31243 matches found
Google Chrome < 105.0.5195.102 Vulnerability
Binary data 701420.pasl...
PT-2022-23166 · Unknown · Github.Com/Gagliardetto/Binary
Name of the Vulnerable Software and Affected Versions: github.com/gagliardetto/binary versions prior to v0.7.1 Description: The issue is a memory allocation vulnerability that can be exploited to allocate slices in memory with excessive size values, potentially exhausting available memory or...
Binary 资源管理错误漏洞
Binary is a library by the individual developers of gagliardetto. It is used for encoding/decoding Borsh and other formats. A security vulnerability exists in Binary versions prior to 0.7.1. An attacker exploited the vulnerability to allocate slices in memory with arbitrarily oversized values,...
Zyxel Firewall SUID Binary Privilege Escalation Exploit
This Metasploit module exploits CVE-2022-30526, a local privilege escalation vulnerability that allows a low privileged user e.g. nobody escalate to root. The issue stems from a suid binary that allows all users to copy files as root. This module overwrites the firewall's crontab to execute an...
PT-2022-4709
Name of the Vulnerable Software and Affected Versions Python affected versions not specified Description A flaw was found in Python related to errors in converting data types between int and str. This issue is associated with algorithms that have quadratic time complexity and use non-binary bases...
mariadb: use-after-poison in Binary_string::free_buffer
A flaw was found in the MariaDB Server. It contains a use-after-free via the component,Binarystring::freebuffer at /sql/sqlstring.h, affecting availability...
Zyxel Firewall SUID Binary Privilege Escalation
This module exploits CVE-2022-30526, a local privilege escalation vulnerability that allows a low privileged user e.g. nobody escalate to root. The issue stems from a suid binary that allows all users to copy files as root. This module overwrites the firewall's crontab to execute an attacker...
Mozilla Firefox: Multiple Vulnerabilities
Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...
Zephyr 缓冲区错误漏洞
The Zephyr Project is a collaborative project hosted by the Linux Foundation, an open source collaboration. zepher Project zephyr suffers from a binary vulnerability that can be exploited by attackers to cause a denial of service attack...
Zyxel Firewall SUID Binary Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Zyxel Firewall SUID Binary Privilege Escalation', 'Description' = %q This module exploits CVE-2022-30526, a local privilege escalation...
CVE-2022-37173
An issue in the installer of gvim 9.0.0000 allows authenticated attackers to execute arbitrary code via a binary hijacking attack on C:\Program.exe...
CVE-2022-37173
An issue in the installer of gvim 9.0.0000 allows authenticated attackers to execute arbitrary code via a binary hijacking attack on C:\Program.exe...
CVE-2022-37173
An issue in the installer of gvim 9.0.0000 allows authenticated attackers to execute arbitrary code via a binary hijacking attack on C:\Program.exe...
Code injection
An issue in the installer of gvim 9.0.0000 allows authenticated attackers to execute arbitrary code via a binary hijacking attack on C:\Program.exe...
CVE-2022-37173
An issue in the installer of gvim 9.0.0000 allows authenticated attackers to execute arbitrary code via a binary hijacking attack on C:\Program.exe...
CVE-2022-37173
The CVE-2022-37173 entry describes a vulnerability in the gvim 9.0.0000 installer that allows authenticated attackers to execute arbitrary code via a binary hijacking attack on C:\Program.exe. Affected component: the installer. Root cause: binary hijacking during installation. Impact: remote arbi...
Google Chrome < 105.0.5195.52 Multiple Vulnerabilities
Binary data 701419.pasl...
PT-2022-23854 · Vim · Gvim
Name of the Vulnerable Software and Affected Versions: gvim version 9.0.0000 Description: An issue in the installer of gvim allows authenticated attackers to execute arbitrary code via a binary hijacking attack on C:Program.exe. Recommendations: For gvim version 9.0.0000, consider restricting...
Gvim 安全漏洞
Gvim is a Vim open source with a built-in GUI. A security vulnerability exists in Gvim version 9.0.0000. An attacker can exploit this vulnerability to execute arbitrary code via a binary hijacking attack on C:Program.exe...
PT-2022-23472 · Unknown · Strawberryperl
Name of the Vulnerable Software and Affected Versions: StrawberryPerl versions 5.32.1.1 and below Description: The issue is related to incorrect access control in the install directory of StrawberryPerl, allowing authenticated attackers to execute arbitrary code by overwriting binaries in the...