# Exploit Title: Global Registration Service 1.0.0.3 - 'GREGsvc.exe' Unquoted Service Path
# Discovery by: Emmanuel Lujan
# Vendor Homepage: https://www.acer.com/ac/en/US/content/home
# Tested Version: 1.0.0.3
# Vulnerability Type: Unquoted Service Path
# Tested on OS: Windows 7 Home Premium x64
# Step to discover Unquoted Service Path:
C:\>wmic service get name, pathname, displayname, startmode | findstr /i "Auto" | findstr /i /v "C:\Windows\\" | findstr /i /v """
GREGService GREGServ
ice C:\Program Files (x86)\Acer\Registration\G
REGsvc.exe Auto
# Service info:
C:\>sc qc GregService
[SC] QueryServiceConfig SUCCESS
SERVICE_NAME: GREGService
TYPE : 10 WIN32_OWN_PROCESS
START_TYPE : 2 AUTO_START
ERROR_CONTROL : 1 NORMAL
BINARY_PATH_NAME : C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
LOAD_ORDER_GROUP :
TAG : 0
DISPLAY_NAME : GREGService
DEPENDENCIES :
SERVICE_START_NAME : LocalSystem
#Exploit:
A successful attempt would require the local user to be able to insert their code in the system root path undetected by the OS or other security applications where it could potentially be executed during application startup or reboot. If successful, the local user's code would execute with the elevated privileges of the application.
CHINA lied to the world about coronavirus and hid its true infection rate to “protect” its image, damning leaked files allegedly reveal.
The explosive secret data, from China’s own health chiefs, appears to expose a catalogue of cover-ups and blunders which hid the true scale of the killer disease that has since killed 1.5 million people.
CNN said it had investigated the treasure trove of information, contained in a 117-page report marked “internal document, please keep confidential”.
The leaked files expose China’s botched coronavirus response, including how Beijing downplayed data, taking weeks to diagnose new cases.
Experts said China may have worked to try and suppress information to try and “protect its image” worldwide.
The broadcaster found:
China’s system took on average 23 days to diagnose confirmed patients.
Testing failures meant most of those swabbed for Covid received negative results until January 10.
Underfunding, understaffing, poor morale and bureaucratic red tape hindered China’s early warning system.
“It was clear they did make mistakes, and not just mistakes that happen when you’re dealing with a novel virus – also bureaucratic and politically-motivated errors in how they handled it,” said Yanzhong Huang.
The senior fellow for global health at the Council on Foreign Relations, who has written extensively on public health in China told CNN: “These had global consequences.”
Andrew Mertha, director of the China Studies Program at John Hopkins University, told the New York Post: “China had an image to protect internationally, and lower-ranking officials had a clear incentive to under-report — or to show their superiors that they were under-reporting — to outside eyes.”
China delayed releasing information
China infamously delayed releasing coronavirus information, frustrating the many throughout the pandemic which has so far resulted in nearly 1.5million deaths.
The apparent cover-up is laid bare in the secret files, passed on by a concerned whistleblower.
It reportedly shows that local health bosses in Hubei, where the virus was first detected, listed a total of 5,918 newly detected Covid cases on February 10.
Where Is WUHAN?
That figure – never publicly released – is more than twice the official public number of confirmed cases admitted by China.
Beijing has recently blamed the start of Covid on India, Spain, and Italy.
In May, China’s ambassador to the UK claimed his country was a “victim” of the coronavirus pandemic – and denied claims of a cover-up.
But, a large and previously undisclosed outbreak of influenza hit Hubei province in early December, the documents show.
This coincides with the first known patient showing symptoms of Covid in Hubei’s provincial capital of Wuhan on December 1, 2019.
The influenza “epidemic” caused flu cases to rocket 20 times the level recorded the previous year, the documents say.
WHISTLEBLOWER
Apart from hitting Wuhan, the influenza outbreak made a significant impact on the neighbouring cities of Yichang and Xianning.
CNN says: “It remains unclear what impact or connection the influenza spike had on the Covid-19 outbreak.”
The files were presented to the broadcaster by an anonymous whistleblower.
The person said they worked inside the Chinese healthcare system, and wanted to expose the truth that had been censored.
They also wanted to honour colleagues who had previously spoken out.
The information has been verified by six independent experts who examined the veracity of their content, the broadcaster reported.
Throughout January, the World Health Organisation publicly praised China for what it called a speedy response to the new coronavirus.
It repeatedly thanked the Chinese government for sharing the genetic map of the virus “immediately,” and said its work and commitment to transparency were “very impressive, and beyond words.”
Despite the plaudits, China in fact sat on releasing the genetic map, or genome, of the virus for more than a week after three different government labs had fully decoded the information, said the Associated Press.
Chinese government labs only released the genome after another lab published it ahead of authorities on a virologist website on January 11.
China stalled for at least two weeks more on providing WHO with detailed data on patients and cases at a time when the outbreak arguably might have been dramatically slowed.
This revelation prompted US President Donald Trump to blast WHO for allegedly colluding with China to hide the extent of the coronavirus crisis.
He cut ties with the organisation.
But, WHO was kept in the dark as China gave it the minimal information required by law, AP says.
Also, China deliberately didn’t warn public of the looming pandemic for six key days.
Top Chinese officials secretly determined they were likely facing a pandemic from a new virus, AP found.
That delay from January 14 to January 20 coincided with millions travelling for Lunar New Year celebrations.
But, by January 20, “more than 3,000 people had been infected during almost a week of public silence”, the AP found.
# Exploit Title: Joomla! Component GMapFP 3.5 - Unauthenticated Arbitrary File Upload
# Google Dork: inurl:''com_gmapfp''
# Exploit Author: ThelastVvV
# Vendor Homepage: https://gmapfp.org/
# Version:Version J3.5 /J3.5free
# Tested on: Ubuntu
# CVE: CVE-2020-23972
# Description:
An attacker can access the upload function of the application without authenticating to the application and also can upload files due the issues of unrestricted file uploads which can be bypassed by changing the content-type and name file too double extensions
# PoC:
Version J3.5
http://127.0.0.1/index.php?option=com_gmapfp&controller=editlieux&tmpl=component&task=edit_upload
-Once the attacker can locate the unauthenticated file upload form then the attacker can bypass the restriction by changing content-type and name file double extensions file.html.gif then can open file.html
# Impact
the attacker can upload malicious files can cause defacement of the site or uploading large amount of file til causes denial of service attack to Webapp/Server
# Dir File Path:
http://127.0.0.1///images/stories/gmapfp/test.html.gif
http://127.0.0.1///images/stories/gmapfp/test.html
http://127.0.0.1///images/gmapfp/test2.html.gif
http://127.0.0.1///images/gmapfp/test2.html.gif
Tyler and Cameron Winklevoss told CNBC on Monday that bitcoin will skyrocket to $500,000 within the next decade and surpass gold as a store of value.
“Our thesis is that bitcoin is gold 2.0, that it will disrupt gold, and if it does that, it has to have a market cap of 9 trillion, so we think it could price one day at $500,000 of bitcoin,” Tyler Winklevoss said.
The cofounders of Gemini explained that Bitcoin is a better store of value than gold and offers higher returns.
Bitcoin climbed to a new record high today, bringing its year-to-date gain to 177%.
Tyler and Cameron Winklevoss told CNBC that bitcoin will skyrocket to $500,000 within the next decade as it surpasses gold as a store of value.
The cofounders of Gemini appeared on CNBC shortly before bitcoin jumped 8.7% to a record high on Monday. The coin now trades at over $19,000, but the Winklevoss’s said bitcoin still has a long way to run.
“Our thesis is that bitcoin is gold 2.0, that it will disrupt gold, and if it does that, it has to have a market cap of 9 trillion, so we think it could price one day at $500,000 of bitcoin,” Tyler Winklevoss said. “So at $18,000 bitcoin, it’s a hold or at least if you don’t have any, it’s a buy opportunity because we think there’s a 25x from here.”
Bitcoin Soar
As of Monday, Bitcoin has sky rocketed over 177% year-to-date. Cameron Winklevoss explained that the surge is due to an increasing number of investors realizing that bitcoin is the best defense against inflation. While gold has historically been the go-to inflation hedge, bitcoin offers a much higher return, he said.
“A lot of people are realizing that bitcoin is the best defense and offers the opportunity for an asymmetric return of something like 25 to 40x from here, and I don’t think there’s an asset in the universe that can credibly offer that kind of potential and protect against inflation,” said Cameron Winklevoss.
The brothers added that bitcoin is an emergent store of value and doesn’t need to be a ubiquitous medium of exchange to continue to grow. Tyler Winklevoss explained that “no one uses gold to buy coffee,” and yet the precious metal has a market capitalization of $9 trillion because investors use it as a store of value. Bitcoin will grow to be a better store of value, particularly because it’s more durable and easier to transport than gold, the investor said.
If bitcoin can also be used as a currency, which isn’t off the table, it could surge even higher than $500,000, said Tyler Winklevoss.
Earlier This Year
Back in August, he wrote a blog post titled “The Case for $500k Bitcoin,” where he explained that bitcoin is ultimately the only long-term protection against inflation because there are fundamental problems with gold, oil, and the US dollar as stores of value.
A staggering $ 96.7 MILLION bitcoin stolen from crypto exchange Bitfinex in a 2016 hack was moved on Monday.
The 14 separate transactions, tracked by Twitter-based alert service Whale Alert, show that 5045.48 BTC in total was transferred. The movements come more than two months since the most recent such occurrence when more than $26 million in bitcoin at then-current prices was transferred.
Bitfinex was hacked in August 2016, and nearly 120,000 BTC was stolen during that security breach. That incident led Bitfinex to socialize the losses among its user base and later create a token, dubbed BFX, to reimburse those who experienced funds haircuts.
In August, Bitfinex offered a public reward in an effort to spur its recovery efforts.
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of the cookies. Cookie & Privacy Policy
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
