EUVD-2020-5760

Malware in sbrugna...

EUVD-2021-8958

Malicious code in bioql PyPI...

Exploring malicious Windows drivers (Part 2): the I/O system, IRPs, stack locations, IOCTLs and more

This blog post is part of a multi-part series, and it is highly recommended to read the first entry here before continuing. As the second entry in our "Exploring malicious Windows drivers" series, we will continue where the first left off: Discussing the I/O system and IRPs. We will expand on the...

Callback technologies CBFS Filter handle_ioctl_83150 null pointer dereference vulnerability

Talos Vulnerability Report TALOS-2022-1647 Callback technologies CBFS Filter handleioctl83150 null pointer dereference vulnerability November 22, 2022 CVE Number CVE-2022-43588 SUMMARY A null pointer dereference vulnerability exists in the handleioctl83150 functionality of Callback technologies...

Accops HyWorks Windows Client Integer Overflow Vulnerability

Accops HyWorks is a suite of solutions consisting of software and hardware from Accops India. It is used for instant and secure remote access to enterprise applications from anywhere, on any device and from any network. An integer overflow vulnerability exists in the Accops HyWorks Windows Client...

Amzetta Technologies Amzetta zPortal DVM Buffer Overflow Vulnerability

Amzetta Technologies Amzetta Zportal is a virtual desktop and application controller from Amzetta Technologies, Inc. It is used by administrators to create and manage hosted applications, virtual desktops, shared hosted desktops, and auditing services, provide resources for virtual desktops, prox...

NoMachine Enterprise Desktop integer overflow vulnerability

NoMachine is a remote desktop access tool from Luxembourg-based NoMachine. NoMachine Enterprise Desktop suffers from a security vulnerability that could be exploited by attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash via specially...

Amzetta Technologies Amzetta zPortal Windows zClient integer overflow vulnerability

Amzetta Technologies Amzetta Zportal is a virtual desktop and application controller from Amzetta Technologies, Inc. It is used by administrators to create and manage hosted applications, virtual desktops, shared hosted desktops, and auditing services, provide resources for virtual desktops, prox...

Amazon WorkSpaces Buffer Overflow Vulnerability

Amazon WorkSpaces is a fully managed persistent desktop virtualization service from Amazon that lets your users access the data, applications, and resources they need from any supported device, anywhere, anytime. Amazon WorkSpaces is vulnerable to a buffer overflow vulnerability that could be...

Electronic Team Donglify Integer Overflow Vulnerability

Electronic Team Donglify is an application from Electronic Team, Inc. that shares Usb security keys over the Internet. an integer overflow vulnerability exists in Electronic Team Donglify, which can be exploited by attackers to execute arbitrary code in kernel mode or via specially crafted I/O...

NoMachine Enterprise Client Buffer Overflow Vulnerability

NoMachine is a remote desktop access tool from Luxembourg-based NoMachine. A security vulnerability exists in NoMachine Enterprise Client, which can be exploited by attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash via specially crafted...

Amzetta Technologies AmZetta zPortal DVM Integer Overflow Vulnerability

Amzetta Technologies Amzetta Zportal is a virtual desktop and application controller from Amzetta Technologies, Inc. It is used by administrators to create and manage hosted applications, virtual desktops, shared hosted desktops, and auditing services, provide resources for virtual desktops, prox...

The vulnerability of the irp-functionality of the FreeRDP protocol allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of irp functions parallelprocessirpcreate, serialprocessirpcreate, driveprocessirpwrite, printerprocessirpwrite, rdpeirecvpdu, serialprocessirpwrite in the implementation of the remote desktop protocol FreeRDP is related to reading data beyond the buffer boundaries in memory...