CVE-2022-45671

Tenda i22 V1.0.0.34687 was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function...

Buffer overflow

Tenda i22 V1.0.0.34687 was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function...

CVE-2022-45671

Tenda i22 V1.0.0.34687 was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function...

PT-2022-27614 · Tenda · Tenda I22

Name of the Vulnerable Software and Affected Versions: Tenda i22 version 1.0.0.34687 Description: A buffer overflow issue was discovered via the appData parameter in the formSetAppFilterRule function. This issue allows for potential exploitation. No information is provided about the estimated...

Tenda i22 安全漏洞

Tenda i22 is a wireless access point from Tenda, China. Tenda i22 is vulnerable to a buffer overflow vulnerability, which stems from a lack of length validation of input data in the appData parameter of the formSetAppFilterRule function. An attacker could exploit this vulnerability to cause a...

CVE-2022-45671

Tenda i22 V1.0.0.34687 was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function...

Wire Information Disclosure Vulnerability (CNVD-2022-80682)

Wire is a chat software from the German company Wire. The software supports Web, WindowsiOS, Android, and OS X platforms, has group functionality, can make voice calls, send photos, and its original greeting method, PING. Wire 3.22.3993 and earlier versions contain an information disclosure...

CVE-2022-43673

Wire through 3.22.3993 on Windows advertises deletion of sent messages; nonetheless, all messages can be retrieved for a limited period of time from the AppData\Roaming\Wire\IndexedDB\httpsapp.wire.com0.indexeddb.leveldb database...

CVE-2022-43673

Summary of CVE-2022-43673 : Wire (Windows, up to version 3.22.3993) stores chat messages in AppData\Roaming\Wire\IndexedDB\https_app.wire.com_0.indexeddb.leveldb. Although the UI advertises deletion, the messages remain retrievable for a limited time, enabling information disclosure of sent messa...

Wire 日志信息泄露漏洞

Wire is a chat software from the German company Wire. The software supports Web, WindowsiOS, Android, and OS X platforms, has group functionality, can make voice calls, send photos, and its original greeting method, PING. Wire 3.22.3993 and earlier versions contain an information disclosure...

You can’t stop me. MS Teams session hijacking and bypass

How cleartext session tokens are stored in an unsecured directory that can be stolen and used to impersonate a Teams user. TL;DR Microsoft Teams stores unencrypted session tokens and cached conversations in users’ roaming AppData, which can be used by an attacker to gain access to the victim’s...

CVE-2022-32450

AnyDesk 7.0.9 allows a local user to gain SYSTEM privileges via a symbolic link because the user can write to their own %APPDATA% folder used for ad.trace and chat but the product runs as SYSTEM when writing chat-room data there...

Trojan.CryptoLocker Code Execution

Discovery / credits: Malvuln - John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/209a288c68207d57e0ce6e60ebf60729.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.CryptoLocker Vulnerability: Code Execution Description: Cryptolocker drops a PE...

Trojan-Ransom.Radamant Code Execution

Discovery / credits: Malvuln - John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/6152709e741c4d5a5d793d35817b4c3d.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Ransom.Radamant Vulnerability: Code Execution Description: Radamant tries to load...

Thunderbird Credential Gatherer

This module searches for Thunderbird credentials on a Windows host. Module Options msf use post/windows/gather/credentials/thunderbird msf postthunderbird show actions ...actions... msf postthunderbird set ACTION msf postthunderbird show options ...show and set options... msf postthunderbird run...

Virus.Win32.Shodi.e Remote Command Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/37d4a5ba123dd32f1e2c4ba0be14e77cB.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Virus.Win32.Shodi.e Vulnerability: Unauthenticated Remote Command Execution Description: The virus...

Trojan-Dropper.Win32.SVB.cz Authentication Bypass / Code Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/d57536189430fd75e45f53845e9b3f94.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Dropper.Win32.SVB.cz Vulnerability: Authentication Bypass RCE Description: The malware listen...

Securepoint SSL VPN Client 访问控制错误漏洞

Securepoint SSL VPN Client is an open source SSL VPN client for Windows. An access control error vulnerability exists in Securepoint SSL VPN Client v2, which arises from a failure to secure the software's configuration features. An attacker can escalate local privileges to NT AUTHORITYSYSTEM to...

SUSE: Security Advisory (SUSE-SU-2017:2264-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Trojan.Win32.NanoBot.onh Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/9fff4c02274c0162880844f27ff91407.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.NanoBot.onh Vulnerability: Insecure Permissions Description: NanoBot.onh creates an...