This Metasploit module uses a valid username and password of any level (or password hash) to execute an arbitrary payload. This Metasploit module is similar to the "psexec" module, except allows any non-guest account by default.
62064773ec9a35ea65bfaad94997ca19e3bcbb3be2deb552ff222d7fe63317a4This Metasploit module exploits a flaw in the 'webexservice' Windows service, which runs as SYSTEM, can be used to run arbitrary commands locally, and can be started by limited users in default installations.
5fd5f73708b7741614718b8a1cece16b9de49b88d3267e6f1549bbe34dc56a0aPolycom VVX 500 / VVX 601 versions 5.8.0.12848 and below suffer from an information exposure vulnerability.
3946095174c52f0117914befe41f9b683f9acdfb9bf275dc1ae13b547ebad25bUbuntu Security Notice 3801-1 - Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, bypass CSP restrictions, spoof the protocol registration notification bar, leak SameSite cookies, bypass mixed content warnings, or execute arbitrary code. Various other issues were also addressed.
070751dac62d0e36aedbaaf6e004869962630cbbfb0a6e6921710868df00e0daPolycom VVX 500 / VVX 601 versions 5.8.0.12848 and below suffer from a man-in-the-middle vulnerability.
7b5fbf76b7eba76a71529c6ea57d610f4fcc5779b2d7571076b77a2832b5f4dbUbuntu Security Notice 3800-1 - It was discovered that audiofile incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service. It was discovered that audiofile incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code.
a7e5c0f782761dfd9cc3c0d7985146da741cb8594d5d1afb7b7c0913ff432b73AudioCodes 440HD / 450HD IP Phone versions 3.1.2.89 and below suffer from a man-in-the-middle vulnerability.
60e19e61a99c7d9dabb6688f443d8a862df2c3e07135d755e7dfeaf5d3b99db3Fifa Master XLS version 2.3.2 suffers from a remote SQL injection vulnerability.
125e9c25a3fa2ae176e044edf7920e8e3adf0c78a058ae7c6c3045e654036b7fAxioscloud Sissiweb Registro Elettronico version 7.0.0 suffers from a cross site scripting vulnerability.
3c10863d0e2abd4f243f81f66ecbdb173b4bda14b1de618998cf91e3b4670490Micro Focus Security Bulletin MFSBGN03827 1 - A potential vulnerability has been identified in Micro Focus Real User Monitoring software. The vulnerability could be exploited to execute arbitrary. Revision 1 of this advisory.
ab13bf0e442bc072c2571cc544c143eaa85a0ddafb8372ec20be428a8152b862Slackware Security Advisory - New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues.
e2a6e9ec1ae8b96e67a1f30b278fa7f17bcb3e584472afb5823947db0b4a7075Microsoft Data Sharing local privilege escalation proof of concept exploit.
da8c6406c1abcf27d99ca4b620356d083b3c9d9f3ce24c41c93b45e85d1ceb64SG ERP version 1.0 suffers from a remote SQL injection vulnerability.
f6b68c383cae436410bd69f36a0ef65ebdd0d2595fef8a1d17ebe5fc7c7e01cdExim version 4.90 remote code execution exploit.
19a743e6423b65998debf24be560524e381d039e1cadcd20d9257dd956d9b4a1WordPress Question Answer plugin version 1.2.30 suffers from a cross site scripting vulnerability.
d44391c0448238523824c2a679caee01b4d2cea7dca1ad65ca6ab902cc45d2c3WordPress Pie Register plugin version 3.0.17 suffers from a cross site scripting vulnerability.
057d741f7c549aed246af5237089d843b8893e0bc20ee5587939842697dfa4ffLANGO Codeigniter Multilingual Script version 1.0 suffers from a cross site scripting vulnerability.
7ef7a20f78b99c0b6409e9aec1213dcdccc6549054e8bf691f98d9c6cc7f0723Apache OFBiz version 16.11.04 suffers from an XML external entity injection vulnerability.
36d19f82674523cd5eb22a791b5b04960c9b88ec383c0ff4e0f963bd580a6ca644 bytes small Linux/x86 execve(/bin/cat /etc/ssh/sshd_config) shellcode.
569c1b818f20700e5f5bd58566b797c2f92c5f341cb5ada4c7481b026ff2ee07PHPTPoint Hospital Management System version 1 suffers from remote SQL injection vulnerabilities.
2d4b587c33cdf76d4e73e4c8c3ff290c9508b810cfcb0d1537d816714c7afa88Adult Filter version 1.0 suffers from a denial of service vulnerability.
9867ac15a175415eba7e8b060d59d30c7d1378360895e66c413b3675488f1fe0
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed