Microsoft Hyper-V vmswitch.sys Proof Of Concept
Authored by 0vercl0k | Site github.com
This is a proof of concept for CVE-2021-28476 ("Hyper-V Remote Code Execution Vulnerability"), an arbitrary memory read in vmswitch.sys (network virtualization service provider) patched...
Realtek RTKVHD64.sys Out-Of-Bounds Access
Authored by 0vercl0k | Site github.com
Proof of concept exploit for an out-of-bounds access vulnerability in the Realtek RTKVHD64.sys, leading to pool corruption.
advisories | CVE-2021-32537
Windows TCP/IP Denial Of Service
Authored by 0vercl0k | Site github.com
This is a proof of concept for a Windows TCP/IP denial of service vulnerability due to a NULL dereference in tcpip.sys. This was patched...
XNU Network Stack Kernel Heap Overflow
Authored by Google Security Research, ianbeer
XNU suffers from a network stack kernel heap overflow due to an out-of-bounds memmove in 6lowpan. Proof of concept code included.
advisories | CVE-2020-9967, CVE-2021-30736
Microsoft Windows CreateProcessWithLogon Write Restricted Service Privilege Escalation
Authored by James Forshaw, Google Security Research
Microsoft Windows has an issue where you can use the CreateProcessWithLogon API to escape a write restricted service and achieve full write access...
Schneider Electric EVlink Charging Stations Authentication Bypass / Code Execution
Authored by Stefan Viehbock | Site sec-consult.com
Multiple Schneider Electric EVlink Charging Stations suffers from authentication bypass and remote code execution vulnerabilities.
advisories | CVE-2021-22707, CVE-2021-22708
Change Mirror Download
SEC Consult Vulnerability Lab...
osCommerce 2.3.4.1 Remote Code Execution
Authored by Bryan Leong
osCommerce version 2.3.4.1 remote code execution exploit. This is a variant of the original discovery of code execution in this version by Simon Scannell in March...
ForgeRock / OpenAM Jato Java Deserialization
Authored by Spencer McIntyre, Michael Stepankin, bwatters-r7, jheysel-r7 | Site metasploit.com
This Metasploit module leverages a pre-authentication remote code execution vulnerability in the OpenAM identity and access management solution. The...
VMware vCenter Server Virtual SAN Health Check Remote Code Execution
Authored by wvu, Ricter Z | Site metasploit.com
This Metasploit module exploits Java unsafe reflection and SSRF in the VMware vCenter Server Virtual SAN Health Check plugin's ProxygenController class to...
Backdoor.Win32.Surila.j Authentication Bypass
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Surila.j malware suffers from an authentication bypass vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/b1cec4b806c71c82bbd9002bdaf21d1f_B.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Surila.jVulnerability: Authentication BypassDescription:...
