windows

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-01-11 LabF nfsAxe 3.7 FTP Client – Stack Buffer Overflow (Metasploit)
  • remote
    		•  Metasploit
    2018-01-11 Microsoft Windows SMB Server (v1/v2) – Mount Point Arbitrary Device Open Privilege Escalation
  • dos
    		•  Google Security Research
    2018-01-11 Microsoft Windows – NtImpersonateAnonymousToken LPAC to Non-LPAC Privilege Escalation
  • dos
    		•  Google Security Research
    2018-01-11 Microsoft Windows – NtImpersonateAnonymousToken AC to Non-AC Privilege Escalation
  • dos
    		•  Google Security Research
    2018-01-11 Microsoft Windows – NTFS Owner/Mandatory Label Privilege Bypass
  • dos
    		•  Google Security Research
    2018-01-10 HPE iMC – dbman ‘RestoreDBase’ Remote Command Execution (Metasploit)
  • remote
    		•  Metasploit
    2018-01-10 Microsoft Edge Chakra JIT – ‘Lowerer::LowerSetConcatStrMultiItem’ Missing Integer Overflow Check
  • dos
    		•  Google Security Research
    2018-01-10 DiskBoss Enterprise 8.8.16 – Remote Buffer Overflow
  • remote
    		•  Arris Huijgen
    2018-01-10 Jungo Windriver 12.5.1 – Local Privilege Escalation
  • local
    		•  Fidus InfoSecurity
    2018-01-10 HPE iMC – dbman ‘RestartDB’ Remote Command Execution (Metasploit)
  • remote
    		•  Metasploit
    2018-01-09 Commvault Communications Service (cvd) – Command Injection (Metasploit)
  • remote
    		•  Metasploit
    2018-01-09 Microsoft Windows – ‘nt!NtQuerySystemInformation (information class 138, QueryMemoryTopologyInformation)’ Kernel Pool Memory Disclosure
  • dos
    		•  Google Security Research
    2018-01-09 Microsoft Windows – ‘nt!NtQueryInformationProcess (information class 76, QueryProcessEnergyValues)’ Kernel Stack Memory Disclosure
  • dos
    		•  Google Security Research
    2018-01-09 Microsoft Edge Chakra JIT – Escape Analysis Bug
  • dos
    		•  Google Security Research
    2018-01-09 Microsoft Edge Chakra – ‘asm.js’ Out-of-Bounds Read
  • dos
    		•  Google Security Research
    2018-01-09 Microsoft Office – ‘Composite Moniker Remote Code Execution
  • local
    		•  Rich Warren
    2018-01-09 Microsoft Edge Chakra JIT – BackwardPass::RemoveEmptyLoopAfterMemOp Does not Insert Branches
  • dos
    		•  Google Security Research
    2018-01-09 Microsoft Edge Chakra JIT – Op_MaxInAnArray and Op_MinInAnArray can Explicitly call User-Defined JavaScript Functions
  • dos
    		•  Google Security Research
    2018-01-08 Microsoft Windows – Local XPS Print Spooler Sandbox Escape
  • local
    		•  Google Security Research
    2018-01-08 BarcodeWiz ActiveX Control < 6.7 - Buffer Overflow (PoC)
  • dos
    		•  hyp3rlinx
    2018-01-08 DiskBoss Enterprise 8.5.12 – Denial of Service
  • dos
    		•  Ahmad Mahfouz
    2018-01-08 Sync Breeze Enterprise 10.1.16 – Denial of Service
  • dos
    		•  Ahmad Mahfouz
    2018-01-08 Disk Pulse Enterprise 10.1.18 – Denial of Service
  • dos
    		•  Ahmad Mahfouz
    2018-01-08 VX Search Enterprise 10.1.12 – Denial of Service
  • dos
    		•  Ahmad Mahfouz