31231 matches found
WiX Burn-based bundles are vulnerable to binary hijack when run as SYSTEM
Summary Burn uses an unprotected C:\Windows\Temp directory to copy binaries and run them from there. This directory is not entirely protected against low privilege users. Details When a bundle runs as SYSTEM user, Burn uses GetTempPathW which points to an insecure directory C:\Windows\Temp to dro...
GHSA-WQ88-FQ4X-H2PM WiX Burn-based bundles are vulnerable to binary hijack when run as SYSTEM
Summary Burn uses an unprotected C:\Windows\Temp directory to copy binaries and run them from there. This directory is not entirely protected against low privilege users. Details When a bundle runs as SYSTEM user, Burn uses GetTempPathW which points to an insecure directory C:\Windows\Temp to dro...
WiX Burn-based bundles are vulnerable to binary hijack when run as SYSTEM
Summary Burn uses an unprotected C:\Windows\Temp directory to copy binaries and run them from there. This directory is not entirely protected against low privilege users. Details When a bundle runs as SYSTEM user, Burn uses GetTempPathW which points to an insecure directory C:\Windows\Temp to dro...
Apple iOS < 16.7.7 Vulnerability (HT214098)
Binary data appleios1677check.nbin...
Apple iOS < 17.4.1 Vulnerability (HT214097)
Binary data appleios1741check.nbin...
Progress LoadMaster Detection
Binary data progresskemploadmasterdetect.nbin...
Progress Kemp LoadMaster Command Injection (CVE-2024-1212)
Binary data progresskemploadmasterCVE-2024-1212.nbin...
CVE-2024-29187 WiX based installers are vulnerable to binary hijack when run as SYSTEM
WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. When a bundle runs as SYSTEM user, Burn uses GetTempPathW which points to an insecure directory C:\Windows\Temp to drop and load multiple binaries. Standard users can hijack the binary before it'...
CVE-2024-29187 WiX based installers are vulnerable to binary hijack when run as SYSTEM
WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. When a bundle runs as SYSTEM user, Burn uses GetTempPathW which points to an insecure directory C:\Windows\Temp to drop and load multiple binaries. Standard users can hijack the binary before it'...
WiX Toolset 安全漏洞
WiX Toolset is an open source code library for . A security vulnerability exists in WiX Toolset that originates from a standard user being able to hijack a binary before it is loaded into an application, resulting in elevated privileges...
CVE-2024-29385
DIR-845L router = v1.01KRb03 has an Unauthenticated remote code execution vulnerability in the cgibin binary via soapcgimain function...
CVE-2024-29366
A command injection vulnerability exists in the cgibin binary in DIR-845L router firmware = v1.01KRb03...
CVE-2024-29366
A command injection vulnerability exists in the cgibin binary in DIR-845L router firmware = v1.01KRb03...
D-Link DIR-845L 安全漏洞
The D-Link DIR-845 is a wireless router from China-based AUO D-Link. A code execution vulnerability exists in D-Link DIR-845L v1.01KRb03 and earlier versions, which stems from the soapcgimain function failing to correctly filter the special elements of the constructor snippet in the cgibin binary...
CVE-2024-29385
DIR-845L router = v1.01KRb03 has an Unauthenticated remote code execution vulnerability in the cgibin binary via soapcgimain function...
CVE-2024-29385
DIR-845L router = v1.01KRb03 has an Unauthenticated remote code execution vulnerability in the cgibin binary via soapcgimain function...
Apache CXF Detection
Binary data apachecxfdetect.nbin...
CVE-2024-29385
The CVE concerns a D-Link DIR-845L router vulnerability (
PT-2024-22867 · D Link · Dir-845L
Name of the Vulnerable Software and Affected Versions: DIR-845L router firmware version = 1.01KRb03 Description: A command injection issue exists in the cgibin binary. Recommendations: For DIR-845L router firmware version = 1.01KRb03, update to a version greater than 1.01KRb03 to resolve the issu...
CVE-2024-29366
A command injection vulnerability exists in the cgibin binary in DIR-845L router firmware = v1.01KRb03...