CLSA-2026-1777969446 binutils: Fix of 8 CVEs

CVE-2021-45078: fix heap-based buffer overflow in stabxcoffbuiltintype - CVE-2021-46174: fix buffer overflow in readsectionstabsdebugginginfo - CVE-2022-44840: fix heap buffer overflow in findsectioninset - CVE-2022-45703: fix heap buffer overflow in displaygdbindex - CVE-2022-47695: fix...

EUVD-2022-55162

Malicious code in bioql PyPI...

CVE-2022-49761 btrfs: always report error in run_one_delayed_ref()

In the Linux kernel, the following vulnerability has been resolved: btrfs: always report error in runonedelayedref Currently we have a btrfsdebug for runonedelayedref failure, but if end users hit such problem, there will be no chance that btrfsdebug is enabled. This can lead to very little usefu...

CVE-2018-20607

CVE-2018-20607 describes an information-disclosure vulnerability in imcat 4.4 , where remote attackers can obtain potentially sensitive debugging information via the URI root/tools/adbug/binfo.php . The connected documents consistently identify this URI as the disclosure point, indicating a parti...

GNU Binutils 'read_symbol_stabs_debugging_info' function out-of-bounds heap read vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. A security vulnerability exists in the...

CVE-2017-12456

The readsymbolstabsdebugginginfo function in rddbg.c in GNU Binutils 2.29 and earlier allows remote attackers to cause an out of bounds heap read via a crafted binary file...

Tails 1.6 Information Disclosure

Tails On Tails /dev/null | grep ^amnesia amnesia:$6$r0jt1v9E$UOrWbJ70qAH/sjaKfjmCMvkXZ19bqC2ieQ2UvYk0HKwVvgxuZFtyIwjoLfgH AwrZVM3a0NTEkcsQY1hn/Uq2S0:16710:0:99999:7:::...

AdThief iOS Malware Affecting 75K Jailbroken Devices

A relatively new form of malware on iOS is estimated to have stolen revenue from 22 million ads and infected upwards to 75,000 devices so far. The malware, iOS/AdThief, was first identified back in March but wasn’t fully articulated until Axelle Aprville, a researcher with Fortinet, looked into t...

HTML Email Creator & Sender 2.3 - Local Buffer Overflow PoC (SEH)

No description provided by source. /0day HTML Email Creator & Sender v2.3 Local Buffer OverflowSeh Poc Debugging info Seh handler is overwriten , the offset is at 60 bytes in our buffer so you have to build your buffer as follows: PONTER TO NEXT SEH-------SEH HANDLER----NOP------SHELLCODE | | | |...

NetLink Shell Upload

====================================== NetLink Remote Arbitrary File Upload Vulnerability Download: http://sourceforge.net/projects/kp-netlink/ by lumut-- Homepage: lumutcherenza.biz ====================================== upload.php "; echo ""; echo "Filename: ".$filename; echo "File Type:...

IncrediMail 2.0 Buffer Overflow

IncrediMail 2.0 activeX Authenticate bof poc by d3b4g Tested: incerdiMail 2.0 Vendor url:http://www.incredimail.com/english/splash.aspx Tested on windows XP SP3 1-03-2010 Debugging info -------------- Exception Code: ACCESSVIOLATION Disasm: 678914AE MOV EDX,ECX ImSpoolU.dll Seh Chain:...

MailEnable 1.52 HTTP Mail Service Buffer Overflow

/ MailEnable 1.52 HTTP Mail Service Stack Overflow POC Exploitencoded comand Debugging Info szAppName : MEHTTPS.EXE szAppVer : 1.0.0.1 szModName : MEHTTPS.EXE szModVer : 1.0.0.1 offset : 00010c21 Files that caused error : C:\DOCUME1\Stefan\LOCALS1\Temp\WER567c.dir00\MEHTTPS.EXE.mdmp...

MailEnable 1.52 HTTP Mail Service Stack BOF Exploit PoC

Exploit for unknown platform in category dos / poc ======================================================= MailEnable 1.52 HTTP Mail Service Stack BOF Exploit PoC ======================================================= / MailEnable 1.52 HTTP Mail Service Stack Overflow POC Exploitencoded comand...

MailEnable 1.52 HTTP Mail Service Stack BOF Exploit PoC

No description provided by source. / MailEnable 1.52 HTTP Mail Service Stack Overflow POC Exploitencoded comand Debugging Info szAppName : MEHTTPS.EXE szAppVer : 1.0.0.1 szModName : MEHTTPS.EXE szModVer : 1.0.0.1 offset : 00010c21 Files that caused error :...

HTML Email Creator & Sender 2.3 - Local Buffer Overflow (PoC) (SEH)

/0day HTML Email Creator & Sender v2.3 Local Buffer OverflowSeh Poc Debugging info Seh handler is overwriten , the offset is at 60 bytes in our buffer so you have to build your buffer as follows: PONTER TO NEXT SEH-------SEH HANDLER----NOP------SHELLCODE | | | | JMP 4 bytes POP POP RET 500x90...

CVE-2000-0430

The provided documents identify CVE-2000-0430 as a flaw in Cart32 where remote attackers can access sensitive debugging information by appending /expdate to the URL. Affected component: Cart32 (web/URL handling). Root cause: improper handling of URL paths leading to exposure of debugging data; im...