26 matches found
putty -- multiple security vulnerabilities
Simon Tatham reports: These features are new in PuTTY 0.84: Security issue: fixed a remotely triggerable double-free in RSA key exchange. We don't know of any way it is exploitable to execute code. Minor security issue: fixed a remotely triggerable crash in NIST ECDSA signature verification. An...
Malicious code in @malware-test-caboc-testy-taker-sigil/test-mlw3-caboc-testy-taker-sigil (npm)
The package @malware-test-caboc-testy-taker-sigil/test-mlw3-caboc-testy-taker-sigil was found to contain malicious code...
Malicious code in @malware-test-votes-patin-occur-sigil/test-mlw3-votes-patin-occur-sigil (npm)
The package @malware-test-votes-patin-occur-sigil/test-mlw3-votes-patin-occur-sigil was found to contain malicious code...
Malicious code in test-mlw2-sigil-naval (npm)
The package test-mlw2-sigil-naval was found to contain malicious code...
MAL-2025-35664 Malicious code in test-mlw2-leets-sigil (npm)
The package test-mlw2-leets-sigil was found to contain malicious code...
MAL-2025-36218 Malicious code in test-mlw2-sigil-naval (npm)
The package test-mlw2-sigil-naval was found to contain malicious code...
Malicious code in test-mlw2-leets-sigil (npm)
The package test-mlw2-leets-sigil was found to contain malicious code...
SUSE CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
Mageia: Security Advisory (MGASA-2019-0249)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the EPUB Sigil software for editing e-books lies in the incorrect path limitation for accessing the restricted catalog. This allows attackers to write arbitrary files into any directory they choose.
The vulnerability of EPUB format electronic book editing software like Sigil exists due to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to write arbitrary files to any directory...
Updated sigil packages fix security vulnerability
Updated sigil package fixes security vulnerability: Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the filesystem CVE-2019-14452...
MGASA-2019-0249 Updated sigil packages fix security vulnerability
Updated sigil package fixes security vulnerability: Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the filesystem CVE-2019-14452...
Ubuntu 16.04 LTS / 18.04 LTS : Sigil vulnerability (USN-4085-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4085-1 advisory. Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the...
Ubuntu: Security Advisory (USN-4085-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4085-1: Sigil vulnerability
Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the filesystem...
USN-4085-1 Sigil vulnerability
Mike Salvatore discovered that Sigil mishandled certain malformed EPUB files. An attacker could use this vulnerability to write arbitrary files to the filesystem...
CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
DEBIAN-CVE-2019-14452
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...
Directory traversal
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ dot dot slash in a ZIP archive entry that is mishandled during extraction...