22 matches found
EUVD-2006-3778
Malware in sbrugna...
EUVD-2017-17373
Malware in sbrugna...
EUVD-2003-0770
Malware in sbrugna...
MAL-2024-7655 Malicious code in sap-callerid (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis aaf954365d809a7ff5859e9f1797a1acb30ac55273ed61e83c468025645b7116 The OpenSSF Package Analysis project identified 'sap-callerid' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in sap-callerid (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis aaf954365d809a7ff5859e9f1797a1acb30ac55273ed61e83c468025645b7116 The OpenSSF Package Analysis project identified 'sap-callerid' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...
UpCall - CallerID&Spam Numbers - Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application UpCall - CallerID&Spam Numbers published at the 'play' market has multiple vulnerabilities...
KDE kauth and kdelibs Logic Flaw Lets Local Users Obtain Root Privileges(CVE-2017-8422)
This document describes a generic root exploit against kde. The exploit is achieved by abusing a logic flaw within the KAuth framework which is present in kde4 org.kde.auth and kde5 org.kde.kf5auth. It is possible to spoof what KAuth calls callerID's which are indeed D-Bus unique names of the...
CVE-2017-8422
KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app...
CVE-2017-8422
KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app...
CVE-2017-8422
A privilege escalation flaw was found in the way kdelibs handled D-Bus messages. A local user could potentially use this flaw to gain root privileges by spoofing a callerID and leveraging a privileged helper application...
CVE-2017-8422
KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app...
Sync.ME – Caller ID & Block - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities
HackApp vulnerability scanner discovered that application Sync.ME – Caller ID & Block published at the 'play' market has multiple vulnerabilities...
CVE-2006-6244
Coalescent Systems freePBX formerly Asterisk Management Portal before 2.2.0rc1 allows attackers to execute arbitrary commands via shell metacharacters in 1 CALLERIDname or 2 CALLERIDnumber...
CVE-2006-6244
Coalescent Systems freePBX formerly Asterisk Management Portal before 2.2.0rc1 allows attackers to execute arbitrary commands via shell metacharacters in 1 CALLERIDname or 2 CALLERIDnumber...
CVE-2006-6244
Coalescent Systems freePBX formerly Asterisk Management Portal before 2.2.0rc1 allows attackers to execute arbitrary commands via shell metacharacters in 1 CALLERIDname or 2 CALLERIDnumber...
CVE-2006-3786
Symantec pcAnywhere 12.5 uses weak integrity protection for .cif aka caller or CallerID files, which allows local users to generate a custom .cif file and modify the superuser flag...
CVE-2006-3784
Symantec pcAnywhere 12.5 uses weak default permissions for the "Symantec\pcAnywhere\Hosts" folder, which allows local users to gain privileges by inserting a superuser .cif aka caller or CallerID file into the folder, and then using a pcAnywhere client to login as a local administrator...
CVE-2006-3786
Symantec pcAnywhere 12.5 is affected by CVE-2006-3786 due to weak integrity protection for .cif (CallerID) files, enabling local users to craft a custom .cif file and modify the superuser flag. The concrete impact is local privilege manipulation. Exploitation status is not provided in the connect...
CVE-2003-0779
SQL injection vulnerability in the Call Detail Record CDR logging functionality for Asterisk allows remote attackers to execute arbitrary SQL via a CallerID string...
CVE-2003-0779
SQL injection vulnerability in the Call Detail Record CDR logging functionality for Asterisk allows remote attackers to execute arbitrary SQL via a CallerID string...