CVE-2022-34295

totd before 1.5.3 does not properly randomize mesg IDs...

New Linux Bug Could Lead to User Password Leaks and Clipboard Hijacking

Details have emerged about a vulnerability impacting the "wall" command of the util-linux package that could be potentially exploited by a bad actor to leak a user's password or alter the clipboard on certain Linux distributions. The bug, tracked as CVE-2024-28085, has been codenamed WallEscape b...

util-linux wall Escape Sequence Injection

Wall-Escape CVE-2024-28085 Skyler Ferrante: Escape sequence injection in util-linux wall ================================================================= Summary ================================================================= The util-linux wall command does not filter escape sequences from...

CVE-2022-34295

totd before 1.5.3 does not properly randomize mesg IDs...

Code injection

totd before 1.5.3 does not properly randomize mesg IDs...

CVE-2022-34295

CVE-2022-34295 affects totd, a DNS proxy nameserver by F.W. Dillema. The flaw stems from improper randomization of message IDs in versions prior to 1.5.3. The impact is exposure of how messages are matched/handled due to weak ID randomness, with the CVSS metrics indicating moderate severity (CVSS...

CVE-2022-34295

totd before 1.5.3 does not properly randomize mesg IDs...

HP-UX Security Patch : PHKL_29911

Improper core file mesg, corrupt core file %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26396; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...