OffensiveOceloot/advisories

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-26130 ↗	Oct 28, 2020Wednesday, 28 October 2020, 18:15	7.8 HIGH	7.2 HIGH
Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1.66. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenTFTPServerMT.exe or the OpenTFTPServerSP.exe binary.
CVE-2020-26131 ↗	Oct 28, 2020Wednesday, 28 October 2020, 18:15	7.8 HIGH	7.2 HIGH
Issues were discovered in Open DHCP Server (Regular) 1.75 and Open DHCP Server (LDAP Based) 0.1Beta. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the OpenDHCPServer.exe (Regular) or the OpenDHCPLdap.exe (LDAP Based) binary.
CVE-2020-26132 ↗	Oct 28, 2020Wednesday, 28 October 2020, 18:15	7.8 HIGH	7.2 HIGH
An issue was discovered in Home DNS Server 0.10. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the HomeDNSServer.exe binary.
CVE-2020-26133 ↗	Oct 28, 2020Wednesday, 28 October 2020, 18:15	7.8 HIGH	7.2 HIGH
An issue was discovered in Dual DHCP DNS Server 7.40. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the DualServer.exe binary.
CVE-2020-17381 ↗	Oct 21, 2020Wednesday, 21 October 2020, 19:15	7.3 HIGH	4.4 MEDIUM
An issue was discovered in Ghisler Total Commander 9.51. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the %SYSTEMDRIVE%\totalcmd\TOTALCMD64.EXE binary.