EUVD-2008-4889

Malware in sbrugna...

postgresql: PostgreSQL code execution in restore operation

A flaw was found in PostgreSQL. This vulnerability allows a malicious superuser on a PostgreSQL server to inject arbitrary code into dump files created by pgdump, pgdumpall, and pgrestore, causing arbitrary code execution on the client machine when these dump files are restored by psql due to...

GHSA-PW38-XV9X-H8CH RunGptLLM class in LlamaIndex has a command injection

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

RunGptLLM class in LlamaIndex has a command injection

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

Visual Studio 2022 version 17.0.3 update

Visual Studio 2022 version 17.0.3 security update. This update applies to all affected editions of Visual Studio 2022 version lower than 17.0.3 on the Current channel. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the clie...

EulerOS 2.0 SP1 : bash (EulerOS-SA-2017-1163)

According to the versions of the bash package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary command injection flaw was found in the way bash processed the hostname value. A malicious DHCP server could use this flaw to execute...

bash: Arbitrary code execution via malicious hostname

An arbitrary command injection flaw was found in the way bash processed the hostname value. A malicious DHCP server could use this flaw to execute arbitrary commands on the DHCP client machines running bash under specific circumstances...

CVE-2013-1192

The JAR files on Cisco Device Manager for Cisco MDS 9000 devices before 5.2.8, and Cisco Device Manager for Cisco Nexus 5000 devices, allow remote attackers to execute arbitrary commands on Windows client machines via a crafted element-manager.jnlp file, aka Bug IDs CSCty17417 and CSCty10802...

CVE-2011-4786

A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via unspecified vectors, a different vulnerability than CVE-2011-2404 and CVE-2011-4787...

Code injection

NetSupport Manager NSM before 11.00.0005 sends HTTP headers with cleartext fields containing details about client machines, which allows remote attackers to obtain potentially sensitive information by sniffing the network...

CVE-2010-4184

NetSupport Manager NSM before 11.00.0005 sends HTTP headers with cleartext fields containing details about client machines, which allows remote attackers to obtain potentially sensitive information by sniffing the network...

Advisory: Half-Life remote buffer overflow vulnerability

Author: Stan Bubrouski [email protected] Date: September 20, 2001 Program: Half-Life Versions Affected: 1.1.0.8 September 19, 2001 and all previous versions Severity: A Half-Life server can exploit buffer overflow in Client to execute arbitrary code on their machines. Vendor: Valve Software...

Visual Studio 2019 version 16.9.0 to 16.9.25 update

This security update applies to all editions of Visual Studio 2019 between versions 16.9.0 and 16.9.24, and will update client machines to version 16.9.25. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in order...

Visual Studio 2022 version 17.9.6 update

This security update applies to all editions of Visual Studio 2022, and will update client machines on the Current channel to version 17.9.6. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in order for the update...

Visual Studio 2022 version 17.8.16 update

This security update applies to all editions of Visual Studio 2022, and will update client machines on the LTSC channel to version 17.8.16. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in order for the update t...

Visual Studio 2022 version 17.2.19 update

This security update applies to all editions of Visual Studio 2022, and will update client machines on the LTSC channel to version 17.2.19. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in order for the update t...

Visual Studio 2017 version 15.9.56 update

This security update applies to all editions of Visual Studio 2017 between versions 15.0.0 and 15.9.55, and will update client machines to version 15.9.56. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in order...

Visual Studio 2022 version 17.10.4 update

This security update applies to all editions of Visual Studio 2022, and will update client machines on either the Current or LTSC channels to version 17.10.4. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in ord...

Visual Studio 2022 version 17.8.7 update

This security update applies to all editions of Visual Studio 2022, and will update client machines on either the Current or LTSC channels to version 17.8.7. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in orde...

Visual Studio 2022 version 17.0.20 update

This security update applies to all editions of Visual Studio 2022, and will update client machines on the LTSC channel to version 17.0.20. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in order for the update t...