29 matches found
Ubuntu: Security Advisory (USN-7349-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-7349-1: RAR vulnerabilities
It was discovered that RAR incorrectly handled certain paths. If a user or automated system were tricked into extracting a specially crafted RAR archive, a remote attacker could possibly use this issue to write arbitrary files outside of the targeted directory. CVE-2022-30333 It was discovered th...
Ubuntu 20.04 LTS / 22.04 LTS : UnRAR vulnerabilities (USN-7350-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7350-1 advisory. It was discovered that UnRAR incorrectly handled certain paths. If a user or automated system were tricked into extracting a specially crafte...
CVE-2023-40477
RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must...
CVE-2023-40477
RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must...
CVE-2023-40477
CVE-2023-40477 affects WinRAR (Recovery Volume processing). The issue stems from insufficient validation of user-supplied data during recovery-volume handling, enabling a memory access past the end of an allocated buffer and potentially remote code execution in the context of the target process. ...
CVE-2023-40477 RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability
RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must...
openSUSE: Security Advisory for clamav (SUSE-SU-2023:4415-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-6569-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6569-1: libclamunrar vulnerabilities
it was discovered that libclamunrar incorrectly handled directories when extracting RAR archives. A remote attacker could possibly use this issue to overwrite arbitrary files and execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04. CVE-2022-30333 ...
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : libclamunrar vulnerabilities (USN-6569-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6569-1 advisory. it was discovered that libclamunrar incorrectly handled directories when extracting RAR archives. A remote attacker could...
Debian dla-3653 : libclamunrar - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3653 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3653-1 [email protected] https://www.debian.org/lts/security/...
SUSE: Security Advisory (SUSE-SU-2023:4415-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : clamav (SUSE-SU-2023:4415-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4415-1 advisory. - Updated to version 0.103.11: - CVE-2023-40477: Updated libclamunrar dependency to version 6.2.12...
SUSE-SU-2023:4415-1 Security update for clamav
This update for clamav fixes the following issues: - Updated to version 0.103.11: - CVE-2023-40477: Updated libclamunrar dependency to version 6.2.12 bsc1216625...
CVE-2023-38831: Navigating the Threat Landscape of the Latest Security Vulnerability
CVE-2023-38831: Navigating the Threat Landscape of the Latest Security Vulnerability By Trellix · November 9, 2023 This blog was written by Neeraj Kumar Singh Executive Summary In August 2023, WinRAR released a security patch to address a remote code execution vulnerability in WinRAR's ZIP archiv...
SUSE SLES12 Security Update : clamav (SUSE-SU-2023:4297-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:4297-1 advisory. - Update to 0.103.10 CVE-2023-40477 CVE-2023-40477 Note that Nessus has not tested for this issue but has instead relied only on the...
SUSE: Security Advisory (SUSE-SU-2023:4297-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:4297-1 Security update for clamav
This update for clamav fixes the following issues: - Updated to version 0.103.11: - CVE-2023-40477: Updated libclamunrar dependency to version 6.2.12 bsc1216625...
Fake PoC Script Used to Trick Researchers into Downloading VenomRAT
By Waqas New Malware Campaign Targets CVE-2023-40477 Vulnerability in WinRAR - Researchers Advise Users to Update WinRAR and Be Cautious of Clicking on Links. This is a post from HackRead.com Read the original post: Fake PoC Script Used to Trick Researchers into Downloading VenomRAT...