Arbitrary code execution due to an uncontrolled search path for the git binary

Impact The go language recently addressed a security issue in the way that binaries are found before being executed. Some operating systems like Windows persist to have the current directory being part of the default search path, and having priority over the system-wide path. This means that it's...

Safari < 14.1.1 Multiple Vulnerabilities

Binary data 701346.pasl...

Google Chrome < 91.0.4472.77 Multiple Vulnerabilities

Binary data 701347.pasl...

Romanian Crypto Mining Infection

While examining my honeypot logs and digging through the newly downloaded binaries last week, I noticed a large compressed file. I figured it would be a crypto miner, typically a tar archive and gzip normally erroneously compressed. I moved the archive over to my test lab and started examining th...

Binary Vulnerability in INVT Workshop (INVT Inverter/Servo Host Monitoring Software)

Since its establishment in 2002, INVISION Shenzhen INVISION Electric Co., Ltd. has been focusing on the two major fields of industrial automation and energy and power, providing users with the most valuable products and solutions. A binary vulnerability exists in INVT Workshop INVT Inverter/Servo...

Binary vulnerability in Century Star configuration software of Beijing Century Changqiu Technology Co., Ltd (CNVD-2021-39298)

Century Star is a PC-based HMI configuration software developed by Beijing Century Changqiu Technology Co. A binary vulnerability exists in the Century Star configuration software of Beijing Century Changqiu Technology Co., Ltd. that can be exploited by an attacker to send a well-constructed pack...

Binary vulnerability in Century Star configuration software of Beijing Century Changqiu Technology Co. Ltd (CNVD-2021-39297)

Century Star is a PC-based HMI configuration software developed by Beijing Century Changqiu Technology Co. A binary vulnerability exists in the Century Star configuration software of Beijing Century Changqiu Technology Co., Ltd. that can be exploited by an attacker to send a well-constructed pack...

Binary vulnerability in Century Star configuration software of Beijing Century Changqiu Technology Co., Ltd (CNVD-2021-39299)

Century Star is a PC-based HMI configuration software developed by Beijing Century Changqiu Technology Co. A binary vulnerability exists in the Century Star configuration software of Beijing Century Changqiu Technology Co., Ltd. that can be exploited by an attacker to send a well-constructed pack...

Binary Vulnerability in INVT Workshop (INVT Inverter/Servo Host Monitoring Software)

INVISION is an industrial control and energy efficiency solution provider, with products covering industrial automation frequency converter/servo/PLC/HMI, etc., new energy vehicles charging piles, etc., network energy power supply UPS/photovoltaic inverters, etc., and rail transportation. A binar...

Fuzzing iOS code on macOS at native speed

Or how iOS apps on macOS work under the hood Posted by Samuel Groß, Project Zero This short post explains how code compiled for iOS can be run natively on Apple Silicon Macs. With the introduction of Apple Silicon Macs, Apple also made it possible to run iOS apps natively on these Macs. This is...

[SECURITY] Fedora 34 Update: hivex-1.3.20-1.fc34

Hive files are the undocumented binary files that Windows uses to store the Windows Registry on disk. Hivex is a library that can read and write to these files. 'hivexsh' is a shell you can use to interactively navigate a hive binary file. 'hivexregedit' in perl-hivex lets you export and merge to...

ALEA-2021:1893 new module: mariadb:10.5

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. This enhancement update adds the mariadb:10.5 module to AlmaLinux BZ1855781 For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

Keil TCPnet TCP/IP Stack - FTP Detection

Binary data keiltcpnettcpipstackftpdetect.nbin...

emNet TCP/IP Stack - FTP Detection

Binary data emnettcpipstackftpdetect.nbin...

CMX-TCP/IP Stack - FTP Detection

Binary data cmxtcpipstackftpdetect.nbin...

Binary Vulnerability in Various TPLINK Routers

"TP-LINK" is a leading global supplier of network communication equipment. A binary vulnerability exists in several TPLINK routers, which can be exploited by attackers to cause a denial of service...

Binary Vulnerability in MERCURY M6G, D196G, D12A, D121G

Shenzhen Mercury Communication Technology Co., Ltd hereinafter referred to as MERCURY was founded in 2001, has a well-known independent brand "MERCURY Mercury", focusing on network communications, security monitoring field to provide excellent products and solutions. A binary vulnerability exists...

Binary Vulnerability in PDF Converter of Hanvon Technology Co.

Founded in 1998, Hanvon Technology Co., Ltd. is backed by many years of scientific research achievements and supported by key projects such as the Eighth Five-Year Plan, the Ninth Five-Year Plan, the 863 Program, and the Natural Science Foundation of the People's Republic of China. With the suppo...

Binary Vulnerability in PDF OCR at Hanvon Technology Co.

Founded in 1998, Hanvon Technology Co., Ltd. is backed by many years of scientific research achievements and supported by key projects such as the Eighth Five-Year Plan, the Ninth Five-Year Plan, the 863 Program, and the Natural Science Foundation of the People's Republic of China. With the suppo...

Binary Vulnerability in FWB, FAC Series Routers of Shenzhen Xunjie Communication Technology Co.

FWB, FAC series is a router from Shenzhen Xunjie Communication Technology Co., Ltd, including FWB201S, FWB505, FAC1203R, FWB201, FAC1900R, FWB200, FAC1200R and so on. A binary vulnerability exists in the FWB, FAC series routers of Shenzhen Xunjie Communication Technology Co. Ltd, which can be...