Nord Security: nordvpn Linux Desktop executable application does not use pie / no ASLR

Summary: The nordvpn Linux binary application is not compiled as position independent code or position independent Executable. Steps To Reproduce: POC: $file /usr/bin/nordvpn /usr/bin/nordvpn: ELF 64-bit LSB executable, x86-64, version 1 SYSV, dynamically linked, interpreter...

Cisco NX-OS Software Secure Configuration Bypass (cisco-sa-20190515-nxos-conf-bypass)

According to its self-reported version, Cisco NX-OS Software is affected by a configuration bypass vulnerability due to a lack of proper validation of system files when the persistent configuration information is read from the file system. An authenticated, local attacker can exploit this, by...

CVE-2019-20362

In Teradici PCoIP Agent before 19.08.1 and PCoIP Client before 19.08.3, an unquoted service path can cause execution of %PROGRAMFILESX86%\Teradici\PCoIP.exe instead of the intended pcoipvchanprintingsvc.exe file...

The vulnerability of the EPSetup.exe executable file of the McAfee Endpoint Security security tool allows a perpetrator to execute arbitrary code.

The vulnerability of the EPSetup.exe executable file of the McAfee Endpoint Security security tool is related to incorrect code generation. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Updated radare2 packages fix security vulnerabilities

Updated radare2 packages fix security vulnerabilities: In radare2 through 3.5.1, there is a heap-based buffer over-read in the regglangparsechar function of egglang.c. This allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact because of...

CVE-2019-20343

The MojoHaus Exec Maven plugin 1.1.1 for Maven allows code execution via a crafted XML document because a configuration element within a plugin element can specify an arbitrary program in an executable element and can also specify arbitrary command-line arguments in an arguments element...

Code injection

The MojoHaus Exec Maven plugin 1.1.1 for Maven allows code execution via a crafted XML document because a configuration element within a plugin element can specify an arbitrary program in an executable element and can also specify arbitrary command-line arguments in an arguments element...

Updated upx packages fix security vulnerability

The updated package fixes security vulnerabilities: An Integer overflow in the getElfSections function in pvmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service crash via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an...

CVE-2014-8516

Unrestricted file upload vulnerability in Visual Mining NetCharts Server allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via unspecified vectors...

Unrestricted file upload

Unrestricted file upload vulnerability in includes/classes/uploadify-v2.1.4/uploadify.php in HelpDEZk 1.0.1 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the directory specified...

CVE-2014-8516

CVE-2014-8516 concerns Visual Mining NetCharts Server. The connected sources describe an unrestricted file upload vulnerability in the NetCharts Server web interface that allows remote attackers to execute arbitrary code by uploading a file with an executable extension and then accessing it via u...

CVE-2014-8516

Unrestricted file upload vulnerability in Visual Mining NetCharts Server allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via unspecified vectors...

AVCLASS++ - Yet Another Massive Malware Labeling Tool

AVCLASS++ is an appealing complement to AVCLASS 1, a state-of-the-art malware labeling tool. Overview AVCLASS++ is a labeling tool for creating a malware dataset. Addressing malware threats requires constant efforts to create and maintain a dataset. Especially, labeling malware samples is a vital...

Microsoft Windows .Group File - Code Execution Exploit

Exploit Title: Microsoft Windows .Group File - Code Execution Exploit Author: hyp3rlinx Vendor Homepage: www.microsoft.com Version: 1.9.6 Tested on: Windows CVE : N/A + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source:...

Microsoft Windows .Group File - Code Execution

Exploit Title: Microsoft Windows .Group File - Code Execution Date: 2020-01-01 Exploit Author: hyp3rlinx Vendor Homepage: www.microsoft.com Version: 1.9.6 Tested on: Windows CVE : N/A + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source:...

UPX Floating Point Anomaly Vulnerability

UPX is a portable and extensible executable compression program. A security vulnerability exists in the 'PackLinuxElf::elfhash' function in the plxelf.cpp file in UPX version 3.95. An attacker can exploit this vulnerability to cause an application to crash, resulting in a denial of service...

Reptile Rootkit - reptile_cmd Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Reptile Rootkit reptilecmd Privilege Escalation', 'Description' = %q This module uses Reptile rootkit's reptilecmd backdoor executable to gain ro...

UPX Heap Buffer Overflow Vulnerability

UPX is a portable and extensible executable compression program. A buffer overflow vulnerability exists in the 'canUnpack' function of the pmach.cpp file in UPX version 3.95. The vulnerability stems from a networked system or product performing operations in memory without properly validating dat...

PT-2019-16068 · Upx Team +3 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX version 3.95 ALT Linux affected versions not specified Description: An issue was found in the canUnpack function in p mach.cpp, which can be triggered by a crafted Mach-O file, leading to an invalid memory address dereference...

Design/Logic Flaw

An unquoted search path vulnerability in Multiple Yokogawa products for Windows Exaopc R1.01.00 ? R3.77.00, Exaplog R1.10.00 ? R3.40.00, Exaquantum R1.10.00 ? R3.02.00 and R3.15.00, Exaquantum/Batch R1.01.00 ? R2.50.40, Exasmoc all revisions, Exarqe all revisions, GA10 R1.01.01 ? R3.05.01, and...