Backdoor.Win32.Antilam.14.d Code Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/a53351e8fa0cb4f7db3d0250387a0e4f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Antilam.14.d Vulnerability: Unauthenticated Remote Command Execution Description: The...

SUSE: Security Advisory (SUSE-SU-2016:3048-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Greensock Gsap Security Vulnerability

Greensock Gsap is a Javascript-based toolkit from the Greensock team for quickly creating animated effects in the browser. A security vulnerability exists in gsap before 3.6.0, no information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announceme...

Debian DLA-2491-1 : openexr security update

Two issues were discovered in openexr, a set of tools to manipulate OpenEXR image files, often in the computer-graphics industry for visual effects and animation. For Debian 9 'Stretch', these problems has been fixed in version 2.2.0-11+deb9u2. We recommend that you upgrade your openexr packages...

[SECURITY] [DLA 2491-1] openexr security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2491-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb December 13, 2020 https://wiki.debian.org/LTS -...

Vulnerability Spotlight: Multiple vulnerabilities in Pixar OpenUSD affects some versions of macOS

Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities. Blog by Aleksandar Nikolic and Jon Munshaw. Pixar OpenUSD contains multiple vulnerabilities that attackers could exploit to carry out a variety of malicious actions. OpenUSD stands for “Open Universal Scene Descriptor.” Pixar use...

Pixar OpenUSD Binary File Format Compressed Value Reps Code Execution Vulnerabilities

Summary A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 while parsing compressed value rep arrays in binary USD files. A specially crafted malformed file can trigger a heap overflow, which can result in remote code execution. To trigger this vulnerability, the victim needs to acce...

CVE-2020-9747

Adobe Animate version 20.5 and earlier is affected by a double free vulnerability when parsing a crafted .fla file, which could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit...

Get Lifetime Access to 1000+ Premium Online Training Courses for Just $59

"In today's knowledge economy, continual learning is an imperative." — Those words from Aytekin Tank, the founder of JotForm, are particularly important for anyone working in IT or development. With over 1,000 premium courses complete list from top instructors, StackSkills Unlimited provides...

Adobe Patches Critical RCE Flaw in Character Animator App

Adobe has issued an out-of-band patch for a critical flaw in Adobe Character Animator, its application for creating live motion-capture animation videos. The flaw can be exploited by a remote attacker to execute code on affected systems. The flaw CVE-2020-9586 is found in versions 3.2 and earlier...

openSUSE Security Update : opera (openSUSE-2020-635)

This update for opera fixes the following issues : Opera was updated to version 68.0.3618.63 - CHR-7889 Update chromium on desktop-stable-81-3618 to 81.0.4044.122 - CHR-7896 Update chromium on desktop-stable-81-3618 to 81.0.4044.129 - DNA-85287 Set standard spacing for Yandex prompt - DNA-85416 M...

Use After Free

kdegraphics is vulnerable to Use After Free. A use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKit allows a remote attacker to execute arbitrary code or cause a denial of service heap corruption and application crash via an SVG animation element...

CVE-2019-9796

A use-after-free vulnerability can occur when the SMIL animation controller incorrectly registers with the refresh driver twice when only a single registration is expected. When a registration is later freed with the removal of the animation controller element, the refresh driver incorrectly leav...

The vulnerability of the SMIL animation controller in Thunderbird email clients and Firefox/Firefox ESR browsers allows a perpetrator to gain unauthorized access to information and compromise its integrity.

The vulnerability of the SMIL animation controller in Thunderbird email clients and Firefox and Firefox ESR browsers is related to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to gain unauthorized access to information and compromise its integrity...

formation-animation.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1100613 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting formation-animation.com...

Platform update for Windows 7 SP1 and Windows Server 2008 R2 SP1

Platform update for Windows 7 SP1 and Windows Server 2008 R2 SP1 Summary This article describes a platform update for Windows 7 Service Pack 1 SP1 and Windows Server 2008 R2 SP1. This update improves the range and performance of the following graphics and imaging components: Direct2D DirectWrite...

The vulnerability of the animation reproduction function in Blender’s software for creating 3D computer graphics is caused by a full-integer overflow, allowing an attacker to execute arbitrary code.

The vulnerability of the animation reproduction function in Blender’s 3D computer graphics software is caused by a numerical overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created AVI file...

The vulnerability of the animation reproduction function in Blender’s software for creating 3D computer graphics is caused by a full-integer overflow, allowing an attacker to execute arbitrary code.

The vulnerability of the animation reproduction function in Blender’s 3D computer graphics software is caused by a numerical overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created AVI file...

CVE-2011-1803

CVE-2011-1803 is a vulnerability in WebKit’s SVGSMILElement handling (third_party/WebKit/Source/WebCore/svg/animation/SVGSMILElement.h) that can occur in Google Chrome before Blink M11/M12 when trying to access a removed SMIL element. The issue is reported across multiple corroborating sources an...

CVE-2011-2336

An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControllerPrivate that signal when a hardware animation starts...