18 matches found
curl: Use of Deprecated strcpy() with Fixed-Size Buffers in Progress Time Formatting
Step 2: Locate Vulnerable Code in Progress.c Find exact strcpy usage in toolprogress.c grep -n "strcpy" ./src/toolprogress.c OUTPUT: 94: strcpyr, "--:--:--"; Step 3: Analyze the Vulnerable Function View complete time2str function sed -n '/^static void time2str/,/^/p' ./src/toolprogress.c Vulnerab...
EUVD-2006-6344
Malware in sbrugna...
Fedora: Security Advisory for python-tqdm (FEDORA-2024-24e4bba70f)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2024-ef71921bde)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2024-35acb3b48f)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 40 Update: python-tqdm-4.66.4-2.fc40
tqdm read taqadum, =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF =BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD means "progress" in Arabic. Instantly make your loops show a smart progress meter - just wrap any iterable with "tqdmiterable", and you are done!...
[SECURITY] Fedora 38 Update: python-tqdm-4.66.4-2.fc38
tqdm read taqadum, =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF =BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD means "progress" in Arabic. Instantly make your loops show a smart progress meter - just wrap any iterable with "tqdmiterable", and you are done!...
[SECURITY] Fedora 39 Update: python-tqdm-4.66.4-2.fc39
tqdm read taqadum, =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF =BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD means "progress" in Arabic. Instantly make your loops show a smart progress meter - just wrap any iterable with "tqdmiterable", and you are done!...
openssh: Missing character encoding in progress display allows for spoofing of scp client output
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...
ALPINE-CVE-2019-6109
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...
UBUNTU-CVE-2019-6109
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...
PT-2019-1442 · Openssh +6 · Openssh +6
Name of the Vulnerable Software and Affected Versions: OpenSSH version 7.9 Description: The issue is related to insufficient access control in the OpenSSH utility, specifically in the refresh progress meter function. This can allow a remote attacker to disclose protected information or execute...
[SECURITY] Fedora 24 Update: python-tqdm-4.11.2-1.fc24
tqdm read taqadum, =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD means "progress" in Arabic. Instantly make your loops show a smart progress meter - just wrap any itera ble with "tqdmiterable", and you are done!...
[SECURITY] Fedora 25 Update: python-tqdm-4.11.2-1.fc25
tqdm read taqadum, =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD =EF=BF=BD=EF=BF=BD=EF=BF=BD=EF=BF=BD means "progress" in Arabic. Instantly make your loops show a smart progress meter - just wrap any itera ble with "tqdmiterable", and you are done!...
tqdm Remote Code Execution Vulnerability
tqdm is a fast, scalable progress meter from Python. A remote code execution vulnerability exists in tqdm. An attacker can exploit this vulnerability to execute arbitrary code in the context of an affected application...
PHP Upload Progress Meter UploadProgress.C远程缓冲区溢出漏洞
Upload Progress Meter是一款基于PHP的文件上传应用程序。 Upload Progress Meter uploadprogress.c存在缓冲区溢出,远程攻击者可以利用漏洞进行拒绝服务攻击,存在执行任意指令可能。 efree函数中存在堆溢出,精心构建提交数据,可能导致覆盖内存而造成任意指令执行。 Bitflux Upload Progress Meter 8275 Bitflux Upload Progress Meter 8215 厂商解决方案 升级到最新程序: Bitflux Upload Progress Meter 8275 Bitflux...
CVE-2006-6361
Heap-based buffer overflow in the uploadprogressphprfc1867file function in uploadprogress.c in Bitflux Upload Progress Meter before 8276 allows remote attackers to cause a denial of service crash or execute arbitrary code via crafted HTTP POST fileupload requests...
CVE-2006-6361
The CVE-2006-6361 issue affects Bitflux Upload Progress Meter (before build 8276). A heap-based buffer overflow occurs in uploadprogress_php_rfc1867_file (uploadprogress.c) when processing crafted HTTP POST fileupload requests, enabling remote attackers to crash the service or potentially execute...