PT-2026-37231

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a Time-of-Check-to-Time-of-Use TOCTOU race condition exists during addon installation. When a user installs an addon through the SandMan interface, UpdUtil.exe is spawned as SYSTEM by...

Ivanti Endpoint Manager CAB File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the parsing of CAB files. The issue results from the lack of proper validation of a...

EUVD-2012-1477

Malware in sbrugna...

EUVD-2012-1471

Malware in sbrugna...

EUVD-2007-6303

Malware in sbrugna...

EUVD-2012-1474

Malware in sbrugna...

EUVD-2012-1473

Malware in sbrugna...

EUVD-2014-9370

Malware in sbrugna...

EUVD-2006-5921

Malware in sbrugna...

EUVD-2015-0565

Malware in sbrugna...

EUVD-2005-1925

Malware in sbrugna...

EUVD-2010-4631

Malware in sbrugna...

EUVD-2023-56315

Malicious code in bioql PyPI...

EUVD-2023-41527

Malicious code in bioql PyPI...

Exploit for Path Traversal in Microsoft

CVE-2021-40444 PoC Malicious docx generator to exploit CVE-2021-40444 Microsoft Office Word Remote Code Execution Creation of this Script is based on some reverse engineering over the sample used in-the-wild: 938545f7bbe40738908a95da8cdeabb2a11ce2ca36b0f6a74deda9378d380a52 docx file You need to...

(0Day) Microsoft Windows CAB File SmartScreen Bypass Vulnerability

This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

CVE-2012-1451

The CAB file parser in Emsisoft Anti-Malware 5.1.0.1 and Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0 allows remote attackers to bypass malware detection via a CAB file with a modified reserved2 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is...

CVE-2023-51603

Honeywell Saia PG5 Controls Suite CAB File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Honeywell Saia PG5 Controls Suite. User interaction is required to exploit this vulnerabili...

CVE-2023-51603

The CVE-2023-51603 issue affects Honeywell Saia PG5 Controls Suite, stemming from a CAB file parsing vulnerability. The root cause is insufficient validation of a user-supplied path before using it in file operations, enabling directory traversal. Impacted component: CAB parsing logic in the cont...

CVE-2023-51603 Honeywell Saia PG5 Controls Suite CAB File Parsing Directory Traversal Remote Code Execution Vulnerability

Honeywell Saia PG5 Controls Suite CAB File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Honeywell Saia PG5 Controls Suite. User interaction is required to exploit this vulnerabili...