Mono MonoX CMS Command Execution Vulnerability

MonoX CMS is an ASP.NET-based content management system CMS and social networking platform from Mono Croatia. A security vulnerability exists in Mono MonoX CMS 5.1.40.5152 and earlier versions, which originates from the program failing to check the validity of the ffmpeg.exe file before executing...

CVE-2020-12473

MonoX through 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program...

Code injection

MonoX through 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program...

CVE-2020-12473

MonoX through 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program...

Hackers Mount Zero-Day Attacks on Sophos Firewalls

Attackers have been targeting the Sophos XG Firewall both physical and virtual versions using a zero-day exploit, according to the security firm – with the ultimate goal of dropping the Asnarok malware on vulnerable appliances. Sophos said in a posting updated on Monday that the bug in question i...

The vulnerability of Google Chrome browser installers, related to insecure management of privileges, allows a perpetrator to gain unauthorized access to information and compromise its integrity and accessibility.

The vulnerability of Google Chrome browser installers is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to information and compromise its integrity and availability through a specially created...

EquationExploit

Based on the provided code, it appears to be a Windows executable file likely a PE file that contains a malicious payload. The code is written in C and is designed to be compiled and executed on a Windows system. The code is a PE file, which is a type of executable file used on Windows systems. T...

Acronis: anti_ransomware_service.exe REST API does not require authentication

antiransomwareservice.exe exposes a REST API that can be used by everyone, even unprivileged users. This API is used to communicate from the Acronis True Image 2020 GUI to the antiransomwareservice.exe. This can be exploited to add an arbitary malicious executable to the whitelist or even exclude...

kernel: offset2lib allows for the stack guard page to be jumped over

A flaw was found in the Linux kernel's implementation of mapping ELF PIE binary loading to allow evasion of the stack-guard page protection mechanisms that intend to mitigate this behavior. This issue appears to be limited to i386 based systems...

Flexera Software FlexNet Publisher Denial of Service Vulnerability

Flexera Software FlexNet Publisher FLEXlm is the core software license management component of the Entitlement Relationship Management Solution from Flexera Software. The product provides software and hardware manufacturers with the ability to price, package and customize software license terms. ...

CVE-2019-8960

A Denial of Service vulnerability related to command handling has been identified in FlexNet Publisher lmadmin.exe version 11.16.2. The message reading function used in lmadmin.exe can, given a certain message, call itself again and then wait for a further message. With a particular flag set in t...

You receive an access violation error and the system may appear to become unresponsive when you try to install an update from Windows Update or from Microsoft Update

You receive an access violation error and the system may appear to become unresponsive when you try to install an update from Windows Update or from Microsoft Update The problem that the "Symptoms" section describes was corrected in Windows Update Agent 3.0 and in update 927891. These updates wer...

CVE-2020-10569

SysAid On-Premise 20.1.11, by default, allows the AJP protocol port, which is vulnerable to a GhostCat attack. Additionally, it allows unauthenticated access to upload files, which can be used to execute commands on the system by chaining it with a GhostCat attack. NOTE: This may be a duplicate o...

CVE-2020-5569

An unquoted search path vulnerability exists in HDD Password tool for Windows version 1.20.6620 and earlier which is stored in CANVIO PREMIUM 3TBHD-MB30TY, HD-MA30TY, HD-MB30TS, HD-MA30TS, CANVIO PREMIUM 2TBHD-MB20TY, HD-MA20TY, HD-MB20TS, HD-MA20TS, CANVIO PREMIUM 1TBHD-MB10TY, HD-MA10TY,...

Design/Logic Flaw

An unquoted search path vulnerability exists in HDD Password tool for Windows version 1.20.6620 and earlier which is stored in CANVIO PREMIUM 3TBHD-MB30TY, HD-MA30TY, HD-MB30TS, HD-MA30TS, CANVIO PREMIUM 2TBHD-MB20TY, HD-MA20TY, HD-MB20TS, HD-MA20TS, CANVIO PREMIUM 1TBHD-MB10TY, HD-MA10TY,...

Malicious Package

atlas-client is a malicious package. The package typosquats on the original package atlasclient and executes malicious code in a portable executable hidden in a .png file...

Zoom Client Trust Management Issue Vulnerability

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A trust management issue vulnerability exists in Zoom Client for Meetings version 4.6.11, which stems from the airhost.exe file initializing the SHA-256 hash value of the...

Security Bulletin: Windows DLL injection vulnerability with IBM Java Affects SPSS Modeler

Summary IBM® Runtime Environment Java™ Version JRE7, JRE8SR4FP10 and JRE8SR5FP25 used by IBM SPSS Modeler on windows platform has a windows dll injection vulnerability. The issues is addressed. Vulnerability Details CVEID: CVE-2019-4732 DESCRIPTION: IBM SDK, Java Technology Edition Version 7.0.0....

PT-2020-6094 · Openssl +1 · Openssl +1

Name of the Vulnerable Software and Affected Versions: Zoom Client for Meetings version 4.6.11 Description: The issue is related to the airhost.exe executable file in Zoom Client for Meetings, which uses a hardcoded registration data with the SHA-256 hashing algorithm. This could allow a remote...

Microsoft Windows Unquoted Service Path Privilege Escalation Exploit

This Metasploit module exploits a logic flaw due to how the lpApplicationName parameter is handled. When the lpApplicationName contains a space, the file name is ambiguous. Take this file path as example: C:\program files\hello.exe; The Windows API will try to interpret this as two possible paths...