Lucene search
+L

452 matches found

0day.today
0day.today
added 2023/08/08 12:0 a.m.258 views

GNOME Files 43.4 Privilege Escalation Vulnerability

GNOME Files version 43.4 nautilus on Fedora 37 will extract zip archives with setuid files for other user identifiers that can be leveraged to escalate privileges. Affected: GNOME Files 43.4 nautilus on fedora 37 Description: If an user A opens in GNOME files zip archive containing setuid file F,...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2023/08/08 12:0 a.m.327 views

GNOME Files 43.4 Privilege Escalation

Affected: GNOME Files 43.4 nautilus on fedora 37 Description: If an user A opens in GNOME files zip archive containing setuid file F, then F will be silently extracted to a subdirectory of CWD. If F is accessible by hostile local user B and B executes F, then F will be executed as from user A. ta...

7.1AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2023/03/16 4:59 p.m.14 views

Senator Warner on the Restrict Act and a US TikTok Ban

WIRED spoke with the coauthor of the Restrict Act, a bipartisan bill to crack down on tech from six “hostile” countries...

1.6AI score
Exploits0
Veracode
Veracode
added 2022/05/28 12:39 a.m.25 views

Out-of-Bounds Read

thunderbird is vulnerable to out of bounds read. A locally-installed hostile program could send WMCOPYDATA messages which the library incorrectly processes, leading to an out-of-bounds read...

7.1CVSS7.6AI score0.00787EPSS
Exploits0References6Affected Software1
Malwarebytes
Malwarebytes
added 2021/10/19 1:42 p.m.34 views

[updated]REvil ransomware disappears after Tor services hijacked

With some pests you hope they never recover from a blow. It’s almost too good to be true, but one can hope. This is one of them. The REvil ransomware group has shut down their operation for the second time this year after losing control over their Tor-based domains. Shutdown number 1 REvils first...

6.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2021/08/19 1:25 p.m.7 views

exiv2: Heap-based buffer overflow vulnerability in jp2image.cpp

A flaw was found in exiv2. A flawed bounds checking in the jp2Image.cpp:doWriteMetadata function leads to a heap-based buffer overflow. This flaw allows an attacker who can provide a malicious image to an application using the exiv2 library, to write data out of bounds and potentially execute cod...

6.2AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/07/16 12:0 a.m.35 views

openSUSE 15 Security Update : MozillaThunderbird (openSUSE-SU-2021:2003-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2003-1 advisory. - A locally-installed hostile program could send WMCOPYDATA messages that Firefox would process incorrectly, leading to an out-of-bounds...

8.8CVSS8AI score0.01368EPSS
Exploits0References6
NVD
NVD
added 2021/06/24 2:15 p.m.19 views

CVE-2021-29964

A locally-installed hostile program could send WMCOPYDATA messages that Firefox would process incorrectly, leading to an out-of-bounds read. This bug only affects Firefox on Windows. Other operating systems are unaffected.. This vulnerability affects Thunderbird 78.11, Firefox 89, and Firefox ESR...

7.1CVSS0.00787EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2021/05/04 5:43 p.m.103 views

Arbitrary code execution in ExifTool

Impact Arbitrary code execution can occur when running exiftool against files with hostile metadata payloads. Patches ExifTool has already been patched in version 12.24. exiftool-vendored, which vendors ExifTool, includes this patch in v14.3.0. Workarounds No. References...

7.8CVSS2.6AI score0.99981EPSS
Exploits39References2Affected Software1
Imperva Blog
Imperva Blog
added 2021/05/03 11:51 a.m.184 views

5 Ways Your Software Supply Chain is Out to Get You, Part 5: Hostile Takeover

We have come to the fifth and last part of this blog series on software supply chain attacks. Previously, we discussed four notorious supply chain attack methods, Vendor Compromise, Exploit Third Party Applications, Exploit Open Source Libraries, and Dependency Confusion and provided insight into...

8AI score
Exploits0
Fedora
Fedora
added 2021/04/24 6:24 p.m.47 views

[SECURITY] Fedora 32 Update: minetest-5.4.1-1.fc32

Game of mining, crafting and building in the infinite world of cubic blocks with optional hostile creatures, features both single and the network multiplayer mode, mods. Public multiplayer servers are available...

2.1AI score
Exploits0
Fedora
Fedora
added 2021/04/24 6:6 p.m.36 views

[SECURITY] Fedora 33 Update: minetest-5.4.1-1.fc33

Game of mining, crafting and building in the infinite world of cubic blocks with optional hostile creatures, features both single and the network multiplayer mode, mods. Public multiplayer servers are available...

2.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2020/06/05 10:24 a.m.37 views

CVE-2020-13817

A high-performance ntpd instance that gets its time from unauthenticated IPv4 time sources may be vulnerable to an off-path attacker who can query time from the victim's ntpd instance. An attacker who can send a large number of packets with the spoofed IPv4 address of the upstream server can use...

7.4CVSS1AI score0.04071EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/04/01 8:7 a.m.31 views

CVE-2019-9022

An issue was discovered in PHP 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.2. dnsgetrecord misparses a DNS response, which can allow a hostile DNS server to cause PHP to misuse memcpy, leading to read operations going past the buffer allocated for DNS data. This affects phpparser...

7.5CVSS3.2AI score0.04188EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2019/11/01 1:3 p.m.6 views

php: Out-of-bounds read in base64_decode_xmlrpc in ext/xmlrpc/libxmlrpc/base64.c

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. xmlrpcdecode can allow a hostile XMLRPC server to cause PHP to read memory outside of allocated areas in base64decodexmlrpc in ext/xmlrpc/libxmlrpc/base64.c...

7.5CVSS7.4AI score0.0712EPSS
Exploits1References4
OSV
OSV
added 2019/06/15 12:0 p.m.35 views

RUSTSEC-2019-0005 Format string vulnerabilities in `pancurses`

pancurses::mvprintw and pancurses::printw passes a pointer from a rust &str to C, allowing hostile input to execute a format string attack, which trivially allows writing arbitrary data to stack memory...

7.5CVSS7.5AI score0.01148EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2019/02/22 11:0 p.m.36 views

CVE-2019-9022

Removed by vendor...

7.5CVSS8.7AI score0.04188EPSS
Exploits1
OSV
OSV
added 2019/02/22 12:0 a.m.7 views

UBUNTU-CVE-2019-9024

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. xmlrpcdecode can allow a hostile XMLRPC server to cause PHP to read memory outside of allocated areas in base64decodexmlrpc in ext/xmlrpc/libxmlrpc/base64.c...

7.5CVSS6.8AI score0.0712EPSS
Exploits1References4
Kitploit
Kitploit
added 2018/11/06 12:48 p.m.134 views

Robber - Tool For Finding Executables Prone To DLL Hijacking

Robber is a free open source tool developed using Delphi XE2 without any 3rd party dependencies. What is DLL hijacking ?! Windows has a search path for DLLs in its underlying architecture. If you can figure out what DLLs an executable requests without an absolute path triggering this search...

7.4AI score
Exploits0References2
Carbon Black Blog
Carbon Black Blog
added 2018/10/16 12:45 p.m.52 views

October 16, 2018 – Morning Cyber Coffee Headlines – “Yale” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! October 16, 2018 - Headlines U.K. Cyber Security Center Says Most Attacks Are...

7.1AI score
Exploits0
Rows per page
Query Builder