Apache OpenOffice < 4.1.8 Arbitrary Code Execution

The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.8. It is, therefore, affected by an arbitrary code execution vulnerability in its scripting events component. An unauthenticated, remote attacker can exploit this, by convincing a user to download and open a...

CVE-2020-12926

The Trusted Platform Modules TPM reference software may not properly track the number of times a failed shutdown happens. This can leave the TPM in a state where confidential key material in the TPM may be able to be compromised. AMD believes that the attack requires physical access of the device...

IBM i2 iBase Code Issues Vulnerabilities

IBM i2 iBase is an intuitive intelligence data management application that enables collaborative teams of analysts to capture, control and analyze data from multiple sources in a highly secure workgroup environment. A code issue vulnerability exists in IBM i2 iBase version 8.9.13, which arises fr...

CVE-2020-15261

On Windows the Veyon Service before version 4.4.2 contains an unquoted service path vulnerability, allowing locally authenticated users with administrative privileges to run malicious executables with LocalSystem privileges. Since Veyon users both students and teachers usually don't have...

PT-2022-8875 · Upx +2 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX version 4.0.0 Description: A heap-based buffer over-read was discovered in the get le64 function in bele.h via a crafted Mach-O file. Recommendations: For UPX version 4.0.0, at the moment, there is no information about a newer version tha...

PT-2022-8865 · Upx +1 · Upx +1

Name of the Vulnerable Software and Affected Versions: UPX affected versions not specified Description: A floating point exception issue was discovered in the PackLinuxElf64::invert pt dynamic function of the p lx elf.cpp file. An attacker with a crafted input file could trigger this issue, causi...

CVE-2020-25733

webTareas through 2.1 allows upload of the dangerous .exe and .shtml file types...

Improper access control

A CWE-284 Improper Access Control vulnerability exists in SCADAPack 7x Remote Connect V3.6.3.574 and prior which allows an attacker to place executables in a specific folder and run code whenever RemoteConnect is executed by the user...

CVE-2020-10733

Removed by vendor...

CVE-2020-10733

CVE-2020-10733 affects the Windows PostgreSQL installer (versions 9.5 through 12). The root cause is that the installer invokes system-provided executables without fully-qualified paths, so executables in the load directory or current working directory can be chosen instead of the intended ones. ...

CVE-2020-10050

A vulnerability has been identified in SIMATIC RTLS Locating Manager All versions V2.10.2. The directory of service executables of the affected application could allow a local attacker to include arbitrary commands that are executed with SYSTEM privileges when the system restarts...

Windows Inject Reflective PE Files, Windows x64 Reverse Named Pipe (SMB) Stager

Inject a custom native PE file into the exploited process using a reflective PE loader. The reflective PE loader will execute the pre-mapped PE image starting from the address of entry after performing image base relocation and API address resolution. This module requires a PE file that contains...

CVE-2020-7522

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in SFAPV9601 - APC Easy UPS On-Line Software V2.0 and earlier when accessing a vulnerable method of SoundUploadServlet which may lead to uploading executable files to non-specified directories...

CVE-2020-6932

An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Development Platform versions 6.4.0 to 6.6.0 could allow an attacker to potentially read arbitrary files and run arbitrary executables in the context of the web server...

PostgreSQL 9.5.x < 9.5.22 / 9.6.x < 9.6.18 / 10.x < 10.13 / 11.x < 11.8 / 12.x < 12.3 Arbitrary Code Execution Vulnerability

The version of PostgreSQL installed on the remote host is 9.5 prior to 9.5.22, 9.6 prior to 9.6.18, 10 prior to 10.13, 11 prior to 11.8, or 12 prior to 12.3. As such, it is potentially affected by a which allows a Windows installer the ability to run executables from uncontrolled directories,...

DEBIAN-CVE-2019-20805

plxelf.cpp in UPX before 3.96 has an integer overflow during unpacking via crafted values in a PTDYNAMIC segment...

CVE-2020-4020

The file downloading functionality in the Atlassian Companion App before version 1.0.0 allows remote attackers, who control a Confluence Server instance that the Companion App is connected to, execute arbitrary .exe files via a Protection Mechanism Failure...

Vulnerability in packaging (CVE-2020-10733)

Windows installer runs executables from uncontrolled directories The Windows installer for PostgreSQL invokes system-provided executables that do not have fully-qualified paths. Executables in the directory where the installer loads or the current working directory take precedence over the intend...

Analyzing Dark Crystal RAT, a C# Backdoor

The FireEye Mandiant Threat Intelligence Team helps protect our customers by tracking cyber attackers and the malware they use. The FLARE Team helps augment our threat intelligence by reverse engineering malware samples. Recently, FLARE worked on a new C variant of Dark Crystal RAT DCRat that the...

EQGRP

This is a repository containing the decrypted contents of a file named "eqgrp-auction-file.tar.xz". The repository includes three files: "Linux/bin/7z", "Linux/bin/7z.so", and "Linux/bin/7za". These files are likely related to the 7-Zip file archiver. The "Linux/bin/7z" file is an ELF Executable...