Lucene search
K

10 matches found

Microsoft Secure
Microsoft Secure
added 2026/05/08 5:12 p.m.13 views

Active attack: Dirty Frag Linux vulnerability expands post-compromise risk

In this article 1. Why Dirty Frag matters 2. Technical overview 3. Exploitation scenarios 4. Mitigation guidance 5. Post-mitigation integrity verification 6. References A newly disclosed Linux local privilege escalation vulnerability known as “Dirty Frag” enables escalation from an unprivileged...

8.8CVSS6.5AI score0.93235EPSS
Exploits42
Rapid7 Blog
Rapid7 Blog
added 2024/04/01 5:13 p.m.73 views

Backdoored XZ Utils (CVE-2024-3094)

On Friday, March 29, after investigating anomalous behavior in his Debian sid environment, developer Andres Freund contacted an open-source security mailing list to share that he had discovered an upstream backdoor in widely used command line tool XZ Utils liblzma. The backdoor, added by an...

7.5CVSS9.8AI score0.85974EPSS
Exploits40
RedHat Linux
RedHat Linux
added 2023/04/17 2:15 p.m.5 views

Mozilla: Files with malicious extensions could have been downloaded unsafely on Linux

The Mozilla Foundation Security Advisory describes this flaw as: Firefox did not properly handle downloads of files ending in .desktop, which can be interpreted to run attacker-controlled commands. This bug only affects Firefox for Linux on certain Distributions. Other operating systems are...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/04/17 2:10 p.m.4 views

Mozilla: Files with malicious extensions could have been downloaded unsafely on Linux

The Mozilla Foundation Security Advisory describes this flaw as: Firefox did not properly handle downloads of files ending in .desktop, which can be interpreted to run attacker-controlled commands. This bug only affects Firefox for Linux on certain Distributions. Other operating systems are...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/04/17 2:3 p.m.4 views

Mozilla: Files with malicious extensions could have been downloaded unsafely on Linux

The Mozilla Foundation Security Advisory describes this flaw as: Firefox did not properly handle downloads of files ending in .desktop, which can be interpreted to run attacker-controlled commands. This bug only affects Firefox for Linux on certain Distributions. Other operating systems are...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/04/14 1:47 p.m.5 views

Mozilla: Files with malicious extensions could have been downloaded unsafely on Linux

The Mozilla Foundation Security Advisory describes this flaw as: Firefox did not properly handle downloads of files ending in .desktop, which can be interpreted to run attacker-controlled commands. This bug only affects Firefox for Linux on certain Distributions. Other operating systems are...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/04/14 1:44 p.m.4 views

Mozilla: Files with malicious extensions could have been downloaded unsafely on Linux

The Mozilla Foundation Security Advisory describes this flaw as: Firefox did not properly handle downloads of files ending in .desktop, which can be interpreted to run attacker-controlled commands. This bug only affects Firefox for Linux on certain Distributions. Other operating systems are...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/04/14 1:42 p.m.4 views

Mozilla: Files with malicious extensions could have been downloaded unsafely on Linux

The Mozilla Foundation Security Advisory describes this flaw as: Firefox did not properly handle downloads of files ending in .desktop, which can be interpreted to run attacker-controlled commands. This bug only affects Firefox for Linux on certain Distributions. Other operating systems are...

8.8CVSS7.3AI score0.00737EPSS
Exploits0References5
CERT
CERT
added 2004/03/09 12:0 a.m.34 views

Linux kernel do_mremap() call creates virtual memory area of 0 bytes in length

Overview There is a vulnerability in the Linux kernel memory management routines that allows local users to gain superuser privileges. Description The Linux kernel contains a vulnerability in the domremap call that allows software to create a virtual memory area VMA with a length of 0 bytes. This...

6.3AI score
Exploits0References8
securityvulns
securityvulns
added 2003/07/15 12:0 a.m.34 views

ImageMagick's Overflow

ImageMagick's Overflow Rosiello Security's Advisory & DTORS http://www.rosiello.org I. BACKGROUND The ImageMagick display is an image viewer. ImageMagick is part of the KDE desktop and is bundled with all major Linux distributions. II. DESCRIPTION A vulnerability was found in this application tha...

1.2AI score
Exploits0
Rows per page
Query Builder