What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-10-26 16:56:34 | CVE-2023-4632: Escalade des privilèges locaux dans Lenovo System Updater CVE-2023-4632: Local Privilege Escalation in Lenovo System Updater (lien direct) |
Version: Lenovo Updater Version & # 60; = 5.08.01.0009 Système d'exploitation testé sur: Windows 10 22H2 (x64) Vulnérabilité: Lenovo System Updater Privilege Escalation via un fichier arbitraire Advisory: https://support.lenovo.com/us/AN / Product_Security / LEN-135367 Vulnérabilité Aperçu L'application de mise à jour du système Lenovo est conçue pour permettre aux non-administrateurs de vérifier et d'appliquer des mises à jour à leur poste de travail.Pendant le processus de vérification des mises à jour, [& # 8230;]
Version: Lenovo Updater Version <= 5.08.01.0009 Operating System Tested On: Windows 10 22H2 (x64) Vulnerability: Lenovo System Updater Local Privilege Escalation via Arbitrary File Write Advisory: https://support.lenovo.com/us/en/product_security/LEN-135367 Vulnerability Overview The Lenovo System Update application is designed to allow non-administrators to check for and apply updates to their workstation. During the process of checking for updates, […] |
Vulnerability | ★★★ | |
|
2019-08-29 18:41:12 | Avira Optimizer Local Privilege Escalation (lien direct) | Version: Avira Optimizer < 1.2.0.367 Operating System tested on: Windows 10 1803 (x64) Vulnerability: Avira Optimizer Local Privilege Escalation through insecure named pipes Vulnerability Overview When users install the latest Avira antivirus, it comes shipped with a few different components along with it. One of these components is the Avira Optimizer. In short, “Avira.OptimizerHost.exe” runs […] | Vulnerability | ★★★★ | |
|
2019-07-24 17:15:37 | CVE-2019-13382: Local Privilege Escalation in SnagIt (lien direct) | Version: Snagit 2019.1.2 Build 3596 Operating System tested on: Windows 10 1803 (x64) Vulnerability: SnagIt Relay Classic Recorder Local Privilege Escalation through insecure file move This vulnerability was found in conjunction with Marcus Sailler, Rick Romo and Gary Muller of Capital Group's Security Testing Team Vulnerability Overview Every 30-60 seconds, the TechSmith Uploader Service (UploaderService.exe) […] | Vulnerability | ★★★★ | |
|
2019-07-05 18:35:12 | CVE-2019-13142: Razer Surround 1.1.63.0 EoP (lien direct) | Version: Razer Surround 1.1.63.0 Operating System tested on: Windows 10 1803 (x64) Vulnerability: Razer Surround Elevation of Privilege through Insecure folder/file permissions Purpose I hope that this post serves as a motivator for folks who see vulnerability research as an intimidating area to get started in. While this bug can be considered simple, the primary […] | Vulnerability | ★★★★ | |
|
2018-10-23 15:03:48 | CVE-2018–8414: A Case Study in Responsible Disclosure (lien direct) | The process of vulnerability disclosure can be riddled with frustrations, concerns about ethics, and communication failure. I have had tons of bugs go well. I have had tons of bugs go poorly. I submit a lot of bugs, through both bounty programs (Bugcrowd/HackerOne) and direct reporting lines (Microsoft). I'm not here to discuss ethics. I'm […] | Vulnerability | ★★★★ |
1
We have: 5 articles.
We have: 5 articles.
To see everything:
Our RSS (filtrered)
