22 matches found
EUVD-2014-9330
Malware in sbrugna...
Dozer command execution vulnerability
Dozer is a mapper for Java beans that copies data from one object to another. A security vulnerability exists in Dozer that stems from the program's use of reflection-based methods for type conversion. The vulnerability can be exploited by a remote attacker to execute arbitrary code using special...
Arbitrary Code Execution
dozer is vulnerable to arbitrary code execution attacks. It incorrectly uses a reflection-based approach to type conversion which allows attackers to execute code through serialized objects...
CVE-2014-9515
Dozer improperly uses a reflection-based approach to type conversion, which might allow remote attackers to execute arbitrary code via a crafted serialized object...
Type confusion
Dozer improperly uses a reflection-based approach to type conversion, which might allow remote attackers to execute arbitrary code via a crafted serialized object...
CVE-2014-9515
Dozer improperly uses a reflection-based approach to type conversion, which might allow remote attackers to execute arbitrary code via a crafted serialized object...
CVE-2014-9515
Dozer improperly uses a reflection-based approach to type conversion, which might allow remote attackers to execute arbitrary code via a crafted serialized object...
CVE-2014-9515
CVE-2014-9515 affects Dozer: the vulnerability stems from reflection-based type conversion during object mapping, enabling remote code execution via specially crafted serialized objects. The NVD entry lists a high/critical impact (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H; base scores up to 9.8) with n...
PT-2017-6361 · Apache · Dozer
Name of the Vulnerable Software and Affected Versions: Dozer affected versions not specified Description: The issue is related to Dozer's improper use of a reflection-based approach to type conversion. This might allow remote attackers to execute arbitrary code via a crafted serialized object...
LINE Dozer - Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application LINE Dozer published at the 'play' market has multiple vulnerabilities...
Garfield Cookie Dozer - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Garfield Cookie Dozer published at the 'play' market has multiple vulnerabilities...
Jungle Dozer: Coin Story - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Jungle Dozer: Coin Story published at the 'play' market has multiple vulnerabilities...
Slot Dozer - Base64 encoded String, Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Slot Dozer published at the 'play' market has multiple vulnerabilities...
Farm Dozer: Coin Carnival - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Farm Dozer: Coin Carnival published at the 'play' market has multiple vulnerabilities...
Coin Dozer Halloween - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Coin Dozer Halloween published at the 'play' market has multiple vulnerabilities...
Cookie Dozer - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Cookie Dozer published at the 'play' market has multiple vulnerabilities...
Coin Dozer: Seasons - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Coin Dozer: Seasons published at the 'play' market has multiple vulnerabilities...
Coin Dozer - Free Prizes - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Coin Dozer - Free Prizes published at the 'play' market has multiple vulnerabilities...
CASH DOZER EUR - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application CASH DOZER EUR published at the 'play' market has multiple vulnerabilities...
Kingdom Coins - Dozer of Coin - Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Kingdom Coins - Dozer of Coin published at the 'play' market has multiple vulnerabilities...