CVE-2022-28067

An incorrect access control issue in Sandboxie Classic v5.55.13 allows attackers to cause a Denial of Service DoS in the Sandbox via a crafted executable...

Sandboxie Classic 安全漏洞

Sandboxie Classic is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. A security vulnerability exists in Sandboxie Classic version 5.55.13 that stems from the presence of an incorrect access control issue. An attacker could exploit the vulnerability to...

The vulnerability of the dwarf::to_string function in the ELF and DWARF v4 file reading library Libelfin, which allows a attacker to cause a service denial

The vulnerability of the dwarf::tostring function in the ELF and DWARFv4 file reading library Libelfin is related to insufficient elimination of special elements in the request. Exploiting this vulnerability allows a remote attacker to trigger a service denial using a specially created ELF file...

The vulnerability of the `line_table::line_table` function in the ELF and DWARFv4 reading library Libelfin allows a attacker to cause a service failure.

The vulnerability of the linetable::linetable function in the ELF and DWARFv4 reading library Libelfin is related to insufficient elimination of special elements in the request. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially created ELF file...

CVE-2022-27966

Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

CVE-2022-27963

Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

CVE-2022-27966

Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

CVE-2022-27963

Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

CVE-2022-27965

Xlpd v7.0.0094 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

CVE-2022-27964

Xmanager v7.0.0096 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

NetSarang Xshell 代码问题漏洞

NetSarang Xshell is an ssh client from NetSarang. A security vulnerability exists in NetSarang Xshell v7.0.0099 and below that allows attackers to execute arbitrary code via a crafted .exe file...

NetSarang Xmanager 代码问题漏洞

NetSarang Xmanager is a powerful and convenient PC X server software package from NetSarang USA. It is used to bring UNIX/Linux desktops to Windows PCs. A security vulnerability exists in NetSarang Xmanager v7.0.0096 and below that allows attackers to execute arbitrary code via a crafted .exe fil...

NetSarang Xlpd 代码问题漏洞

NetSarang Xlpd is the software responsible for remote printing in an Xmanager from NetSarang USA. A security vulnerability exists in NetSarang Xlpd v7.0.0094 and below that allows an attacker to execute arbitrary code via a crafted .exe file...

GNU GCC 资源管理错误漏洞

Gcc is a collection of Gnu compilers. It is mainly used to compile the C and C++ languages. A security vulnerability exists in GNU GCC 11.2, which stems from a stack overflow in nm-new that can be triggered by an attacker via a crafted elf file...

Webroot Secure Anywhere 缓冲区错误漏洞

Webroot Secure Anywhere is a comprehensive antivirus program from Webroot USA. Webroot Secure Anywhere 21.4 suffers from a buffer error vulnerability that stems from an out-of-bounds read vulnerability in IOCTL GetProcessCommand and B03. A specially crafted executable could result in a denial of...

CVE-2021-30360

Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted EXE in the repair folder which runs with the Check Point Remote Access Client...

The vulnerability of the Windows Installer installer service on the Windows operating system allows a hacker to increase their privileges.

The vulnerability of the Windows Installer installer service stems from deficiencies in the handling of group access policies. Exploiting this vulnerability can allow an attacker to enhance their privileges by executing a specially crafted executable file...

DEBIAN-CVE-2020-24821

A vulnerability in the dwarf::cursor::skipform function of Libelfin v0.3 allows attackers to cause a denial of service DOS through a segmentation fault via a crafted ELF file...

PT-2020-3700 · Microsoft · Windows Cdp User Components +1

Name of the Vulnerable Software and Affected Versions: Windows CDP User Components affected versions not specified Description: The issue is related to errors in handling memory objects, which can be exploited by an attacker to elevate their privileges. This can be achieved by running a specially...

The vulnerability of Google Chrome browser installers, related to insecure management of privileges, allows a perpetrator to gain unauthorized access to information and compromise its integrity and accessibility.

The vulnerability of Google Chrome browser installers is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to information and compromise its integrity and availability through a specially created...