XZ: Embedded Malicious Code (CVE-2024-3094)

A Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code. This file is then used to modify specific...

AdvanceCOMP 安全漏洞

AdvanceCOMP is a cross-platform command line tool for data compression. The product is capable of optimizing compressed files and reducing their size. A security vulnerability exists in AdvanceCOMP v2.3 that stems from a segmentation error...

AdvanceCOMP 缓冲区错误漏洞

AdvanceCOMP is a cross-platform command line tool for data compression. The product is capable of optimizing compressed files and reducing their size. A security vulnerability exists in AdvanceCOMP v2.3, which stems from the inclusion of a heap buffer overflow...

AdvanceCOMP 缓冲区错误漏洞

AdvanceCOMP is a cross-platform command line tool for data compression. The product is capable of optimizing compressed files and reducing their size. A security vulnerability exists in AdvanceCOMP v2.3, which stems from the inclusion of a heap buffer overflow...

BitZipper Installed

BitZipper, a data compression tool, is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid66554; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/01/31"; scriptnameenglish:"BitZipper Installed";...