8 matches found
Security update for curl
This update for curl fixes the following issues: CVE-2025-9086: Fixed Out of bounds read for cookie path bsc1249191 CVE-2025-10148: Predictable WebSocket mask bsc1249348 Fix the --ftp-pasv option in curl v8.14.1 bsc1246197 tooloperate: fix return code when --retry is used but not triggered...
Cybercriminals Swarm Windows Utility Regsvr32 to Spread Malware
A Windows living-off-the-land binary LOLBin known as Regsvr32 is seeing a big uptick in abuse of late, researchers are warning, mainly spreading trojans like Lokibot and Qbot. LOLBins are legitimate, native utilities used daily in various computing environments, that cybercriminals use to evade...
AppLocker Bypass – CMSTP
CMSTP is a binary which is associated with the Microsoft Connection Manager Profile Installer. It accepts INF files which can be weaponised with malicious commands in order to execute arbitrary code in the form of scriptlets SCT and DLL. It is a trusted Microsoft binary which is located in the...
SUSE SLES12 Security Update : openvswitch (SUSE-SU-2017:3232-1)
This update for openvswitch fixes the following issues: Security issue fixed : - CVE-2017-14970: Add upstream patches to fix memory leaks bsc1061310. Bug fixes : - Fix rpmlint warnings bsc1057357. - Add missing post/postun scriptlets for the ovn-common sub-package bsc1054094. Note that Tenable...
SUSE-SU-2017:3232-1 Security update for openvswitch
This update for openvswitch fixes the following issues: Security issue fixed: - CVE-2017-14970: Add upstream patches to fix memory leaks bsc1061310. Bug fixes: - Fix rpmlint warnings bsc1057357. - Add missing post/postun scriptlets for the ovn-common sub-package bsc1054094...
Open Source Cross Platform RAT: Pupy
Open Source Cross Platform RAT: Pupy Pupy is an opensource, cross-platform Windows, Linux, OSX, Android, multi function RAT Remote Administration Tool and post-exploitation tool mainly written in python. It features a all-in-memory execution guideline and leaves very low footprint. Pupy can...
Fedora 12 : texlive-2007-48.fc12 (2010-8242)
Changes in this update: fixes for CVE-2010-0739 and CVE-2010-1440 adds missing defattr to filelists fixes directory ownership of /var/lib/texmf/web2c uses official tarball for jpatch fixes post/postun scriptlets Note that Tenable Network Security has extracted the preceding description block...
Fedora 7 : phpMyAdmin-2.11.3-1.fc7 (2007-4298)
Upstream released 2.11.3 - Removed the RPM scriptlets doing httpd restarts 227025 - Patched an information disclosure known as CVE-2007-0095 221694 - Provide virtual phpmyadmin package and a httpd alias 231431 Note that Tenable Network Security has extracted the preceding description block...