Lucene search
K

22 matches found

Snyk
Snyk
added 2026/03/19 4:56 p.m.4 views

Incorrect Bitwise Shift of Integer

Overview Affected versions of this package are vulnerable to Incorrect Bitwise Shift of Integer in the zisofs decompression process due to improper validation of the pzlog2bs field from ISO9660 Rock Ridge extensions. An attacker can cause application crashes and service disruption by supplying a...

8.6CVSS5.4AI score0.00305EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2025/12/15 9:24 a.m.10 views

Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector

Cybersecurity researchers have disclosed details of an active phishing campaign that's targeting a wide range of sectors in Russia with phishing emails that deliver Phantom Stealer via malicious ISO optical disc images. The activity, codenamed Operation MoneyMount-ISO by Seqrite Labs, has primari...

7.1AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-3012

Malware in sbrugna...

2.1CVSS6.4AI score0.00437EPSS
Exploits1References4
Citrix
Citrix
added 2023/09/27 12:0 a.m.8 views

How to verify downloaded ISO images

This article contains information about checking the integrity of the downloaded ISO image before burning it to a media. Corrupted ISO images can lead to problems during installation. Therefore, it is a good practice to check the integrity of the downloaded ISO image...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/04/25 1:4 p.m.63 views

Iranian Hackers Launch Sophisticated Attacks Targeting Israel with PowerLess Backdoor

An Iranian nation-state threat actor has been linked to a new wave of phishing attacks targeting Israel that's designed to deploy an updated version of a Windows backdoor called PowerLess. Cybersecurity firm Check Point is tracking the activity cluster under its mythical creature handle Educated...

7.3AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:27 a.m.4 views

SUSE CVE-2014-5472

The parserockridgeinodeinternal function in fs/isofs/rock.c in the Linux kernel through 3.16.1 allows local users to cause a denial of service unkillable mount process via a crafted iso9660 image with a self-referential CL entry...

4CVSS6.1AI score0.00505EPSS
Exploits1References10
Talos Blog
Talos Blog
added 2022/04/05 10:14 a.m.13 views

Threat Spotlight: AsyncRAT campaigns feature new version of 3LOSH crypter

By Edmund Brumaghin, with contributions from Alex Karkins. Ongoing malware distribution campaigns are using ISO disk images to deliver AsyncRAT, LimeRAT and other commodity malware to victims.The infections leverage process injection to evade detection by endpoint security software.These...

2.6AI score
Exploits0
Kitploit
Kitploit
added 2021/10/03 8:30 p.m.27 views

AutomatedLab - A Provisioning Solution And Framework That Lets You Deploy Complex Labs On HyperV And Azure With Simple PowerShell Scripts

AutomatedLab AL enables you to setup test and lab environments on Hyper-v or Azure with multiple products or just a single VM in a very short time. There are only two requirements you need to make sure: You need the DVD ISO images and a Hyper-V host or an Azure subscription. Requirements Apart fr...

8.3AI score
Exploits0References15
Talos
Talos
added 2021/08/17 12:0 a.m.97 views

Disc Soft Ltd Daemon Tools Pro ISO Parsing memory corruption vulnerability

Summary A memory corruption vulnerability exists in the ISO Parsing functionality of Disc Soft Ltd Deamon Tools Pro 8.3.0.0767. A specially crafted malformed file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Disc Soft...

9.8CVSS9.3AI score0.01153EPSS
Exploits1
OSV
OSV
added 2021/03/15 8:4 p.m.2 views

USN-4765-1 sleuthkit vulnerabilities

It was discovered that The Sleuth Kit did not properly handle certain entires in FAT file systems. An attacker could use this vulnerability to mislead an analyst and obscure their activities. This issue only affected Ubuntu 14.04 ESM. CVE-2012-5619 It was discovered that The Sleuth Kit mishandled...

5.5CVSS7.2AI score0.00744EPSS
Exploits1References3
Veeam
Veeam
added 2020/04/15 12:0 a.m.22 views

Veeam ONE Remote Code Execution Vulnerabilities

Challenge Vulnerabilities in Veeam ONE Agent components residing on Veeam ONE and Veeam Backup & Replication servers allow executing malicious code remotely without authentication. This may lead to gaining control over the target system. Severity : critical CVSS v3 score : 9.8 Cause Veeam ONE Age...

9.8CVSS9.7AI score0.86619EPSS
Exploits4
OPENSUSE Linux
OPENSUSE Linux
added 2019/09/06 12:0 a.m.94 views

Security update for libmirage (moderate)

openSUSE Security Update: Security update for libmirage Announcement ID: openSUSE-SU-2019:2077-1 Rating: moderate References: 1148087 Cross-References: CVE-2019-15540 Affected Products: openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 An update that fixes one vulnerability is now available...

7.8CVSS7.8AI score0.00598EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2019/08/31 12:0 a.m.273 views

Security update for libmirage (moderate)

openSUSE Security Update: Security update for libmirage Announcement ID: openSUSE-SU-2019:2033-1 Rating: moderate References: 1148087 Cross-References: CVE-2019-15540 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

7.8CVSS7.8AI score0.00598EPSS
Exploits1References1
Kitploit
Kitploit
added 2019/06/20 12:37 p.m.110 views

BackBox Linux 6.0 - Ubuntu-based Linux Distribution Penetration Test and Security Assessment

BackBox Linux is a penetration testing and security assessment oriented Linux distribution providing a network and systems analysis toolkit. It includes some of the most commonly known/used security and analysis tools, aiming for a wide spread of goals, ranging from web application analysis to...

7.3AI score
Exploits0
pentestit
pentestit
added 2019/05/30 4:26 a.m.169 views

UPDATE: Kali Linux 2019.2 Release

PenTestIT RSS Feed Kali Linux 2019.2, the latest and the greatest Kali Linux release is now officially available! This is the second 2019 release, which comes after Kali Linux 2019.1, that was made available in the month of February. This new release majorly focuses on Kali Linux NetHunter update...

0.3AI score
Exploits0
Virtuozzo
Virtuozzo
added 2017/11/17 12:0 a.m.20 views

Product update: Virtuozzo 7.0 Update 6 (7.0.6-635)

The Update 6 for Virtuozzo 7.0 provides new features, security fixes as well as stability and usability bug fixes. Vulnerability id: PSBM-69459 Downloadable ISO images of Virtuozzo as well as their MD5 and SHA256 checksums can now be verified against the GPG key stored at a secure location. For...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/08/10 12:0 a.m.33 views

openSUSE Security Update : libzypp / zypper (openSUSE-2017-893)

The Software Update Stack was updated to receive fixes and enhancements. libzypp : Security issues fixed : - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. bsc1045735, bsc1038984 Bug fixes : - Re-probe on refresh if the...

9.8CVSS8AI score0.0229EPSS
Exploits0References12
OPENSUSE Linux
OPENSUSE Linux
added 2017/08/09 3:20 p.m.75 views

Security update for libzypp, zypper (important)

The Software Update Stack was updated to receive fixes and enhancements. libzypp: Security issues fixed: - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. bsc1045735, bsc1038984 Bug fixes: - Re-probe on refresh if the repository...

0.3AI score0.0229EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.14 views

Mandriva Update for cdrecord MDKA-2007:093 (cdrecord)

Check for the Version of cdrecord OpenVAS Vulnerability Test Mandriva Update for cdrecord MDKA-2007:093 cdrecord Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Exploits0References2
securityvulns
securityvulns
added 2007/09/19 12:0 a.m.35 views

WinImage 8.10 vulnerabilities

Team Vexillium Security Advisory http://vexillium.org/ Name : WinImage 8.10 Multiple Vulnerabilities Class : Denial of Service and Directory Traversal Threat level : LOW DoS, MED Dir. traversal vuln Discovered : 2007-08-31 Published : 2007-09-15 Credit : j00ru//vx Vulnerable : WinImage 8.10,...

6.8AI score
Exploits0
Rows per page
Query Builder