5 matches found
FastNetMon 安全漏洞
FastNetMon is a high-performance DDoS detector/sensor developed by Pavel Odintsov. It is built using multiple packet capture engines. Versions of FastNetMon Community Edition prior to 1.2.9 contained security vulnerabilities. These vulnerabilities stemmed from the use of predictable file paths an...
RHEL 8 : pesign (RHSA-2023:1829)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:1829 advisory. The pesign packages provide the pesign utility for signing UEFI binaries as well as other associated tools. Security Fixes: pesign: Local privilege...
The vulnerability of the Node.js module for processing tar archives, Node-tar, is related to shortcomings in pathname restrictions for directories. This allows attackers to compromise data integrity and cause service failures.
The vulnerability of the Node.js module for processing tar archives with the Node-tar module is related to the possibility of bypassing the symbolic link checks for directories. Exploiting this vulnerability can allow an attacker to compromise data integrity and cause service failures...
Trend Micro Security 后置链接漏洞
Trend Micro Security is a suite of computer security software from Trend Micro, Inc. A back-linking vulnerability exists in Trend Micro Security Consumer, which stems from the product's failure to properly check for symbolic links to think-only directories. An attacker could exploit the...
rpm 后置链接漏洞
rpm is a powerful command-line driven package management tool used to install, uninstall, verify, query, and update packages on Linux systems. A security vulnerability exists in rpm that stems from not performing unsafe symbolic link checks on intermediate directories. An attacker exploiting this...