Software Data Cable - Dynamic Code Loading, External URLs, Possible privilege escalation vulnerabilities

HackApp vulnerability scanner discovered that application Software Data Cable published at the 'play' market has multiple vulnerabilities...

Scary Stories - Dynamic Code Loading, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Scary Stories published at the 'play' market has multiple vulnerabilities...

Android sqlite load_extension vulnerability analysis-vulnerability warning-the black bar safety net

SQLite from 3. 3. 6 version http://www.sqlite.org/cgi/src/artifact/71405a8f9fedc0c2 start provides support for expansion of capacity, by sqliteloadextension API or loadextensionSQL statement, developers can not change the SQLite source code of the case, through the dynamic loading of libraries,...

CVE-2 0 1 1-2 4 6 1 principles of analysis and case studies-vulnerability and early warning-the black bar safety net

0x00 vulnerability background From the CVE numbers it can be seen that this vulnerability has been for some years 1。 Because this vulnerability occurs in the Flex SDK, rather than the Flash Player. So for developers, as long as they used to have the defects of the Flex SDK to compile FLASH, then ...

Corel Software DLL Hijacking Vulnerability Allows Hackers to Execute Malicious Code

Security researchers have disclosed local zero day DLL hijacking vulnerabilities in several applications developed by Corel Software that could allow an attacker to execute arbitrary commands on victims' computer, potentially affecting more than 100 million users. The security holes were publicly...

0-Days Exposed in Several Corel Applications

UPDATE–Researchers from Core Security have disclosed DLL hijacking vulnerabilities in several applications made by Corel Software after the vendor didn’t respond to Core’s notifications about the flaws. There are no patches available for the bugs, which can allow remote code execution. Corel sell...

Twiki Perl 4.x, 5.x, 6.x Upload Bypass / Code Execution Vulnerabilities

The debugenableplugins request parameter in Twiki versions 4.x, 5.x, and 6.0.0 allows arbitrary Perl code execution and suffer from a file upload bypass vulnerability. This is an advisory for TWiki administrators: The debugenableplugins request parameter allows arbitrary Perl code execution...

OpenJDK: remote code loading enabled by default (RMI, 8001040)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI...

Fedora Update for glib2 FEDORA-2012-14157

Check for the Version of glib2 OpenVAS Vulnerability Test Fedora Update for glib2 FEDORA-2012-14157 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

[SECURITY] Fedora 17 Update: glib2-2.32.4-2.fc17

GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system...

Microsoft Windows multiple applications DLL hijacking

If application is launched via file type association, current path is set to the path file is located, making it's possible to place DLLs application tries to load dynamically into same directory...

Fedora Core 9 FEDORA-2009-2688 (glib2)

The remote host is missing an update to glib2 announced via advisory FEDORA-2009-2688. OpenVAS Vulnerability Test $Id: fcore20092688.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-2688 glib2 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

[SECURITY] Fedora 8 Update: glib2-2.14.6-2.fc8

GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system. This package provides versi...

[SECURITY] Fedora 8 Update: glib2-2.14.6-1.fc8

GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system. This package provides versi...

[SECURITY] Fedora 8 Update: glib2-2.14.3-1.fc8

GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system. This package provides versi...