CVE-2023-29145

The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LDLIBRARYPATH, set LDPRELOAD, or run an executable file in a debugger...

CVE-2023-29145

The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LDLIBRARYPATH, set LDPRELOAD, or run an executable file in a debugger...

CVE-2023-27469

Malwarebytes Anti-Exploit 4.4.0.220 is vulnerable to arbitrary file deletion and denial of service via an ALPC message in which FullFileNamePath lacks a '\0' character...

CVE-2023-27469

Malwarebytes Anti-Exploit 4.4.0.220 is vulnerable to arbitrary file deletion and denial of service via an ALPC message in which FullFileNamePath lacks a '\0' character...

Arbitrary file deletion

Malwarebytes Anti-Exploit 4.4.0.220 is vulnerable to arbitrary file deletion and denial of service via an ALPC message in which FullFileNamePath lacks a '\0' character...

Design/Logic Flaw

The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LDLIBRARYPATH, set LDPRELOAD, or run an executable file in a debugger...

PT-2023-21147 · Malwarebytes · Malwarebytes Anti-Exploit

Name of the Vulnerable Software and Affected Versions: Malwarebytes Anti-Exploit version 4.4.0.220 Description: The issue allows for arbitrary file deletion and denial of service via an ALPC message where FullFileNamePath lacks a '0' character. Recommendations: For Malwarebytes Anti-Exploit versi...

CVE-2023-29145

The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LDLIBRARYPATH, set LDPRELOAD, or run an executable file in a debugger...

CVE-2023-29145

The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LDLIBRARYPATH, set LDPRELOAD, or run an executable file in a debugger...

CVE-2023-29145

The CVE-2023-29145 entry concerns Malwarebytes EDR 1.0.11 for Linux. The issue is a failure to properly whitelist executable libraries loaded by executables, enabling arbitrary code execution. An attacker could exploit by setting LD_LIBRARY_PATH, LD_PRELOAD, or running an executable under a debug...

CVE-2023-27469

CVE-2023-27469 affects Malwarebytes Anti-Exploit 4.4.0.220. The vulnerability allows arbitrary file deletion and denial of service via an ALPC message where FullFileNamePath lacks a '\0' terminator. Impact is described as local, with high integrity and availability impact. Public exploit details ...

PT-2023-22169 · Malwarebytes · Malwarebytes Edr

Name of the Vulnerable Software and Affected Versions: Malwarebytes EDR version 1.0.11 for Linux Description: The Malwarebytes EDR for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. An attacker can exploit...

CVE-2023-29147

In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two files on different filesystems can have the same identifier...

Malwarebytes 安全漏洞

Malwarebytes is an application from the American company Malwarebytes that provides anti-malware features to devices. The software is designed to protect against viruses, spyware, Trojans, worms, dial-up programs, and other malware. A security vulnerability exists in Malwarebytes Anti-Exploit...

CVE-2023-29147

In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two files on different filesystems can have the same identifier...

Malwarebytes 安全漏洞

Malwarebytes is an application that provides anti-malware functionality to devices from the US-based company Malwarebytes. The software is designed to defend against viruses, spyware, Trojans, worms, dial-up programs, and other malware. debug is a small JavaScript debugging utility open-sourced b...

Malwarebytes 安全漏洞

Malwarebytes is an application from the American company Malwarebytes that provides anti-malware features to devices. The software is designed to protect against viruses, spyware, Trojans, worms, dial-up programs, and other malware. A security vulnerability exists in Malwarebytes EDR 1.0.11, whic...

CVE-2023-27469

Malwarebytes Anti-Exploit 4.4.0.220 is vulnerable to arbitrary file deletion and denial of service via an ALPC message in which FullFileNamePath lacks a '\0' character...

CVE-2023-29147

In Malwarebytes EDR 1.0.11 for Linux, the vulnerability is an inode-id based detection bypass: an inode may be reused after file replacement, and two files on different filesystems can share the same identifier. This allows bypassing detection layers that rely on inode identifiers. Red Hat/PRION ...

Top contenders in Endpoint Security revealed: G2 Summer 2023 results

Navigating the world of endpoint security is challenging, with numerous vendors stoking "Fear, Uncertainty, and Doubt" FUD and making bold claims that are difficult to verify. In times like these, the honest opinions of real users are invaluable for busy IT teams. Enter G2, an industry-leading...