11 matches found
OESA-2026-1474 firefox security update
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. %if 0 %global mozdebugprefix /lib/debug %global mozdebugdir /lib/debug/ %global unamem %uname -m %global symbolsfilename -.en-US.-%uname.crashreporter-symbols.zip %global symbolsfilepath...
Apple CrashReporter Authorization Issues Vulnerability
Apple CrashReporter is a core component of Apple Inc. that is used in mobile devices for monitoring system crash events. An authorization issue vulnerability exists in Apple CrashReporter that stems from the application not properly imposing security restrictions within the Crash Reporter compone...
Fedora 28 : firefox (2019-0a381a82de)
Updated to latest upstream 65.0.2 - Disabled Mozilla Crashreporter to get Wayland crashes by ABRT ---- - new upstream version with skia and other security fixes - details at https://www.mozilla.org/en-US/security/advisories/mfsa20 19-05/ Note that Tenable Network Security has extracted the...
Razer Synapse Local Elevation of Privilege Vulnerability
Razer Synapse is a Razer device configuration software from Razer USA. A security vulnerability exists in Razer Synapse 2.20.15.1104 and earlier versions, which stems from the program assigning weak privileges to the CrashReporter directory. A local attacker can exploit the vulnerability to gain...
CVE-2017-11652
Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the CrashReporter directory, which allows local users to gain privileges via a Trojan horse dbghelp.dll file...
Design/Logic Flaw
Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the CrashReporter directory, which allows local users to gain privileges via a Trojan horse dbghelp.dll file...
CVE-2017-11652
Razer Synapse 2.20.15.1104 and earlier suffer weak permissions on the CrashReporter directory, enabling local attackers to gain privileges by dropping a malicious dbghelp.dll. Affected component: CrashReporter handling in Razer Synapse; root cause: insecure directory permissions facilitating DLL ...
Apple CrashDump privilege escalation
Overview CrashReporter contains a privilege escalation vulnerability that may allow authenticated users to run commands as root. Description CrashReporter is a debugging facility in Apple OS X that logs information program crashes.CrashReporter contains a privilege escalation vulnerability. This...
CVE-2007-0467
crashdump in Apple Mac OS X 10.4.8 allows local users in the admin group to modify arbitrary files or gain privileges via a symlink attack on application logs in /Library/Logs/CrashReporter/...
CVE-2007-0467
crashdump in Apple Mac OS X 10.4.8 allows local users in the admin group to modify arbitrary files or gain privileges via a symlink attack on application logs in /Library/Logs/CrashReporter/...
MOAB-28-01-2007.rb.txt
!/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. 1 Stop crashdump from writing to /Library/Logs via chmod 000 /Library/Logs/CrashReporter 2 Make symlink to /Library/Logs/CrashReporter/knownprog.crash.log 3 Create a program with a modified LINKEDIT segment that...