EUVD-2017-11389

Malware in sbrugna...

EUVD-2016-2304

Malware in sbrugna...

CVE-2016-1203

Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 Build427 and earlier allows a remote unauthenticated attacker to conduct a man-in-the-middle attack. A successful exploitation may result in a malicious file being downloaded...

CVE-2016-1203

Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 Build427 and earlier allows a remote unauthenticated attacker to conduct a man-in-the-middle attack. A successful exploitation may result in a malicious file being downloaded...

CVE-2016-1203

Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 Build427 and earlier allows a remote unauthenticated attacker to conduct a man-in-the-middle attack. A successful exploitation may result in a malicious file being downloaded...

Input validation

Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 Build427 and earlier allows a remote unauthenticated attacker to conduct a man-in-the-middle attack. A successful exploitation may result in a malicious file being downloaded...

CVE-2016-1203

The CVE-2016-1203 issue affects SaAT Netizen installer and Netizen due to improper file verification, enabling remote, unauthenticated MitM attacks that may cause a malicious file to be downloaded and executed. Affected: SaAT Netizen installer <=1.2.0.424 and SaAT Netizen

CVE-2016-1203

Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 Build427 and earlier allows a remote unauthenticated attacker to conduct a man-in-the-middle attack. A successful exploitation may result in a malicious file being downloaded...

CVE-2016-1203

Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0.8 Build427 and earlier allows a remote unauthenticated attacker to conduct a man-in-the-middle attack. A successful exploitation may result in a malicious file being downloaded...

Command Execution Vulnerability in the Backend of Netizen's Chinese and English Enterprise Website Management System

Netizen Chinese and English enterprise website management system is developed using PHP + MYSQL technology and MVC mode, code is easy to maintain, support for pseudo-static function, can generate google and baidu maps, support for customizing url, keywords and descriptions, in line with SEO...

Command Execution Vulnerability in the Frontend of Netizen's Chinese and English Website Management System

Netizen Chinese and English enterprise website management system is developed using PHP + MYSQL technology and MVC mode, code is easy to maintain, support for pseudo-static function, can generate google and baidu maps, support for customizing url, keywords and descriptions, in line with SEO...

CVE-2017-2206

Untrusted search path vulnerability in the installer of SaAT Netizen ver.1.2.10.510 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-2206

Untrusted search path vulnerability in the installer of SaAT Netizen ver.1.2.10.510 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

Design/Logic Flaw

Untrusted search path vulnerability in the installer of SaAT Netizen ver.1.2.10.510 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-2206

CVE-2017-2206 affects SaAT Netizen installer prior to ver.1.2.10.510. The issue is an insecure DLL search path (CWE-427) in the installer, enabling arbitrary code execution with the invoking user’s privileges via a Trojan horse DLL in an unspecified directory. Affected component: installer’s DLL ...

CVE-2017-2206

Untrusted search path vulnerability in the installer of SaAT Netizen ver.1.2.10.510 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

NetMove SaAT Netizen Remote Code Execution Vulnerability

NetMove SaAT Netizen is a suite of security software from NetMove Japan. A remote code execution vulnerability exists in NetMove SaAT Netizen 1.2.10.510 and earlier versions. A remote attacker could exploit this vulnerability to execute arbitrary code in the context of an affected application...

Installer of SaAT Netizen may insecurely load Dynamic Link Libraries

Overview The installer of SaAT Netizen provided by NetMove Corporation contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. DigiGnome reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

JVN#91170929: Installer of SaAT Netizen may insecurely load Dynamic Link Libraries

The installer of SaAT Netizen provided by NetMove Corporation contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privilege of the user invoking the installer. Solution Use the latest...

SaAT Netizen fails to properly verify downloaded installation and update files

Overview SaAT Netizen contains a vulnerability where files downloaded for installation or an update are not properly verified. The SaAT Netizen installer and SaAT Netizen contain a vulnerability where downloaded files are not properly verified during the installation or update process...