6839 matches found
Open redirect
The filename appearing in the "Downloads" panel improperly renders some Unicode characters, allowing for the file name to be spoofed. This can be used to obscure the file extension of potentially executable files from user view in the panel. Note: the dialog to open the file will show the full,...
CVE-2017-7821
A vulnerability where WebExtensions can download and attempt to open a file of some non-executable file types. This can be triggered without specific user interaction for the file download and open actions. This could be used to trigger known vulnerabilities in the programs that handle those...
CVE-2018-5105
WebExtensions can bypass user prompts to first save and then open an arbitrarily downloaded file. This can result in an executable file running with local user privileges without explicit user consent. This vulnerability affects Firefox 58...
CVE-2017-7821
A vulnerability where WebExtensions can download and attempt to open a file of some non-executable file types. This can be triggered without specific user interaction for the file download and open actions. This could be used to trigger known vulnerabilities in the programs that handle those...
CVE-2018-5173
The filename appearing in the "Downloads" panel improperly renders some Unicode characters, allowing for the file name to be spoofed. This can be used to obscure the file extension of potentially executable files from user view in the panel. Note: the dialog to open the file will show the full,...
DEBIAN-CVE-2018-10360
The docorenote function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted ELF file...
CVE-2016-10689
The windows-iedriver module downloads fixed version of iedriverserver.exe windows-iedriver downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested resources with an attacker controlled co...
Man In The Middle (MitM)
imageoptim is vulnerable to man-in-the-middle MitM attack. It allows the download of executable resources HTTP, leading to MitM. Moreover, an attacker can also swap the authentic file with its malicious file to launch remote code execution RCE if the attacker is on the network or positioned in...
PT-2018-5002 · Unknown · Hopper Disassembler
Name of the Vulnerable Software and Affected Versions: Hopper Disassembler version 3.11.20 Description: An exploitable out of bounds write issue exists in the parsing of ELF Section Headers. A specially crafted ELF file can cause attacker-controlled pointer arithmetic, resulting in a partially...
limbus-buildgen code execution vulnerability
limbus-buildgen is a library that generates build files for small C/C++ codebases. A security vulnerability exists in limbus-buildgen, which originates when the program downloads an executable file over an unencrypted HTTP connection. A remote attacker can exploit the vulnerability by interceptin...
selenium-standalone-painful remote code execution vulnerability
selenium-standalone-painful is a program for installing command line tools for starting a selenium standalone server. A security vulnerability exists in selenium-standalone-painful that originates when the program downloads an executable file over an unencrypted HTTP connection. A remote attacker...
massif code execution vulnerability
massif is a WebKit script written in JavaScript. A security vulnerability exists in massif, which originates when the program downloads an executable file over an unencrypted HTTP connection. A remote attacker could exploit the vulnerability by intercepting the response and replacing the requeste...
native-opencv file download vulnerability
native-opencv is an open source computer vision library with multi-platform support. A security vulnerability exists in native-opencv that originates when a program downloads an executable file over an unencrypted HTTP connection. A remote attacker can exploit the vulnerability by intercepting th...
massif code execution vulnerability (CNVD-2018-15161)
massif is a WebKit script written in JavaScript. A security vulnerability exists in massif, which originates when the program downloads an executable file over an unencrypted HTTP connection. A remote attacker could exploit the vulnerability by intercepting the response and replacing the requeste...
tomita-parser file download vulnerability
tomita-parser is a tool that provides structured data from natural language text. A file download vulnerability exists in tomita-parser that originates when the program downloads an executable file over an unencrypted HTTP connection. A remote attacker could exploit the vulnerability by...
roslib-socketio code execution vulnerability
roslib-socketio is a ROS Robot Operating System JavaScript support library. A security vulnerability exists in roslib-socketio, which originates when a program downloads an executable file over an unencrypted HTTP connection. A remote attacker could exploit the vulnerability by intercepting the...
Prince Code Execution Vulnerability
Prince is a use of JavaScript to convert XML/HTML files into PDF documents API. A security vulnerability exists in Prince that originates when the program downloads an executable file over an unencrypted HTTP connection. A remote attacker could exploit the vulnerability by intercepting the respon...
JVN#20040004: The installer of "FLET'S VIRUS CLEAR Easy Setup & Application Tool" and "FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool" may insecurely invoke an executable file
The installer of "FLET'S VIRUS CLEAR Easy Setup & Application Tool" and "FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool" provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION contains an issue with the DLL search path, which may lead to insecurely invoke an executable file CWE-427...
Square Enix Final Fantasy XIV for Windows Man-in-the-Middle Attack Vulnerability
Square Enix Final Fantasy XIV for Windows is a Japanese role-playing game based on the Windwos platform by Square Enix. Square Enix's Final Fantasy XIV for Windows is a role-playing game based on the Windwos platform. A security vulnerability exists in the ffxivlauncher.exe file in versions 4.21...
UBUNTU-CVE-2018-11384
The shop function in radare2 2.5.0 allows remote attackers to cause a denial of service heap-based out-of-bounds read and application crash via a crafted ELF file...