254 matches found
CVE-2023-29747
Story Saver for Instragram - Video Downloader 1.0.6 for Android exists exposed component, the component provides the method to modify the SharedPreference file. The attacker can use the method to modify the data in any SharedPreference file, these data will be loaded into the memory when the...
CVE-2023-29747
Story Saver for Instragram - Video Downloader 1.0.6 for Android exists exposed component, the component provides the method to modify the SharedPreference file. The attacker can use the method to modify the data in any SharedPreference file, these data will be loaded into the memory when the...
CVE-2023-29747
The vulnerability CVE-2023-29747 affects Story Saver for Instagram - Video Downloader 1.0.6 on Android. An exposed component exposes a method to modify SharedPreference files; manipulated data is loaded into memory when the app opens, enabling attacker-controlled data impact. Potential outcomes i...
PT-2023-22397 · Unknown · Story Saver For Instagram - Video Downloader
Name of the Vulnerable Software and Affected Versions: Story Saver for Instragram - Video Downloader version 1.0.6 Description: The issue allows an attacker to modify the SharedPreference file, which can lead to various attack consequences, such as ad display exceptions, depending on how the data...
xorg-x11-server: ScreenSaverSetAttributes use-after-free
A vulnerability was found in X.Org. This issue occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This flaw can lead to local privileges elevation on systems where the X server runs privileged and remote code execution for ssh X...
xorg-x11-server: ScreenSaverSetAttributes use-after-free
A vulnerability was found in X.Org. This issue occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This flaw can lead to local privileges elevation on systems where the X server runs privileged and remote code execution for ssh X...
xorg-x11-server: ScreenSaverSetAttributes use-after-free
A vulnerability was found in X.Org. This issue occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This flaw can lead to local privileges elevation on systems where the X server runs privileged and remote code execution for ssh X...
xorg-x11-server: ScreenSaverSetAttributes use-after-free
A vulnerability was found in X.Org. This issue occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This flaw can lead to local privileges elevation on systems where the X server runs privileged and remote code execution for ssh X...
xorg-x11-server: ScreenSaverSetAttributes use-after-free
A vulnerability was found in X.Org. This issue occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This flaw can lead to local privileges elevation on systems where the X server runs privileged and remote code execution for ssh X...
Remote Code Execution (RCE)
Overview Affected versions of this package are vulnerable to Remote Code Execution RCE in helper method dispatch, where it uses Kernel::send to call helpers without checking that they are defined within the template context first. This allows expressions such as system "ls" or eval "puts 1 + 1" t...
Threat Actors Adopt Havoc Framework for Post-Exploitation in Targeted Attacks
An open source command-and-control C2 framework known as Havoc is being adopted by threat actors as an alternative to other well-known legitimate toolkits like Cobalt Strike, Sliver, and Brute Ratel. Cybersecurity firm Zscaler said it observed a new campaign in the beginning of January 2023...
SUSE CVE-2007-1859
XScreenSaver 4.10, when using a remote directory service for credentials, does not properly handle the results from the getpwuid function in drivers/lock.c when there is no network connectivity, which causes XScreenSaver to crash and unlock the screen and allows local users to bypass authenticati...
SUSE CVE-2008-6514
The Expo plugin in Compiz Fusion 0.7.8 allows local users with physical access to drag the screen saver aside and access the locked desktop by using Expo mouse shortcuts, a related issue to CVE-2007-3920...
SUSE CVE-2017-12185
xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
xorg-x11-server: ScreenSaverSetAttributes use-after-free
A vulnerability was found in X.Org. This issue occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This flaw can lead to local privileges elevation on systems where the X server runs privileged and remote code execution for ssh X...
xorg-x11-server: ScreenSaverSetAttributes use-after-free
A vulnerability was found in X.Org. This issue occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This flaw can lead to local privileges elevation on systems where the X server runs privileged and remote code execution for ssh X...
AZL-44346 CVE-2022-46343 affecting package xorg-x11-server 1.20.10-6
A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...
X.Org X Server 资源管理错误漏洞
X.Org X Server is an X Window System display server from the X.org Foundation. X.Org X Server suffers from a resource management error vulnerability that stems from the fact that the handler of its ScreenSaverSetAttributes request may write to memory after releasing the request potentially...
PT-2022-7138 · X.Org +9 · X.Org +9
Name of the Vulnerable Software and Affected Versions: X.Org affected versions not specified Description: A security flaw was found in the handler for the ScreenSaverSetAttributes request, which may write to memory after it has been freed. This issue can lead to local privileges elevation on...
OESA-2022-1949 xorg-x11-server security update
Security Fixes: A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcRenderCompositeGlyphs function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...