Privilege Escalation Archives - Page 3 of 3

SSD Advisory – Trend Micro Interscan Web Security Virtual Appliance Multiple Vulnerabilities

Leave a Comment / Vulnerability publication / By SSD Secure Disclosure technical team

Vulnerabilities Summary The following advisory describes three (3) vulnerabilities found in Trend Micro Interscan Web Security Virtual Appliance version 6.5. “The Trend Micro Hybrid Cloud Security solution, powered by XGen security, delivers a blend of cross-generational threat defense techniques that have been optimized to protect physical, virtual, and cloud workloads.” The vulnerabilities found in Trend Micro …

SSD Advisory – Trend Micro Interscan Web Security Virtual Appliance Multiple Vulnerabilities Read More »

SSD Advisory – Serviio Media Server Multiple Vulnerabilities

1 Comment / Vulnerability publication / By SSD Secure Disclosure technical team

Vulnerabilities Summary The following advisory describes a five (5) vulnerabilities found in Serviio Media Server. Affected version: 1.8.0.0 PRO, 1.7.1, 1.7.0, 1.6.1. Serviio is a free media server. It allows you to stream your media files (music, video or images) to renderer devices (e.g. a TV set, Bluray player, games console or mobile phone) on …

SSD Advisory – Serviio Media Server Multiple Vulnerabilities Read More »

SSD Advisory – Ubuntu LightDM Guest Account Local Privilege Escalation

Leave a Comment / Vulnerability publication / By SSD Secure Disclosure technical team

Vulnerability Summary The following advisory describes a local privilege escalation via LightDM found in Ubuntu versions 16.10 / 16.04 LTS. Ubuntu is an open source software platform that runs everywhere from IoT devices, the smartphone, the tablet and the PC to the server and the cloud. LightDM is an X display manager that aims to be lightweight, …

SSD Advisory – Ubuntu LightDM Guest Account Local Privilege Escalation Read More »

SSD Advisory – Sentora Web Hosting Control Panel Multiple Vulnerabilities

Leave a Comment / Vulnerability publication / By SSD Secure Disclosure technical team

Vulnerabilities Summary The following advisory describes two (2) vulnerabilities found in Sentora Web Hosting Control Panel that lead to remote code execution. Sentora is a free to download and use web hosting control panel developed for Linux, UNIX and BSD based servers or computers. The Sentora software can turn a domestic or commercial server into …

SSD Advisory – Sentora Web Hosting Control Panel Multiple Vulnerabilities Read More »

SSD Advisory – NCurses 5.9 Local Privilege Escalation

Leave a Comment / Vulnerability publication / By SSD Secure Disclosure technical team

Vulnerability Summary The following advisory describes an Local Privilege Escalation vulnerability in NCurses, version 5.9. Credit An independent security researcher Dawid Golunski (https://legalhackers.com/) has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program Vendor Responses NCurses has released a patch to address the vulnerability. Thomas Dickey has also added the following statement “I don’t …

SSD Advisory – NCurses 5.9 Local Privilege Escalation Read More »

SSD Advisory – Cisco MSE Preauthentication Remote Code Execution

Leave a Comment / Vulnerability publication / By SSD Secure Disclosure technical team

Vulnerabilities Summary Cisco Mobile Services Engine (MSE) is a platform that helps organizations increase visibility into the network, customize location-based mobile services, and strengthen security. The following advisory describes Cisco MSE Pre-Authentication Code Execution (Cisco MSE version 8.0.100.0). Credit An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program. Vendor …

SSD Advisory – Cisco MSE Preauthentication Remote Code Execution Read More »

SSD Advisory – Kloxo Sensitive Information Disclosure

Leave a Comment / Vulnerability publication / By SSD Secure Disclosure technical team

Introduction Kloxo (formerly known as Lxadmin) is a free, opensource web hosting control panel for the Red Hat and CentOS Linux distributions. Vulnerability Details Kloxo contains a vulnerability that could allow an authenticated remote attacker (client or auxiliary) to get almost any info from DB, for example passwords of other users (including administrators), credentials for …

SSD Advisory – Kloxo Sensitive Information Disclosure Read More »

SSD Advisory – AppLock Multiple Vulnerabilities

9 Comments / Vulnerability publication / By SSD Secure Disclosure technical team

SecuriTeam Secure DisclosureSecuriTeam Secure Disclosure (SSD) provides the support you need to turn your experience uncovering security vulnerabilities into a highly paid career. SSD was designed by researchers for researchers and will give you the fast response and great support you need to make top dollar for your discoveries.IntroductionAppLock is Most downloaded app lock in …

SSD Advisory – AppLock Multiple Vulnerabilities Read More »

Privilege Escalation

SSD Advisory – Trend Micro Interscan Web Security Virtual Appliance Multiple Vulnerabilities

SSD Advisory – Serviio Media Server Multiple Vulnerabilities

SSD Advisory – Ubuntu LightDM Guest Account Local Privilege Escalation

SSD Advisory – Sentora Web Hosting Control Panel Multiple Vulnerabilities

SSD Advisory – NCurses 5.9 Local Privilege Escalation

SSD Advisory – Cisco MSE Preauthentication Remote Code Execution

SSD Advisory – Kloxo Sensitive Information Disclosure

SSD Advisory – AppLock Multiple Vulnerabilities

Get in touch

?

?

Get in touch