Design/Logic Flaw

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When specifying a program to elevate, it can typically be found within the Program Files x86 folder and therefore uses the %ProgramFilesx86% environment variable. However, when this same policy gets pushed to a...

Internet Bug Bounty: An integer overflow bug in php_str_to_str_ex() led arbitrary code execution.

Description ------------------ An integer overflow vulnerability exists in PHP-7.1.0 due to missing check of size before calling zendstringalloc in ext/standard/string.c:3234. Code: newstr = zendstringalloccount strlen - needlelen + ZSTRLENhaystack, 0; All variables including strlen, needlelen,...