k0keoyo

13 exploits Active since Jan 2012
CVE-2015-2546 NOMISEC HIGH WORKING POC
Microsoft Windows - Local Privilege Escalation via Win32k Memory Corruption
The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption Elevation of Privilege Vulnerability," a different vulnerability than CVE-2015-2511, CVE-2015-2517, and CVE-2015-2518.
22 stars
CVSS 8.2
CVE-2017-0038 NOMISEC MEDIUM WORKING POC
Windows GDI - Information Disclosure via Crafted EMF File
gdi32.dll in Graphics Device Interface (GDI) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information from process heap memory via a crafted EMF file, as demonstrated by an EMR_SETDIBITSTODEVICE record with modified Device Independent Bitmap (DIB) dimensions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-3216, CVE-2016-3219, and/or CVE-2016-3220.
6 stars
CVSS 5.5
CVE-2012-0003 NOMISEC HIGH NO CODE
Windows Multimedia Library - Remote Code Execution via Crafted MIDI File
Unspecified vulnerability in winmm.dll in Windows Multimedia Library in Windows Media Player (WMP) in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows remote attackers to execute arbitrary code via a crafted MIDI file, aka "MIDI Remote Code Execution Vulnerability."
2 stars
CVSS 8.1
CVE-2017-16948 WRITEUP HIGH WORKING POC
TG Soft Vir.IT eXplorer Lite <8.5.42 - DoS
TG Soft Vir.IT eXplorer Lite 8.5.42 allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a NULL value in a 0x82730008 DeviceIoControl request to \\.\Viragtlt.
CVSS 7.8
CVE-2017-17049 WRITEUP HIGH WORKING POC
TG Soft Vir.IT eXplorer Lite <8.5.42 - DoS
TG Soft Vir.IT eXplorer Lite 8.5.42 allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a NULL value in a 0x82730010 DeviceIoControl request to \\.\Viragtlt.
CVSS 7.8
CVE-2017-17050 WRITEUP HIGH WORKING POC
TG Soft Vir.IT eXplorer Lite <8.5.42 - DoS
TG Soft Vir.IT eXplorer Lite 8.5.42 allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a NULL value in a 0x82730020 DeviceIoControl request to \\.\Viragtlt.
CVSS 7.8
CVE-2017-17112 WRITEUP HIGH WORKING POC
IKARUS anti-virus <2.16.15 - Memory Corruption
ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a Pool Corruption vulnerability via a 0x83000058 DeviceIoControl request.
CVSS 7.8
CVE-2017-17113 WRITEUP MEDIUM WORKING POC
IKARUS anti-virus <2.16.15 - Use After Free
ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a NULL pointer dereference via a 0x830000c4 DeviceIoControl request.
CVSS 5.5
CVE-2017-17114 WRITEUP HIGH WORKING POC
IKARUS anti-virus <2.16.15 - Memory Corruption
ntguard.sys and ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 have a Memory Corruption vulnerability via a 0x83000084 DeviceIoControl request.
CVSS 7.8
CVE-2017-17464 WRITEUP CRITICAL WORKING POC
K7 Antivirus 15.1.0309 - NULL Pointer Dereference via 0x95002570 DeviceIoControl Request
K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x95002570 DeviceIoControl request.
CVSS 9.8
CVE-2017-17465 WRITEUP CRITICAL WORKING POC
K7 Antivirus 15.1.0309 - NULL Pointer Dereference via 0x95002574 DeviceIoControl Request
K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x95002574 DeviceIoControl request.
CVSS 9.8
CVE-2017-17683 WRITEUP HIGH WORKING POC
Panda Global Protection 17.0.1 - Denial of Service via PSMEMDriver DeviceIoControl Request
Panda Global Protection 17.0.1 allows a system crash via a 0xb3702c44 \\.\PSMEMDriver DeviceIoControl request.
CVSS 7.5
CVE-2017-17684 WRITEUP HIGH WORKING POC
Panda Global Protection 17.0.1 - Denial of Service via PSMEMDriver DeviceIoControl Request
Panda Global Protection 17.0.1 allows a system crash via a 0xb3702c04 \\.\PSMEMDriver DeviceIoControl request.
CVSS 7.5