Foxit PDF Reader Flaw Exploited by Hackers to Deliver Diverse Malware Arsenal

Multiple threat actors are weaponizing a design flaw in Foxit PDF Reader to deliver a variety of malware such as Agent Tesla, AsyncRAT, DCRat, NanoCore RAT, NjRAT, Pony, Remcos RAT, and XWorm. "This exploit triggers security warnings that could deceive unsuspecting users into executing harmful...

DoNot Team's New Firebird Backdoor Hits Pakistan and Afghanistan

The threat actor known as DoNot Team has been linked to the use of a novel .NET-based backdoor called Firebird targeting a handful of victims in Pakistan and Afghanistan. Cybersecurity company Kaspersky, which disclosed the findings in its APT trends report Q3 2023, said the attack chains are als...

Malicious code in origami-registry-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c92b502ec9530281464dc2a266021a7663cd960dfffcacd507ab9cd3e84e991f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5121 Malicious code in origami-registry-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c92b502ec9530281464dc2a266021a7663cd960dfffcacd507ab9cd3e84e991f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

@adeunis/codecs (>=1.3.0 <=1.4.0), @digifi-los/reactapp (>=0.0.1 <=0.1.2) +45 more potentially affected by CVE-2020-7772 via doc-path (>=1.0.7 <=2.1.0)

doc-path NPM version =1.0.7, =1.3.0, =0.0.1, =1.0.5, =0.0.2, =0.0.3-alpha.5, =0.0.3-alpha.5, =0.0.2, =0.0.3-alpha.9, =0.0.3-alpha.5, =0.0.3-alpha.13, =0.0.3-alpha.5, =0.0.3-alpha.10, =0.0.3-alpha.14, =0.0.3-alpha.18 - adeunis-codecs-lib3 =1.3.0 - adeunis-codecs-lib4 =1.3.0 and more Source cves:...

origami-book.jp Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1182970 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

Shape Fold Animals Origami - Dangerous filesystem permissions, Insecure KeyStore vulnerabilities

HackApp vulnerability scanner discovered that application Shape Fold Animals Origami published at the 'play' market has multiple vulnerabilities...

Origami Instructions Free - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Origami Instructions Free published at the 'play' market has multiple vulnerabilities...

How to Make Origami Animals - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application How to Make Origami Animals published at the 'play' market has multiple vulnerabilities...

How to Make Origami - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application How to Make Origami published at the 'play' market has multiple vulnerabilities...

Adobe Acrobat Reader - ASLR/DEP Bypass Exploit with SANDBOX BYPASS

No description provided by source. CVE-2013-0640/1 Somehow, our script got on to the Russian forums :/ @w3bd3vil and @abh1sek Exploit-DB mirror: http://www.exploit-db.com/sploits/29881.tar.gz Adobe Acrobat Reader ASLR/DEP bypass Exploit with SANDBOX BYPASS...

Origami 1.0 released - Pdf manipulation framework !

Origami is a framework for PDF documents manipulation written in pure Ruby. It can be used to analyze or create malicious PDF documents. Being written in Ruby, the core engine of Origami is totally scriptable and can be used for automated tasks on large sets of documents. A GTK graphical interfac...

MuPDF pdf_shade4.c multiple stack-based buffer overflows

Description =========== "MuPDF is a lightweight PDF viewer and toolkit written in portable C". It is used in particular by SumatraPDF which is a small open-source PDF viewer for Windows. MuPDF before commit 20091125231942 did not properly handle /Decode arrays in a shading of type 4 to 7, leading...

MuPDF pdf_shade4.c Multiple Stack-Based Buffer Overflows

Exploit for unknown platform in category local exploits ======================================================== MuPDF pdfshade4.c Multiple Stack-Based Buffer Overflows ======================================================== Title: MuPDF pdfshade4.c Multiple Stack-Based Buffer Overflows CVE-ID:...