Slackware Linux 15.0 mozilla-firefox Multiple Vulnerabilities (SSA:2022-348-01)

The version of mozilla-firefox installed on the remote host is prior to 102.6.0esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-348-01 advisory. - An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary file...

Mozilla Firefox ESR < 102.6

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 102.6. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-52 advisory. - A use-after-free in WebGL extensions could have led to a potentially exploitable crash. CVE-2022-46882 -...

Security Vulnerabilities fixed in Thunderbird 102.6 — Mozilla

A missing check related to tex units could have led to a use-after-free and potentially exploitable crash. An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages.This bug only affects Thunderbird for Linux...

Mozilla Firefox < 108.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 108.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-51 advisory. - Mozilla developers and community members Lukas Bernhard, Gabriele Svelto, Randell Jesup, and the Mozilla...

BACKCLICK 路径遍历漏洞

BACKCLICK is a marketing software from BACKCLICK Germany that helps organizations create, implement, measure and run web-based email campaigns. A security vulnerability exists in BACKCLICK Professional version 5.9.63 that stems from improper validation or cleanup of uploaded filenames, where an...

PT-2022-25146 · Panini · Panini Everest Engine

Name of the Vulnerable Software and Affected Versions: Panini Everest Engine version 2.0.4 Description: The issue allows unprivileged users to create a file named Everest.exe in the %PROGRAMDATA%Panini folder, leading to privilege escalation. A service running as SYSTEM uses the unquoted path of...

CVE-2022-38932

readelf in ToaruOS 2.0.1 has a global overflow allowing RCE when parsing a crafted ELF file...

Backdoor.Win32.Augudor.b MVID-2022-0644 Code Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/94ccd337cbdd4efbbcc0a6c888abb87d.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Augudor.b Vulnerability: Remote File Write Code Execution Description: The...

ManageEngine ADAudit Plus CVE-2022-28219

This module exploits CVE-2022-28219, which is a pair of vulnerabilities in ManageEngine ADAudit Plus versions before build 7060: a path traversal in the /cewolf endpoint, and a blind XXE in, to upload and execute an executable file. Module Options msf use...

CVE-2022-26352

An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is saved outside of the intended storage location. If anonymous...

CVE-2021-34986

Parallels Desktop 16.5.0 (49183) contains a local privilege escalation in the Parallels Service. By creating a symbolic link, an attacker who can run low-privileged code can abuse the service to execute a file, escalating to root and executing arbitrary code. This has been disclosed as ZDI-22-385...

CVE-2022-31591

SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an unquoted element. A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service...

CVE-2022-31591

SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an unquoted element. A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service...

CyberLink Power Director 安全漏洞

CyberLink Power Director is a video editing software from China-based CyberLink. A security vulnerability exists in CyberLink Power Director version v14, which can be exploited by an attacker to elevate privileges via a crafted exe file...

Nigerian Tesla: 419 scammer gone malware distributor unmasked

Agent Tesla is a well-known data stealer written in .NET that has been active since 2014 and is perhaps one of the most popular payloads observed in malspam campaigns. While looking for threats targeting Ukraine, we identified a group we call "Nigerian Tesla" that has been dabbling into phishing...

The vulnerability of the dwarf::to_string function in the ELF and DWARF v4 file reading library Libelfin, which allows a attacker to cause a service denial

The vulnerability of the dwarf::tostring function in the ELF and DWARFv4 file reading library Libelfin is related to insufficient elimination of special elements in the request. Exploiting this vulnerability allows a remote attacker to trigger a service denial using a specially created ELF file...

Fortinet FortiClient for Windows权限提升漏洞

Fortinet FortiClient is a mobile endpoint security solution from Fortinet, Inc. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance, and two-factor authentication when connected to a FortiGate firewall appliance. executable file in the FortiClient installer...

The vulnerability of the `line_table::line_table` function in the ELF and DWARFv4 reading library Libelfin allows a attacker to cause a service failure.

The vulnerability of the linetable::linetable function in the ELF and DWARFv4 reading library Libelfin is related to insufficient elimination of special elements in the request. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially created ELF file...

CVE-2022-27963

Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

GNU GCC 资源管理错误漏洞

Gcc is a collection of Gnu compilers. It is mainly used to compile the C and C++ languages. A security vulnerability exists in GNU GCC 11.2, which stems from a stack overflow in nm-new that can be triggered by an attacker via a crafted elf file...