116 matches found
EUVD-2019-3406
Malware in sbrugna...
EUVD-2019-3423
Malware in sbrugna...
EUVD-2021-16410
Malware in sbrugna...
EUVD-2016-6246
Malware in sbrugna...
EUVD-2017-16736
Malware in sbrugna...
EUVD-2017-16741
Malware in sbrugna...
EUVD-2017-16742
Malware in sbrugna...
EUVD-2017-16743
Malware in sbrugna...
EUVD-2020-7650
Malware in sbrugna...
EUVD-2023-33074
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-29532
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB...
Linux Distros Unpatched Vulnerability : CVE-2019-11736
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Mozilla Maintenance Service does not guard against files being hardlinked to another file in the updates directory, allowing for the replacement of local...
OESA-2024-1747 mozjs78 security update
SpiderMonkey is the code-name for Mozilla Firefox's C++ implementation of JavaScript. It is intended to be embedded in other applications that provide host environments for JavaScript. Security Fixes: A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file...
SMB Relaying Attack
firefox-esr is vulnerable to SMB Relaying Attack. A local attacker can deceive the Mozilla Maintenance Service into applying an unsigned update file by directing the service to an update file hosted on a malicious SMB server. This manipulation is possible because the service's requested write-loc...
CVE-2023-29532
A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the write-lock requested by the service does not...
CVE-2023-29532
A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the write-lock requested by the service does not...
Code injection
A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the write-lock requested by the service does not...
CVE-2023-29532
A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the write-lock requested by the service does not...
CVE-2023-29532
A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the write-lock requested by the service does not...
The vulnerability in the Mozilla Maintenance service affects browsers such as Mozilla Firefox, Focus for Android, Mozilla Firefox ESR, and the email client Thunderbird. This vulnerability allows an attacker to gain access to read, modify, or delete data.
The vulnerability in the Mozilla Maintenance service affects the Mozilla Firefox browser, Focus for Android, Mozilla Firefox ESR, and the email client Thunderbird. It relates to deficiencies in access control during the verification of update signatures. Exploiting this vulnerability could allow ...