Hejap Zairy Al-Sharif

7 exploits Active since Apr 2022
CVE-2022-50971 EXPLOITDB HIGH text WRITEUP
Malwarebytes 4.5 Unquoted Service Path Privilege Escalation
Malwarebytes 4.5 contains an unquoted service path vulnerability in the MBAMService executable that allows local attackers to escalate privileges by injecting malicious code into the system root path. Attackers can place executable files in unquoted path directories that execute with LocalSystem privileges during service startup or system reboot.
CVSS 7.8
CVE-2022-28381 WRITEUP CRITICAL WORKING POC
ALLMediaServer <1.6 - Buffer Overflow
Mediaserver.exe in ALLMediaServer 1.6 has a stack-based buffer overflow that allows remote attackers to execute arbitrary code via a long string to TCP port 888, a related issue to CVE-2017-17932.
CVSS 9.8
CVE-2022-50923 EXPLOITDB HIGH text WRITEUP
Cobian Backup 0.9 - Privilege Escalation
Cobian Backup 0.9 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the CobianReflectorService to inject malicious code that will execute with LocalSystem permissions during service startup.
CVSS 7.8
CVE-2022-50922 EXPLOITDB CRITICAL python WORKING POC
Audio Conversion Wizard v2.01 - Buffer Overflow
Audio Conversion Wizard v2.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting memory with a specially crafted registration code. Attackers can generate a payload that overwrites the application's memory stack, potentially enabling remote code execution through a carefully constructed input buffer.
CVSS 9.8
CVE-2022-28381 METASPLOIT CRITICAL ruby WORKING POC
ALLMediaServer <1.6 - Buffer Overflow
Mediaserver.exe in ALLMediaServer 1.6 has a stack-based buffer overflow that allows remote attackers to execute arbitrary code via a long string to TCP port 888, a related issue to CVE-2017-17932.
CVSS 9.8
EIP-2026-116965 EXPLOITDB text WRITEUP
Cloudflare WARP 1.4 - Unquoted Service Path
EIP-2026-117179 EXPLOITDB text WRITEUP
Foxit PDF Reader 11.0 - Unquoted Service Path