29 matches found
EUVD-2021-22591
Malware in sbrugna...
CVE-2021-35957
Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs in %WINDIR%\system32 with malicious ones...
Moderate: Red Hat Security Advisory: tbb security update
An update for tbb is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: Red Hat Security Advisory: tbb security update
An update for tbb is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2024-22410 Binary Planting Attack on Windows Platforms in Creditcoin
Creditcoin is a network that enables cross-blockchain credit transactions. The Windows binary of the Creditcoin node loads a suite of DLLs provided by Microsoft at startup. If a malicious user has access to overwrite the program files directory it is possible to replace these DLLs and execute...
The vulnerability of the calloc() function in the C Runtime Library (CRT) allows a hacker to execute arbitrary code.
The vulnerability of the calloc function in the C Runtime Library CRT is related to integer overflow. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
BadAlloc Vulnerability Affecting BlackBerry QNX RTOS
Summary On August 17, 2021, BlackBerry publicly disclosed that its QNX Real Time Operating System RTOS is affected by a BadAlloc vulnerability—CVE-2021-22156. BadAlloc is a collection of vulnerabilities affecting multiple RTOSs and supporting libraries.1 A remote attacker could exploit...
Integer overflow
An integer overflow vulnerability in the calloc function of the C runtime library of affected versions of BlackBerry® QNX Software Development Platform SDP versions 6.5.0SP1 and earlier, QNX OS for Medical 1.1 and earlier, and QNX OS for Safety 1.0.1 and earlier that could allow an attacker to...
CVE-2021-22156
CVE-2021-22156 is an integer overflow in the calloc() function of the BlackBerry QNX C runtime library, affecting SDP 6.5.0SP1 and earlier, QNX OS for Medical 1.1 and earlier, and QNX OS for Safety 1.0.1 and earlier. Exploitation could cause denial of service or arbitrary code execution; remote a...
Emerson GE Automation Proficy Machine 缓冲区错误漏洞
Emerson GE Automation Proficy Machine Edition is an application from emerson, Inc. An automation solution. A buffer error vulnerability exists in Emerson GE Automation Proficy Machine that originates from a buffer overflow in Emerson GE Automation Proficy Machine Edition v8.0. The vulnerability c...
CVE-2021-35957
Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs in %WINDIR%\system32 with malicious ones...
Buffer overflow
Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators who can replace the Visual C++ runtime DLLs in %WINDIR%\system32 with malicious ones...
Update for Universal C Runtime in Windows
Update for Universal C Runtime in Windows This article describes an update for Universal C Runtime CRT in Windows. Before you install this update, see the prerequisites section. For more information, see Introducing the Universal CRT. About this update The Windows 10 Universal CRT is a Windows...
Security Bulletin: IBM Cognos Business Intelligence has addressed multiple vulnerabilties
Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 used by IBM Cognos Business Intelligence. These issues were disclosed as part of the IBM Java SDK updates in October 2018, January 2019, April 2019, July 2019 and October 2019. IBM Cognos Business Intelligence...
Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilties
Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 used by Cognos Analytics. These issues were disclosed as part of the IBM Java SDK updates in October 2017, January 2018, April 2018, July 2018, October 2018, January 2019 and April 2019. Cognos Analytics has...
Vulnerability of the MSVCR90!memcpy function in the WebAccess HMI Designer software for developing and managing HMI applications. This vulnerability allows attackers to cause system failures.
The vulnerability of the MSVCR90!memcpy function 0x000000000000015c in the WebAccess HMI Designer software for developing and managing HMI applications is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause...
June 21, 2018—KB4284863 (Preview of Monthly Rollup)
June 21, 2018—KB4284863 Preview of Monthly Rollup Improvements and fixes This nonsecurity update includes improvements and fixes that were a part of KB 4284815 released June 12, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Updates the...
Error: Backup proxy is missing C++ runtime components
Article Applicability The error message states that the C++ runtime components are missing, which may be inaccurate. The actual cause of the error is that the VDDK libraries cannot be loaded, which in older versions of Veeam Backup & Replication 9.5 and older was caused by missing C++ runtimes...
Mingw-w64 Design Vulnerability
Mingw-w64 is a dedicated gcc runtime environment for Windows. A security vulnerability exists in Mingw-w64 5.0.3 and earlier in mingw-w64-crt libc-vsnprintf. An attacker can exploit this vulnerability to corrupt subsequent string functions...
CrystalPlayer 1.98 - (.mls) Local Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl Crystal Player 1.98 Playlist.mls File Local Buffer Overflow Exploit Source:: http://www.crystalplayer.com/CrystalPro.exe Credit To Timq For The Vulnerability POC By Arham Muhammad While Debugging EIP And EBP Successfully Gets Overwritten! Upon...