CVE-2018-1207 is a vulnerability that allows unauthenticated file upload and subsequent library execution on the HTTPS web interface of Dell EMC iDRAC7 and iDRAC8 versions before 2.52.52.52. An attacker can exploit this to add a web user for remote admin access.
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions prior to 11.9.0 are vulnerable to privilege escalation. This is due to improper ACLs of the non-default installation directory. An attacker with local access could exploit this by replacing binaries in the installation directory, allowing them to execute arbitrary commands and potentially gain elevated privileges on the system.
A privilege escalation vulnerability exists in the Dell TrueMobile 1300 Wireless System Tray Applet. The software starts with SYSTEM privileges to enable access to the wireless hardware but fails to drop them. This allows a local attacker to manipulate the GUI of the application to spawn arbitrary processes with the privileges of the affected process.
The 'BackImage' ,'ScriptName', 'ModelName' and 'SRC' properties can be used to trigger a buffer overflow condition. The crazytalk4.ocx ActiveX control will load the close CrazyTalk4Native.dll library and, while
The Vulnerability Laboratory Research Team discovered a SQL Injection web vulnerabilities in Dell Kace K1000, Systems Management Appliance.
Remote attackers can gain control of a target TrueMobile 2300 device running firmware versions 3.0.0.8 and 5.1.1.6. The vulnerability is in an administrative component accessed through the web-based control interface. Unauthenticated attackers can reset the administrative credentials without authorization, allowing them to log in and perform malicious actions that could compromise the entire LAN behind the device.
This module exploits a file upload vulnerability in Kace K1000 versions 5.0 to 5.3, 5.4 prior to 5.4.76849 and 5.5 prior to 5.5.90547 which allows unauthenticated users to execute arbitrary commands under the context of the 'www' user. This module also abuses the 'KSudoClient::RunCommandWait' function to gain root privileges. This module has been tested successfully with Dell KACE K1000 version 5.3.
When authenticated as an admin, an attacker can manipulate the URL to access arbitrary files on the server. By substituting the target IP, desired file path, and session-specific vid parameter, the attacker can bypass security controls and view sensitive files.
An attacker can exploit this vulnerability to bypass certain security restrictions and gain unauthorized access to sensitive areas of the application, potentially leading to further attacks.
Doing reverse engineering of the protocol was found several ways to cause a crash in the nvpmgr.exe process. The entire application (all processes) will die and it won't be able to restart again by itself unless someone do it manually.
Services By CQR