Exploit for CVE-2023-38820

DLL-Planting-Slack-4.33.73-CVE-2023-38820 DLL Planting in the...

Keysight Technologies N6854A Geolocation server 代码问题漏洞

Keysight Technologies N6854A Geolocation server is a geolocation server from Keysight Technologies. A security vulnerability exists in Keysight Geolocation Server v2.4.2 and prior versions, which can be exploited by a low-privileged attacker to load a DLL with system privileges by creating a loca...

CVE-2023-37849

A DLL hijacking vulnerability in Panda Security VPN for Windows prior to version v15.14.8 allows attackers to execute arbitrary code via placing a crafted DLL file in the same directory as PANDAVPN.exe...

Panda Security VPN 代码问题漏洞

Panda Security VPN is a VPN software from Panda Security. A security vulnerability exists in versions prior to Panda Security VPN v15.14.8 that stems from the presence of a DLL hijacking vulnerability that allows attackers to execute arbitrary code by placing a crafted DLL file in the same...

New Mockingjay Process Injection Technique Could Let Malware Evade Detection

A new process injection technique dubbed Mockingjay could be exploited by threat actors to bypass security solutions to execute malicious code on compromised systems. "The injection is executed without space allocation, setting permissions or even starting a thread," Security Joes researchers...

CVE-2023-28080

PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains DLL Hijacking Vulnerabilities. A regular user non-admin can exploit these issues to potentially escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM...

CVE-2023-26818

Telegram 9.3.1 and 9.4.0 allows attackers to access restricted files, microphone ,or video recording via the DYLDINSERTLIBRARIES flag...

Telegram 安全漏洞

Telegram is an instant messaging mobile application. A security vulnerability exists in Telegram versions 9.3.1, 9.4.0, which stems from a problem with the DYLDINSERTLIBRARIES flag, which can be exploited by an attacker to gain access to restricted files, microphones, or video recordings...

CVE-2023-25005

A maliciously crafted DLL file can be forced to read beyond allocated boundaries in Autodesk InfraWorks 2023, and 2021 when parsing the DLL files could lead to a resource injection vulnerability...

Fedora: Security Advisory for libkrun (FEDORA-2023-cc21019773)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-48481

In JetBrains Toolbox App before 1.28 a DYLIB injection on macOS was possible...

JetBrains Toolbox 安全漏洞

JetBrains Toolbox is a JetBrains product management application from the Czech company JetBrains. A security vulnerability exists in JetBrains Toolbox App versions prior to 1.28. An attacker exploited the vulnerability to perform a DYLIB injection attack...

CVE-2023-22354

Datakit CrossCadWarex64.dll contains an out-of-bounds read past the end of an allocated buffer while parsing a specially crafted SLDPRT file. This vulnerability could allow an attacker to disclose sensitive information...

Qualys Cloud Agent 代码问题漏洞

Qualys Cloud Agent is a lightweight application from Qualys USA, Inc. A single agent for real-time, global visibility and response. A security vulnerability exists in Qualys Cloud Agent versions prior to 4.5.3.1, which stems from a malicious copy of the Dependency Link Library DLL that allows an...

Trend Micro Security 代码问题漏洞

Trend Micro Security is an antivirus software from Trend Micro. A security vulnerability exists in Trend Micro Security that stems from the presence of a DLL hijacking vulnerability that could result in unsafe loading of dynamic link libraries. Affected products and versions: Trend Micro Security...

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE by allowing an attacker to load a runtime DLL from an unexpected location. Remediation Upgrade Microsoft.NETCore.App.Runtime.win-x64 to version 6.0.16, 7.0.5 or higher. References - Advisory - GitHub Commit -...

USN-6006-1 dotnet6, dotnet7 vulnerability

It was discovered that .NET did not properly manage dll files. An attacker could potentially use this issue to execute arbitrary code...

UBUNTU-CVE-2023-28260

.NET DLL Hijacking Remote Code Execution Vulnerability...

PT-2023-15620 · Acuant · Acuant Acufill Sdk

Name of the Vulnerable Software and Affected Versions: Acuant AcuFill SDK versions prior to 10.22.02.03 Description: An issue was discovered in the Acuant AcuFill SDK. During SDK repair, certutil.exe is called by the Acuant installer to repair certificates. This call is vulnerable to DLL hijackin...

Researchers Shed Light on CatB Ransomware's Evasion Techniques

The threat actors behind the CatB ransomware operation have been observed using a technique called DLL search order hijacking to evade detection and launch the payload. CatB, also referred to as CatB99 and Baxtoy, emerged late last year and is said to be an "evolution or direct rebrand" of anothe...