17
|
|
Check Point ZoneAlarm 8.8.1.110 - Local Privilege Escalation
|
26 |
LOCAL
|
Chris Anastasio
|
|
2019-01-17
|
|
Microsoft Windows CONTACT - Remote Code Execution
|
30 |
LOCAL
|
hyp3rlinx
|
|
2019-01-16
|
|
blueman - set_dhcp_handler D-Bus Privilege Escalation (Metasploit)
|
26 |
LOCAL
|
Metasploit
|
|
2019-01-16
|
|
blueman - set_dhcp_handler D-Bus Privilege Escalation (Metasploit)
|
25 |
LOCAL
|
Metasploit
|
|
2019-01-16
|
|
Microsoft Windows 10 - XmlDocument Insecure Sharing Privilege Escalation
|
24 |
LOCAL
|
Google Security Research
|
|
2019-01-15
|
|
Microsoft Windows VCF - Remote Code Execution
|
24 |
LOCAL
|
hyp3rlinx
|
|
2019-01-14
|
|
Microsoft Windows 10 - COM Desktop Broker Privilege Escalation
|
27 |
LOCAL
|
Google Security Research
|
|
2019-01-14
|
|
Microsoft Windows 10 - Browser Broker Cross Session Privilege Escalation
|
28 |
LOCAL
|
Google Security Research
|
|
2019-01-14
|
|
Microsoft Windows 10 - DSSVC MoveFileInheritSecurity Privilege Escalation
|
24 |
LOCAL
|
Google Security Research
|
|
2019-01-14
|
|
Microsoft Windows 10 - DSSVC CanonicalAndValidateFilePath Security Feature Bypass
|
26 |
LOCAL
|
Google Security Research
|
|
2019-01-14
|
|
Microsoft Windows 10 - DSSVC DSOpenSharedFile Arbitrary File Delete Privilege Escalation
|
28 |
LOCAL
|
Google Security Research
|
