Malicious code in process-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca9b7f021303c59709dfd4a00e08e0c293215fade24f655e4fe0ff057ef40d4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

DEBIAN-CVE-2021-21315

The System Information Library for Node.JS npm package "systeminformation" is an open source collection of functions to retrieve detailed hardware, system and OS information. In systeminformation before version 5.3.1 there is a command injection vulnerability. Problem was fixed in version 5.3.1. ...

Android Security Restriction Bypass Vulnerability (CNVD-2015-06576)

Android is an operating system based on the Linux open kernel, announced on November 5, 2007 by Google Inc. for cell phones. A security restriction bypass vulnerability exists in LMY48I, a version of Android prior to 5.1.1. Allows an attacker to trigger a faulty process load via a crafted...

SunOS 5.7 Catman - Local Insecure tmp Symlink Clobber Exploit

No description provided by source. !/usr/local/bin/perl -w The problem is catman creates files in /tmp insecurly. They are based on the PID of the catman process, catman will happily clobber any files that are symlinked to that file. The idea of this script is to watch the process list for the...