EUVD-2014-2419

Malware in sbrugna...

EUVD-2024-17358

Malicious code in bioql PyPI...

EUVD-2024-48984

Malicious code in bioql PyPI...

CVE-2024-8159

Deep Freeze 9.00.020.5760 is vulnerable to an out-of-bounds read vulnerability by triggering the 0x70014 IOCTL code of the FarDisk.sys driver...

CVE-2024-8159

Deep Freeze 9.00.020.5760 is vulnerable to an out-of-bounds read vulnerability by triggering the 0x70014 IOCTL code of the FarDisk.sys driver...

CVE-2024-8159

The CVE-2024-8159 issue affects Deep Freeze 9.00.020.5760 and is caused by an out-of-bounds read in the FarDisk.sys driver triggered by IOCTL 0x70014. Documents state it is locally exploitable and can lead to system compromise; the known remediation is to patch to an updated Deep Freeze build whe...

CVE-2024-8159 Deep Freeze 9.00.020.5760 - Out-of-bounds read

Deep Freeze 9.00.020.5760 is vulnerable to an out-of-bounds read vulnerability by triggering the 0x70014 IOCTL code of the FarDisk.sys driver...

CVE-2024-8159 Deep Freeze 9.00.020.5760 - Out-of-bounds read

Deep Freeze 9.00.020.5760 is vulnerable to an out-of-bounds read vulnerability by triggering the 0x70014 IOCTL code of the FarDisk.sys driver...

Faronics Deep Freeze 缓冲区错误漏洞

Faronics Deep Freeze is a system recovery software developed by Faronics, Inc. A buffer error vulnerability exists in Faronics Deep Freeze version 9.00.020.5760, which stems from susceptibility to an out-of-bounds read vulnerability that can trigger the 0x70014 IOCTL code in the FarDisk.sys drive...

PT-2024-38845 · Faronics · Deep Freeze

Name of the Vulnerable Software and Affected Versions: Deep Freeze version 9.00.020.5760 Description: The issue is an out-of-bounds read vulnerability in the FarDisk.sys driver of Deep Freeze. It can be triggered by the 0x70014 IOCTL code. This vulnerability is locally exploitable and can lead to...

Code injection

A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which affects versions 8.30.020.4627 and earlier. This vulnerability affects the DFServ.exe file. An attacker with local user privileges could exploit this vulnerability to replace the legitimate DFServ.exe...

CVE-2024-1618 Unquoted item or search path vulnerability in Faronics Deep Freeze Server Standard

A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which affects versions 8.30.020.4627 and earlier. This vulnerability affects the DFServ.exe file. An attacker with local user privileges could exploit this vulnerability to replace the legitimate DFServ.exe...

CVE-2024-1618

Affected software: Faronics Deep Freeze Server Standard, version ≤ 8.30.020.4627. Vulnerable component: DFServ.exe (service). Root cause: Unquoted item / search path vulnerability that lets a malicious file with the same name be loaded if placed in a higher-priority directory. Impact: Local attac...

CVE-2024-1618 Unquoted item or search path vulnerability in Faronics Deep Freeze Server Standard

A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which affects versions 8.30.020.4627 and earlier. This vulnerability affects the DFServ.exe file. An attacker with local user privileges could exploit this vulnerability to replace the legitimate DFServ.exe...

PT-2024-18171 · Faronics · Faronics Deep Freeze Server Standard

Name of the Vulnerable Software and Affected Versions: Faronics Deep Freeze Server Standard versions 8.30.020.4627 and earlier Description: A search path or unquoted item vulnerability affects the DFServ.exe file, allowing an attacker with local user privileges to replace the legitimate DFServ.ex...

Faronics Deep Freeze Code Issue Vulnerability

Faronics Deep Freeze is a system recovery software developed by Faronics, Inc. A code issue vulnerability exists in Faronics Deep Freeze version 8.30.020.4627 and prior versions, which originates from a malicious code execution that can be performed by renaming a malicious executable file to...

CVE-2014-2382

The DfDiskLo.sys driver in Faronics Deep Freeze Standard and Enterprise 8.10 and earlier allows local administrators to cause a denial of service crash and execute arbitrary code via a crafted IOCTL request that writes to arbitrary memory locations, related to the IofCallDriver function...

CVE-2014-2382

The CVE-2014-2382 issue affects the DfDiskLo.sys driver in Faronics Deep Freeze Standard/Enterprise ≤8.10. A crafted IOCTL request allows writing to arbitrary memory via the IofCallDriver path, enabling local administrators to crash the system or execute arbitrary code with kernel-level privilege...

Faronics Deep Freeze Arbitrary Code Execution Vulnerability

Faronics Deep Freeze Standard and Enterprise suffers from an arbitrary code execution vulnerability. Vulnerability title: Arbitrary Code Execution In Faronics Deep Freeze Standard and Enterprise CVE: CVE-2014-2382 Vendor: Faronics Product: Deep Freeze Standard and Enterprise Affected version:...

Research Outlines New Deep Freeze Data Recovery Technique on Android Phone

Hackers and data recovery specialists alike could soon be turning to a new technique that under the right conditions can allow for the harvesting of personal information from phones, even after they’ve been frozen. A group of German researchers from the University of Erlangen-Nuremberg have...