73 matches found
CVE-2020-1171
The CVE-2020-1171 entry describes a remote code execution vulnerability in Visual Studio Code when the Python extension loads configuration files after opening a project. The root cause is tied to the Python extension’s handling of configuration files, enabling code execution in the context of th...
Security Update for Microsoft Visual Studio Code Python Extension (May 2020)
A remote code execution RCE vulnerability exists in Visual Studio Code when the Python extension loads configuration files after opening a project. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged o...
Visual Studio Code Python Extension Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads configuration files after opening a project. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on wi...
Visual Studio Code Python Extension Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads workspace settings from a notebook file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...
PT-2020-2696 · Microsoft · Visual Studio Code +2
Name of the Vulnerable Software and Affected Versions: Visual Studio Code affected versions not specified Description: A remote code execution issue exists when the Python extension loads workspace settings from a notebook file. This is due to insufficient input validation, which can allow an...
PT-2020-2483 · Microsoft · Visual Studio Code
Name of the Vulnerable Software and Affected Versions: Visual Studio Code affected versions not specified Description: The issue is related to insufficient input validation in the Python extension of Microsoft Visual Studio Code. It allows a remote attacker to execute arbitrary code...
KLA11772 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in .NET Framework can be...
Microsoft VSCode Python Extension - Code Execution Exploit
VSCode Python Extension Code Execution This repository contains the Proof-of-Concept of a code execution vulnerability discovered in the Visual Studio Code Python extension. TL;DR: VScode may use code from a virtualenv found in the project folders without asking the user, for things such as...
Pattern Matching Swiss Knife: YARA
YARA is a tool aimed at but not limited to helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families or whatever you want to describe based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strin...
Fedora Update for pyicu FEDORA-2013-13523
Check for the Version of pyicu OpenVAS Vulnerability Test Fedora Update for pyicu FEDORA-2013-13523 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
php safe mode bypass all-vulnerability warning-the black bar safety net
Sources:vul. kr PHP safe mode bypass from 4. x to 5. x all. Functions: mbsendmail curlinit imapopen mail ioncubereadfile posixgetpwuid errorlog extensionloaded copy procopen A php code safe-mode-bypass.php for you: Some New Virus: PHP 5.2.4 ionCube extension safemode and disablefunctions...
PHP python extension safe_mode Bypass Local Vulnerability
No description provided by source. ?php / phppythonbypass.php php python extension safemode bypass Amir Salmani - amiratsalmanidotir / //python ext. installed? if !extensionloaded'python' die"python extension is not installed\n"; //eval python code $res = pythoneval' import os pwd = os.getcwd pri...
PHP 'python' Extension - 'safe_mode' Local Bypass
milw0rm.com 2008-12-17...