8751 matches found
Fedora Update for dtkwidget FEDORA-2019-3d418f349c
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Judge Rules No Jail Time for WannaCry 'Killer' Marcus Hutchins, a.k.a. MalwareTech
Marcus Hutchins, better known as MalwareTech, has been sentenced to "time served" and one year of supervised release for developing and selling the Kronos banking malware. Yes, Hutchins will not go to prison, United States District Judge J.P. Stadtmueller ruled today in Milwaukee County Court,...
Netwide Assembler Code Issue Vulnerability
Netwide Assembler NASM is a Linux-based assembler. The product is capable of creating binaries and writing bootloaders. A code issue vulnerability exists in Netwide Assembler. The vulnerability stems from an improperly designed or implemented code development process for a networked system or...
Moderate: Red Hat Security Advisory: java-1.7.0-openjdk security update
An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
The vulnerability of the `ppdcSource::find_variable` function in the workmanir utility from the libirman-dev package allows a hacker to cause a service failure.
The vulnerability of the ppdcSource::findvariable function /usr/lib/x8664-linux-gnu/libcupsppdc.so.1 in the workmanir utility from the libirman-dev package is related to buffer overflow vulnerabilities 0x00007ffff7bca37a. Exploiting this vulnerability may allow an attacker to cause a service...
SQL injection vulnerability in we***.asp file of website building system of Pengcheng Network Studio in Lu'an Development Zone.
Lu'an City Development Zone Pengcheng Network Studio is a company that provides e-commerce solutions and value-added services for enterprises and merchants. There is a SQL injection vulnerability in the we.asp file of the website building system of Pengcheng Network Studio in the development zone...
PT-2022-8603 · Unknown +2 · Platinum Upnp Sdk +2
Name of the Vulnerable Software and Affected Versions: Platinum Upnp SDK versions prior to 1.2.1 Description: The issue allows for a directory traversal attack, which could be exploited by sending a malicious URL, such as "http://ip:port/../privacy.avi", to compromise a victim's privacy. This cou...
Parrot Security 4.7 - Security GNU/Linux Distribution Designed with Cloud Pentesting and IoT Security in Mind
Parrot is a GNU/Linux distribution based on Debian Testing and designed with Security, Development and Privacy in mind. It includes a full portable laboratory for security and digital forensics experts, but it also includes all you need to develop your own software or protect your privacy while...
National Security Agency Ghidra Code Issue Vulnerability
National Security Agency Ghidra is a software reverse engineering SRE framework for the National Security Agency NSA. A code issue vulnerability exists in National Security Agency Ghidra versions prior to 9.0.1. The vulnerability stems from an improperly designed or implemented code development...
EDK2 Stack Buffer Overflow Vulnerability
EDK2 is a set of cross-platform firmware development environment based on UEFI and PI specifications. A buffer overflow vulnerability in the stack exists in EDK2. A remote attacker could exploit this vulnerability to run arbitrary code in the context of an affected application or possibly cause a...
EDK2 Security Bypass Vulnerability
EDK2 is a set of cross-platform firmware development environment based on UEFI and PI specifications. A security bypass vulnerability exists in EDK2. A remote attacker could exploit this vulnerability to cause an affected application to crash, resulting in a denial of service or bypass security...
PCMan FTP Server 2 ALLO Buffer Overflow Exploit
Vulnerability Title: PCMan FTP Server 2 - 'ALLO' Remote Buffer Overflow Discovered by: Nassim Asrir Tested on: win7 x32 Thanks To : Chagi-Lagi - MY.Neggaoui !/usr/bin/python2.7 -- coding: utf-8 - import socket ret = "\xf7\xf8\xc5\x75" @ JMP ESP Kernel32.dll calc...
[SECURITY] Fedora 30 Update: python-django-2.1.10-1.fc30
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
File Upload Vulnerability in the Backstage of Website Star of Shanghai Meicang Technology Information Development Co.
Ltd., is a cloud computing-based Internet application service provider. There is a file uploading vulnerability in the background of Shanghai Meicang Technology and Information Development Co...
Fedora Update for python-django FEDORA-2019-d9aa58d863
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2019-8998
CVE-2019-8998 affects BlackBerry QNX Software Development Platform up to version 6.5.0 SP1. The procfs (/proc) service exposes process information, enabling a less-privileged local attacker to access a target process address space (information disclosure leading to local privilege escalation). Se...
Microsoft DirectWrite AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readEncoding
Microsoft DirectWrite AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readEncoding -----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling library...
Microsoft DirectWrite AFDKO - Heap-Based Buffer Overflow Due to Integer Overflow in readTTCDirectory
Microsoft DirectWrite AFDKO - Heap-Based Buffer Overflow Due to Integer Overflow in readTTCDirectory -----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling libra...
Microsoft DirectWrite AFDKO - Stack Corruption in OpenType Font Handling Due to Negative nAxes
Microsoft DirectWrite AFDKO - Stack Corruption in OpenType Font Handling Due to Negative nAxes -----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling library...
Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow Due to Integer Overflow in readTTCDirectory
-----===== Background =====----- AFDKO Adobe Font Development Kit for OpenType is a set of tools for examining, modifying and building fonts. The core part of this toolset is a font handling library written in C, which provides interfaces for reading and writing Type 1, OpenType, TrueType to some...