20 matches found
EUVD-2014-3543
Malware in sbrugna...
EUVD-2010-1691
Malware in sbrugna...
EUVD-2020-8240
Malware in sbrugna...
EUVD-2009-5021
Malware in sbrugna...
EUVD-2016-8637
Malware in sbrugna...
EUVD-2011-3162
Malware in sbrugna...
EUVD-2022-44836
Malicious code in bioql PyPI...
EUVD-2022-3154
Malicious code in bioql PyPI...
CVE-2025-48072 OpenEXR's Inaccurate Pointer Arithmetic can Cause an Out of Bounds Heap
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. Version 3.3.2 is vulnerable to a heap-based buffer overflow during a read operation due to bad pointer math when decompressing DWAA-packed scan-line EXR...
CVE-2025-54538
In JetBrains TeamCity before 2025.07 password exposure was possible via command line in the "hg pull" command...
CVE-2025-54538
In JetBrains TeamCity before 2025.07 password exposure was possible via command line in the "hg pull" command...
CVE-2023-39737
The leakage of the client secret in Matsuya Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages...
Line Security Breach
Line is the instant messaging platform of Line Inc. A security vulnerability exists in Line v13.6.1, which originates from an information disclosure vulnerability in the applet Tokushimaawayokocho. The vulnerability can be exploited by an attacker to obtain a channel access token and send a...
Information Disclosure
encryptfs-utils is vulnerable to information disclosure. A disclosure flaw was found in the way the "ecryptfs-setup-private" script passed passphrases to the "ecryptfs-wrap-passphrase" and "ecryptfs-add-passphrase" commands as command line arguments. A local user could obtain the passphrases of...
Pspy - Monitor Linux Processes Without Root Permissions
pspy is a command line tool designed to snoop on processes without need for root permissions. It allows you to see commands run by other users, cron jobs, etc. as they execute. Great for enumeration of Linux systems in CTFs. Also great to demonstrate your colleagues why passing secrets as argumen...
CVE-2011-1006
Heap-based buffer overflow in the parsecgroupspec function in tools/tools-common.c in the Control Group Configuration Library aka libcgroup or libcg before 0.37.1 allows local users to gain privileges via a crafted controller list on the command line of an application. NOTE: it is not clear wheth...
CVE-2004-0609
rssh 2.0 through 2.1.x expands command line arguments before entering a chroot jail, which allows remote authenticated users to determine the existence of files in a directory outside the jail...
IBM DB2 - db2start Command Line Argument Local Overflow
IBM DB2 - db2start Command Line Argument Local Overflow source: https://www.securityfocus.com/bid/8990/info IBM DB2 has been reported to be prone to multiple buffer overflow vulnerabilities that present themselves in binaries that are shipped with DB2. The vulnerabilities are likely caused due to...
CVE-2001-1388
iptables before 1.2.4 does not accurately convert rate limits that are specified on the command line, which could allow attackers or users to generate more or less traffic than intended by the administrator...
phf CGI Script fails to guard against newline characters
Overview This document describes a vulnerability in a CGI script known as phf which was widely exploited in 1996 and 1997. Description The phf CGI script constructs a partial command line consisting of the ph command and appropriate arguments, and completes the command line based on the input fro...