bellick

4 exploits Active since Sep 2009
EIP-2026-117947 EXPLOITDB text WORKING POC
South River Technologies WebDrive 9.02 build 2232 - Local Privilege Escalation
CVE-2009-4606 EXPLOITDB ruby WORKING POC
WebDrive 9.02 build 2232 - Unauthenticated Command Execution via Service Config
South River Technologies WebDrive 9.02 build 2232 installs the WebDrive Service without a security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command.
CVE-2009-3489 EXPLOITDB HIGH text WORKING POC
Adobe Photoshop Elements 8.0 - Incorrect Permission Assignment for Critical Resource in Active File Monitor Service
Adobe Photoshop Elements 8.0 installs the Adobe Active File Monitor V8 service with an insecure security descriptor, which allows local users to (1) stop the service via the stop command, (2) execute arbitrary commands as SYSTEM by using the config command to modify the binPath variable, or (3) restart the service via the start command.
CVSS 7.8
CVE-2009-3744 EXPLOITDB text WORKING POC
EMC RepliStor 6.3.1.3 - Denial of Service via Crafted Packet to TCP Port 7144
rep_serv.exe 6.3.1.3 in the server in EMC RepliStor allows remote attackers to cause a denial of service via a crafted packet to TCP port 7144.