Nadesiko3 OS Command Injection vulnerability

OS command injection vulnerability in Nadesiko3 PC Version v3.3.68 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product. Release notes for versions 3.3.62 and 3.3.69 both link to patches for this particular issue. The...

Command injection

OS command injection vulnerability in Nako3edit, editor component of nadesiko3 PC Version v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product...

CVE-2022-42496

CVE-2022-42496 affects Nako3edit (editor component of nadesiko3 PC Version) up to v3.3.74. A OS command injection vulnerability in the editor allows a remote attacker to obtain the product’s appkey and execute arbitrary OS commands. The issue is exploitable over the network with no privileges req...

nadesiko3 操作系统命令注入漏洞

nadesiko3 is a Japanese programming language by the individual developer of kujirahand. A security vulnerability exists in nadesiko3 PC version v3.3.74 and earlier versions, which originates from a vulnerability that could allow a remote attacker to obtain the product's appkey and execute arbitra...

CVE-2022-41642

OS command injection vulnerability in Nadesiko3 PC Version v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product...

CVE-2022-41642

CVE-2022-41642 affects Nadesiko3 (PC Version). v3.3.61 and earlier are vulnerable to an OS command injection during compression/decompression. The issue also covers 3.3.62–3.3.68; patch to 3.3.69 or later to fix. Sources indicate the most recent patch is 3.3.69; no exploitation status is provided...

CVE-2022-33730

Heap-based buffer overflow vulnerability in Samsung Dex for PC prior to SMR Aug-2022 Release 1 allows arbitrary code execution by physical attackers...

Command execution vulnerability in TamronOS IPTV/VOD system (CNVD-2021-49564)

TamronOS IPTV/VOD system is a set of Linux kernel-based development of broadband operators, hotels, schools, live on-demand all-in-one solution, the system provides a variety of clients Android set-top box, TV, PC on-demand, cell phone on-demand to facilitate user access through different devices...

Binary vulnerability in jpeg file parsing in Lovecraft Universal Connections PC version

The official version of Lovecraft Universal Player is a universal video and audio playback tool created by Lovecraft. Love Qiyi universal player belongs to the universal player, can support most of the mainstream media formats. It also supports the functions of watching pictures, skinning,...

Baidu.com PC version suffers from dll hijacking vulnerability

Baidu.com is a cloud service product. A dll hijacking vulnerability exists in the PC version of Baidu.com Disk. An attacker can exploit the vulnerability to load a malicious dll and execute malicious code...

Command Execution Vulnerability in Emblem Win PC Version (Traditional Chinese)

Huawei Win PC Version is a stock financial terminal newly launched by Huaan Securities. There is a command execution vulnerability in Huawei PC Edition Traditional Chinese version, which can be exploited by attackers to inject executable DLL files into the client process and execute arbitrary...

Netease Youdao Dictionary PC version suffers from dll hijacking vulnerability

Netease Yudao Dictionary is a multi-language translation software. A dll hijacking vulnerability exists in Netease Youtao Dictionary for PC. An attacker can exploit this vulnerability to execute malicious code...

Tencent App Store PC version suffers from DLL hijacking vulnerability

Tencent Application Treasure is an application acquisition platform created by Tencent Application Center. A DLL hijacking vulnerability exists in the PC version of Tencent App Store, which can be exploited by attackers to execute malicious code...

DLL Hijacking Vulnerability in IceAssistant PC Version

Ice Assistant is a professional Apple cell phone management assistant. There is a DLL hijacking vulnerability in IceAssistant PC version, which can be exploited by attackers to execute malicious DLL files...

Choice Financial Terminal - PC Version has dll Hijacking Vulnerability

Choice Financial Terminal is a financial data analysis and investment management software. Choice Financial Terminal-PC version has a dll hijacking vulnerability, which can be exploited by attackers to load dll files and execute arbitrary code...

Design/Logic Flaw

Untrusted search path vulnerability in Music Center for PC version 1.0.00 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

Warning! Invitation for PC Version of 'Grand Theft Auto V' Game infects Computers with Malware

Since all the versions of the popular game ‘Grand Theft’ gone blatant and during the first week of the release of the Grand Theft Auto 4 in 2008, it topped half of millions of dollars, sold 3.6 million copies and generated $310 million in sales i.e., earning about 5 times as much as the blockbust...

WhatsApp Spam Campaing Leads to Banking Trojan

Spam emails promoting a non-existent PC version of the popular WhatsApp messaging service could be leading unsuspecting users to a malicious banking Trojan. The emails, written in Portuguese, trick the recipient into thinking they already have 11 pending friend invitations, according to Kaspersky...

CP3 Studio PC Version - Denial of Service

Exploit Title : CP3 Studio PC Ver. Dos Date : June 12, 2010 Author : chap0 - www.seek-truth.net Link : http://www.vocooo.com Version : 2.0 Tested on : Windows XP SP3 En Greetz to : Corelan Security Team The Crew : http://www.corelan.be:8800/index.php/security/corelan-team-members/ Advisory :...