DEBIAN-CVE-2019-8308

Flatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the applyextra script sandbox, which allows attackers to modify a host-side executable file...

UBUNTU-CVE-2019-8308

Flatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the applyextra script sandbox, which allows attackers to modify a host-side executable file...

CVE-2019-8308

Flatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the applyextra script sandbox, which allows attackers to modify a host-side executable file...

CVE-2019-8308

Flatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the applyextra script sandbox, which allows attackers to modify a host-side executable file...

CVE-2019-8308

Flatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the applyextra script sandbox, which allows attackers to modify a host-side executable file...

An info stealer .exe malware is targeting Mac users around the globe

By Waqas Cybercriminals have identified a unique method of attacking Mac devices, which involves exploiting executable or .EXE files. Those files that can be executed both on Mac and Windows devices have the potential of infecting Mac computers as these unload a .exe malware. Discovered by Trend...

Beware!! New Windows .exe Malware Found Targeting macOS Computers

A malicious Windows EXE file can even infect your Mac computer as well. Yes, you heard me right — a .exe malware on macOS. Security researchers at antivirus firm Trend Micro have discovered a novel way hackers are using in the wild to bypass Apple's macOS security protection and infect Mac...

The vulnerability of the `parse_die` function in the GNU Binutils development environment allows a perpetrator to trigger a service failure.

The vulnerability of the parsedie function in the GNU Binutils development environment is related to integer overflow. Exploiting this vulnerability allows an attacker to cause a service failure through an ELF file with corrupted debugging information in dwarf1...

elfutils heap buffer overread vulnerability

elfutils is a collection of utilities and libraries for reading, creating, and modifying ELF binaries, finding and manipulating DWARF debug data, symbols, thread states, and stack traces for processes and kernel files on GNU/Linux. A heap buffer over-read vulnerability exists in the elf32xlatetom...

UBUNTU-CVE-2019-5736

runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary and consequently obtain host root access by leveraging the ability to execute a command as root within one of these types of containers: 1 a new container with an...

TAU Threat Intelligence Notification: Java Embedded MSI Files

Summary Application whitelisting provides environments with access controls to stop unauthorized software from executing. This is accomplished by utilizing file and folder attributes including but not limited to file path, filename, digital signature, publisher, cryptographic hash and product nam...

DEBIAN-CVE-2019-7148

An attempted excessive memory allocation was discovered in the function readlongnames in elfbegin.c in libelf in elfutils 0.174. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception. NOTE: The maintainers...

Code Execution Vulnerability in Qtouch Cross-Platform Technology Configuration Software

Qtouch cross-platform technology configuration software with cross-platform and unified work platform features, can be across multiple operating systems at the same time on multiple operations to achieve a unified work platform. A code execution vulnerability exists in Qtouch Cross-Platform...

AddressSanitizer (ASan) - SUID Executable Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AddressSanitizer ASan SUID Executable Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Linux systems usi...

Mail.ru: ICQ for macOS: lack of `com.apple.quarantine` meta-attribute on downloaded files leads to GateKeeper/Quarantine bypass for downloaded executables

Summary Quarantine & GateKeeper are important macOS security mechanisms, which prevent user/device from running unsigned executables and warn users about executables downloaded from the remote. Conceptually, Quarantine & GateKeeper are similar to MOTW on Windows. Applications that could download...

AddressSanitizer (ASan) SUID Executable Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AddressSanitizer ASan SUID Executable Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Linux systems usi...

Arbitrary Code Execution via File List Module

Due to missing file extensions in $GLOBALS'TYPO3CONFVARS''BE'‘fileDenyPattern’, backend users are allowed to upload .phar, .shtml, .pl or .cgi files which can be executed in certain web server setups. A valid backend user account is needed in order to exploit this vulnerability...

The vulnerability of the software used for creating Pro-Face GP-Pro EX automation projects, due to insufficient validation of input data, allows a perpetrator to execute any executable file upon running GP-Pro EX.

The vulnerability of the software used for creating Pro-Face GP-Pro EX automation projects is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute any executable file upon running GP-Pro EX...

The vulnerability of the galsrv.exe process in the Enterprise Resource Management System “Galaktika ERP” allows a attacker to cause a service failure.

The vulnerability of the galsrv.exe process in the Enterprise Resource Management System “Galaktika ERP” is related to resource management errors. Exploiting this vulnerability allows a malicious actor to cause service failures for DCOM-based technologies by quickly sending specially crafted...

Privilege Escalation

libbind9.so is vulnerable to privilege escalation. Due to an unquoted service path configuration of the BIND installer, a local Windows user is able to escalate privileges to Administrator. Successful exploitation of the vulnerability will require the lcoal attacker to have permissions to write a...