Foxit Reader AcroForm removeField Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

[slackware-security] bind

New bind packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.11.6P1-i586-1slack14.2.txz: Upgraded. This update fixes a security issue: The TCP client quota set using the...

Symlink Attack

Overview Affected versions of this package are vulnerable to Symlink Attack snap-confine as included in snapd before 2.39 did not guard against symlink races when performing the chdir to the current working directory of the calling user, aka a "cwd restore permission bypass." Remediation Upgrade...

DEBIAN-CVE-2019-11503

snap-confine as included in snapd before 2.39 did not guard against symlink races when performing the chdir to the current working directory of the calling user, aka a "cwd restore permission bypass."...

The vulnerability of the Internet Explorer browser arises from an operation that goes beyond the buffer in memory, allowing a malicious actor to execute arbitrary code in the context of the current user.

The vulnerability of the Internet Explorer browser arises from an operation that goes beyond the buffer limits in memory. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary code in the context of the current user, using a specially created web page...

The vulnerability of the Internet Explorer browser arises from an operation that goes beyond the buffer in memory, allowing a malicious actor to execute arbitrary code in the context of the current user.

The vulnerability of the Internet Explorer browser arises from an operation that goes beyond the buffer limits in memory. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary code in the context of the current user, using a specially created web page...

[slackware-security] libpng

New libpng packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libpng-1.6.37-i586-1slack14.2.txz: Upgraded. This update fixes security issues: Fixed a use-after-free vulnerability CVE-2019-7317 in...

Foxit Studio Photo EZI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Studio Photo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

Foxit Studio Photo EZI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Studio Photo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

Foxit Studio Photo JPG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Studio Photo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

(Pwn2Own) Xiaomi Mi6 V8 CollectValuesOrEntriesImpl Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Xiaomi Mi6. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

(Pwn2Own) Mozilla Firefox IonMonkey Optimizer Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within IonMonkey. The...

Microsoft Windows AppX Deployment Service Hard Link Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the AppX...

Microsoft Chakra Object Reoptimization Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Chakra. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Microsoft Office Protocol Handler Directory Traversal File Creation Vulnerability

This vulnerability allows remote attackers to create files in arbitrary locations on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

Microsoft Excel Remote Code Execution Vulnerability (CNVD-2020-62338)

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A remote code execution vulnerability exists in Microsoft Excel that stems from the program's failure to properly handle memory objects. A remote attacker can exploit the vulnerability by means of a...

[slackware-security] wget

New wget packages are available for Slackware 14.2 and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/wget-1.20.3-i586-1slack14.2.txz: Upgraded. Fixed a buffer overflow vulnerability: src/iri.cdoconversion: Reallocate the output buffer t...

[slackware-security] openjpeg

New openjpeg packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openjpeg-2.3.1-i586-1slack14.2.txz: Upgraded. Includes many bug fixes including security fixes. Security fix Where to find the new...

Steer clear of tax scams

In the month of February, we saw an average of 300,000 phishing attempts across Microsoft’s browsing platforms daily. Our security experts expect these attempted scams to become increasingly more prevalent through the April 15 Tax Day, especially in the two weeks leading up to it, when about 25...

WordPress Core 5.0.0 - Crop-image Shell Upload (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Crop-image Shell Upload', 'Description' = %q This module exploits a path traversal and a local file inclusion vulnerability on WordPres...