29 matches found
The vulnerability of the Grafana monitoring and observation platform lies in improper verification of the cryptographic signature. This allows a malicious actor to install malware on a vulnerable device.
The vulnerability of the Grafana monitoring and observation platform relates to bypassing the plugin signature verification process. Exploiting this vulnerability allows a malicious actor to install malware on a vulnerable device remotely...
The vulnerability of the Apache Shiro framework, related to the absence of authentication procedures, allows attackers to upload specially created malicious files.
The vulnerability of the Apache Shiro framework is related to the absence of an authentication process. Exploiting this vulnerability allows a malicious actor to download a specially created malware file remotely...
The vulnerability of the PDF-XChange PDF document viewing and editing program, related to the occurrence of operations outside the buffer during AcroForm processing, allows an attacker to execute arbitrary code.
The vulnerability of the PDF document viewing and editing software PDF-XChange is related to the execution of operations outside the buffer during the processing of AcroForms. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malware file...
The vulnerability of Juniper Networks’ Junos Space platform, related to the unlimited loading of malicious files, allows attackers to upload malware-infected files.
The vulnerability of the Juniper Networks Junos Space network resource management platform is related to the ability to load files of a malicious nature without limitation. Exploiting this vulnerability allows a remote attacker to load malicious files into the system...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of the initial loader of the HTC Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code within the loader context, thereby executing a local malware application remotely. This issue ...
CVE-2016-1345
Cisco FireSIGHT System Software 5.4.0 through 6.0.1 and ASA with FirePOWER Services 5.4.0 through 6.0.0.1 allow remote attackers to bypass malware protection via crafted fields in HTTP headers, aka Bug ID CSCux22726...
CVE-2012-1439
The ELF file parser in eSafe 7.0.17.0, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified padding field. NOTE: this may later be SPLIT into multiple CVEs if additional...
CVE-2001-1009
Fetchmail aka fetchmail-ssl before 5.8.17 allows a remote malicious 1 IMAP server or 2 POP/POP3 server to overwrite arbitrary memory and possibly gain privileges via a negative index number as part of a response to a LIST request...
Microsoft Internet Explorer 5 - ActiveX Object For Constructing Type Libraries For Scriptlets File Write
Microsoft Internet Explorer 5.0 for Windows 95/Windows 98/Windows NT 4 ActiveX "Object for constructing type libraries for scriptlets" Vulnerability source: https://www.securityfocus.com/bid/598/info The 'scriptlet.typlib' ActiveX control can create, edit, and overwrite files on the local disk...