Next Page >>
privilege escalation
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory:
Local Privilege Escalation Vulnerabilities in Cisco VPN Client
Advisory ID: cisco-sa-20070815-vpnclient
http://www.cisco.com/warp/public/707/cisco-sa-20070815-vpnclient.shtml
3. Problem Description
a. Mishandled exception on page faults
An improper setting of the exception code on page faults may allow
for local privilege escalation on the guest operating system. This
vulnerability does not affect the host system.
VMware would like to thank Tavis Ormandy and Julien Tinnes of the
Google Security Team for reporting this issue to us.
The Cisco Wireless LAN Controller (WLC) product family is affected by
these vulnerabilities:
* Two denial of service (DoS) vulnerabilities
* Three privilege escalation vulnerabilities
* Two access control list (ACL) bypass vulnerabilities
Note: These vulnerabilities are independent of one another. A device
may be affected by one vulnerability and not affected by another.
Cisco Unified IP Phones 7900 Series devices, also known as TNP
phones, are affected by three vulnerabilities that could allow an
attacker to elevate privileges, change phone configurations, disclose
sensitive information, or load unsigned software. These three
vulnerabilities are classified as two privilege escalation
vulnerabilities and one signature bypass vulnerability.
Cisco has released free software updates that address these
vulnerabilities. There are no workarounds available to mitigate these
vulnerabilities.
Digital Security Research Group [DSecRG] Advisory #DSECRG-09-004
AXIS 70U Network Document Server - Privilege Escalation and XSS
http://dsecrg.com/pages/vul/show.php?id=60
Application: AXIS 70U Network Document Server (Web Interface)
Versions Affected: 3.0
Vendor URL: http://www.axis.com/
http://www.efblog.net/2009/11/avast-aswrdrsys-kernel-pool-corruption.html
=============[Avast aswRdr.sys Kernel Pool Corruption and Local
Privilege Escalation]================
Author(s): Giuseppe 'Evilcry' Bonfa'
AbdulAziz Hariri
E-Mail: evilcry {AT} GMAIL {DOT} COM
Website: http://evilcry.netsons.org
updated since 2007, pre-release exists) or older
Platform: Windows XP and later
Components affected: Device drivers in both applications
Remote: No
Local: Yes
Vulnerability type: DoS, Privilege Escalation
VENDOR SOFTWARE DESCRIPTION:
---------------
Application Control Engine Cisco ACE Module and Cisco ACE 4710
Application Control Engine contain multiple vulnerabilities that, if
exploited, can could result in any of the following impacts:
* Administrative level access via default user names and passwords
* Privilege escalation
* A denial of service (DoS) condition
Cisco has released free software updates available for affected
customers. Workarounds that mitigate some of the vulnerabilities are
available.
Script : Cpanel 11.x
bug : language.php [edite file]
exploit=Cpanel fantastico Privilege Escalation "ModSec and PHP restriction Bypass"
safemode off , mod_security off Disable functions : All NONE ,access root folder
<?php
/*
########################################
# Deadly Script by Super-Crystal
Multiple vulnerabilities exist in the Cisco Digital Media Manager
(DMM). This security advisory outlines details of the following
vulnerabilities:
* Default credentials
* Privilege escalation vulnerability
* Information leakage vulnerability
These vulnerabilities are independent of each other.
There are no workarounds that can mitigate any of these vulnerabilities.
Numerous System Management Mode (SMM) privilege escalation
vulnerabilities in ASUS motherboards including Eee PC series
Release Date:
~~~~~~~~~~~~~
07.08.09
Timeline:
security advisory outlines the details of these vulnerabilities:
* Insufficient validation of SQL commands
* Unauthorized account creation
* User and password enumeration in Cisco MeetingTime
* Privilege escalation in Cisco MeetingTime
Workarounds are not available for these vulnerabilities.
This advisory is posted at:
(NBM) products. These vulnerabilities also affect the legacy
Richards-Zeta Mediator products. This security advisory outlines
details of the following vulnerabilities:
* Default credentials
* Privilege escalation
* Unauthorized information interception
* Unauthorized information access
Cisco has released free software updates that address these
vulnerabilities. Workarounds that mitigate some of the listed
Original Advisory Link: https://www.evilfingers.com/advisory/Advisory/TheGreenBow_VPN_Client_tgbvpn.sys_DoS.php
++++++++++++++++++++++++++++++++++++++++++++++++++++
-----------[TheGreenBow VPN Client tgbvpn.sys DoS and Potential Local
Privilege Escalation]--------->
Author: Giuseppe 'Evilcry' Bonfa'
E-Mail: evilcry {AT} GMAIL {DOT} COM
Website: http://evilcry.netsons.org
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02563642
Version: 1
HPSBMA02602 SSRT100317 rev.1 - HP Insight Control Performance Management for Windows, Remote Cross Site Scripting (XSS), Privilege Escalation, Cross Site Request Forgery (CSRF)
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-10-28
Last Updated: 2010-10-28
rPath Security Advisory: 2007-0184-1
Published: 2007-09-14
Products: rPath Linux 1
Rating: Major
Exposure Level Classification:
Remote System User Deterministic Privilege Escalation
Updated Versions:
samba=/conary.rpath.com@rpl:devel//1/3.0.25-0.2-1
samba-swat=/conary.rpath.com@rpl:devel//1/3.0.25-0.2-1
References:
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02560655
Version: 1
HPSBMA02598 SSRT100314 rev.1 - HP Insight Control Virtual Machine Management for Windows, Remote Cross Site Scripting (XSS), Privilege Escalation, Cross Site Request Forgery (CSRF).
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-10-25
Last Updated: 2010-10-25
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02563279
Version: 1
HPSBMA02601 SSRT100316 rev.1 - HP Insight Control Server Migration for Windows, Remote Cross Site Scripting (XSS), Privilege Escalation, Unauthorized Access
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-10-25
Last Updated: 2010-10-25
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02549477
Version: 1
HPSBMA02591 SSRT100299 rev.1 - HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS), Privilege Escalation
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-10-18
Last Updated: 2010-10-18
allow the execution of arbitrary code. (MFSA 2008-33)
CVE-2008-2933
Billy Rios discovered that passing an URL containing a pipe symbol
to Iceape can lead to Chrome privilege escalation. (MFSA 2008-35)
CVE-2008-3835
"moz_bug_r_a4" discovered that the same-origin check in
nsXMLDocument::OnChannelRedirect() could be bypassed. (MFSA 2008-38)
The Cisco AnyConnect Secure Mobility Client, previously known as the
Cisco AnyConnect VPN Client, is affected by the following
vulnerabilities:
* Arbitrary Program Execution Vulnerability
* Local Privilege Escalation Vulnerability
Cisco has released free software updates that address these
vulnerabilities. There are no workarounds for the vulnerabilities
described in this advisory.
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02037890
Version: 1
HPSBMA02490 SSRT090222 rev.1 - HP SOA Registry Foundation, Remote Unauthorized Access to Data, Cross Site Scripting (XSS), Privilege Escalation
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-03-29
Last Updated: 2010-03-29
----------------------------------------------------------------------
(PT-2008-09) Positive Technologies Security Advisory
Microsoft Windows MSMQ Privilege Escalation Vulnerability
----------------------------------------------------------------------
---[ Affected Software ]
[HSC] GWExtranet Script Injections & Privilege Escalation Vulnerability
Attackers may exploit this issue via a web client. An attacker may leverage this
issue to have arbitrary script code execute in the browser of an unsuspecting user
in the context of the affected site. This may help the attacker steal cookie-based
authentication credentials and launch other attacks. A successful exploit could
allow an attacker to compromise the application by defacing by evil code injection.
Application: BlogMan
http://sourceforge.net/projects/blogman/
Version: 0.45
Bug: * Multiple SQL Injection
* Authentication Bypass
* Privilege Escalation
Exploitation: Remote
Date: 1 Mar 2009
Discovered by: Salvatore "drosophila" Fresta
Author: Salvatore "drosophila" Fresta
e-mail: drosophilaxxx@gmail.com
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02037890
Version: 2
HPSBMA02490 SSRT090222 rev.2 - HP SOA Registry Foundation, Remote Unauthorized Access to Data, Cross Site Scripting (XSS), Privilege Escalation
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-03-29
Last Updated: 2010-04-02
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory: Cisco Unified Communications Manager IP
Phone Personal Address Book Synchronizer Privilege Escalation
Vulnerability
Advisory ID: cisco-sa-20090311-cucmpab
Revision 1.0
* ACE Device Manager and ANM invalid directory permissions
vulnerability
* ANM default user credentials vulnerability
* ANM MySQL default credentials vulnerability
* ANM Java agent privilege escalation
Cisco has released free software updates that address these
vulnerabilities. A workaround that mitigates one of the issues is
available.
nsXMLDocument::OnChannelRedirect() could by bypassed.
CVE-2008-3836
"moz_bug_r_a4" discovered that several vulnerabilities in
feedWriter could lead to Chrome privilege escalation.
CVE-2008-3837
Paul Nickerson discovered that an attacker could move windows
during a mouse click, resulting in unwanted action triggered by
nsXMLDocument::OnChannelRedirect() could by bypassed.
CVE-2008-3836
"moz_bug_r_a4" discovered that several vulnerabilities in
feedWriter could lead to Chrome privilege escalation.
CVE-2008-3837
Paul Nickerson discovered that an attacker could move windows
during a mouse click, resulting in unwanted action triggered by
Next Page>>
|
