CVE-2015-1305
published 2015-02-06CVE-2015-1305: McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a…
PriorityP335medium6.9CVSS 2.0
AVLACMAuNCCICAC
EXPLOIT
EPSS
0.88%
54.5th percentile
McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted (1) 0x00224014 or (2) 0x0022c018 IOCTL call.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mcafee | data_loss_prevention_endpoint | <= 9.3.300 | — |
CVSS provenance
nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-f4qv-92x7-9234: McAfee Data Loss Prevention Endpoint (DLPe) before 9
ghsa_unreviewed·2022-05-17
CVE-2015-1305 [MEDIUM] GHSA-f4qv-92x7-9234: McAfee Data Loss Prevention Endpoint (DLPe) before 9
McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted (1) 0x00224014 or (2) 0x0022c018 IOCTL call.
Red Hat
webkitgtk: arbitrary code execution and denial of service via a crafted web site (WSA-2015-0001)
vendor_redhat·2015-01-26·CVSS 6.8
CVE-2014-1305 [MEDIUM] webkitgtk: arbitrary code execution and denial of service via a crafted web site (WSA-2015-0001)
webkitgtk: arbitrary code execution and denial of service via a crafted web site (WSA-2015-0001)
WebKit, as used in Apple Safari before 6.1.3 and 7.x before 7.0.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-04-01-1.
Statement: Red Hat Product Security has rated this issue as having Moderate security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Package: webkitgtk (Red Hat Enterprise Linux 6) - Will not fix
Package: webkitgtk3 (Red Hat Enterprise Linux
No detection rules found.
Exploit-DB
Oracle Primavera P6 Enterprise Project Portfolio Management - HTTP Response Splitting
exploitdb·2018-02-16·CVSS 5.4
CVE-2017-10046 [MEDIUM] Oracle Primavera P6 Enterprise Project Portfolio Management - HTTP Response Splitting
Oracle Primavera P6 Enterprise Project Portfolio Management - HTTP Response Splitting
---
# Exploit Title: Oracle Primavera P6 Enterprise Project Portfolio Management HTTP Response Splitting
# Date: 16-02-2018
# Exploit Author: Marios Nicolaides - RUNESEC
# Reviewers: Simon Loizides and Nicolas Markitanis - RUNESEC
# Vendor Homepage: https://www.oracle.com
# Affected Software: Oracle Primavera P6 Enterprise Project Portfolio Management 8.3, 8.4, 15.1, 15.2, 16.1
# Tested on: Oracle Primavera P6 Enterprise Project Portfolio Management (Build: 15.1.0.0 (B0163) 14.03.2015.1305) / Oracle WebLogic 12.1.3.0.0
# CVE: CVE-2017-10046
# Category: Web Application
Overview
The Oracle Primavera Project Portfolio Management application is vulnerable to HTTP
Response Splitting.
The application takes
Exploit-DB
McAfee Data Loss Prevention Endpoint - Arbitrary Write Privilege Escalation
exploitdb·2015-01-30·CVSS 6.9
CVE-2015-1305 [MEDIUM] McAfee Data Loss Prevention Endpoint - Arbitrary Write Privilege Escalation
McAfee Data Loss Prevention Endpoint - Arbitrary Write Privilege Escalation
---
/*
Exploit Title - McAfee Data Loss Prevention Endpoint Arbitrary Write Privilege Escalation
Date - 29th January 2015
Discovered by - Parvez Anwar (@parvezghh)
Vendor Homepage - http://www.mcafee.com
Tested Version - 9.3.200.23
Driver Version - 9.3.200.23 - hdlpctrl.sys
Tested on OS - 32bit Windows XP SP3 and Windows 2003 Server SP2
OSVDB - http://www.osvdb.org/show/osvdb/117345
CVE ID - CVE-2015-1305
Vendor fix url - https://kc.mcafee.com/corporate/index?page=content&id=SB10097
Fixed version - 9.3.400
Fixed driver ver -
*/
#include
#include
#define BUFSIZE 4096
typedef struct _SYSTEM_MODULE_INFORMATION_ENTRY {
PVOID Unknown1;
PVOID Unknown2;
PVOID Base;
ULONG Size;
ULONG Flags;
USHORT Index;
USHORT Na
http://packetstormsecurity.com/files/130177/McAfee-Data-Loss-Prevention-Endpoint-Privilege-Escalation.htmlhttp://www.exploit-db.com/exploits/35953http://www.greyhathacker.net/?p=818http://www.osvdb.org/show/osvdb/117345https://exchange.xforce.ibmcloud.com/vulnerabilities/100602https://kc.mcafee.com/corporate/index?page=content&id=SB10097http://packetstormsecurity.com/files/130177/McAfee-Data-Loss-Prevention-Endpoint-Privilege-Escalation.htmlhttp://www.exploit-db.com/exploits/35953http://www.greyhathacker.net/?p=818http://www.osvdb.org/show/osvdb/117345https://exchange.xforce.ibmcloud.com/vulnerabilities/100602https://kc.mcafee.com/corporate/index?page=content&id=SB10097
2015-02-06
Published