72 matches found
Sparkle's AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection
Summary AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection. Details Autoupdate/AppInstaller.m's shouldAcceptNewConnection: only enforces SUCodeSigningVerifier validateConnection: before stage 1 completes. After...
PT-2026-45020
Summary AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection. Details Autoupdate/AppInstaller.m's shouldAcceptNewConnection: only enforces SUCodeSigningVerifier validateConnection: before stage 1 completes. After...
Microsoft Windows HTTP to LDAP Relay
This module supports running an HTTP server which validates credentials, and then attempts to execute a relay attack against an LDAP server on the configured RHOSTS hosts. It is not possible to relay NTLMv2 to LDAP due to the Message Integrity Check MIC. As a result, this will only work with...
Veeam Backup And Replication 安全漏洞
Veeam Backup and Replication is a backup and replication software developed by the American company Veeam. There is a security vulnerability in Veeam Backup and Replication, which stems from an attack by an attacker with local administrator privileges who can bypass Windows driver signing...
Troll-Exploit
TrollStore TrollStore is a permasigned jailed app that can pe...
MiracleLinux 7 : samba-4.6.2-11.el7 (AXSA:2017-2305:06)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2305:06 advisory. It was found that samba did not enforce SMB signing when certain configuration options were enabled. A remote attacker could launch a...
MiracleLinux 4 : samba4-4.2.10-7.AXS4 (AXSA:2016-577:04)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-577:04 advisory. Samba is the standard Windows interoperability suite of programs for Linux and Unix. Security issues fixed with this release: CVE-2016-2119...
CVE-2021-33592
NAVER Toolbar before 4.0.30.323 allows remote attackers to execute arbitrary code via a crafted upgrade.xml file. Special characters in filename parameter can be the cause of bypassing code signing check function...
📄 macOS 10.12.2 XNU Kernel Privilege Escalation
This proof of concept targets a race‑condition vulnerability in the XNU kernel affecting macOS/iOS. By forcing a use‑after‑free condition on kernel ports, the exploit manipulates freed memory through a controlled spray, allowing a user‑controlled replacement object. Successful exploitation yields...
EUVD-2018-2476
Malware in sbrugna...
EUVD-2015-3842
Malware in sbrugna...
EUVD-2016-3222
Malware in sbrugna...
EUVD-2015-3838
Malware in sbrugna...
EUVD-2018-4963
Malware in sbrugna...
EUVD-2013-0988
Malware in sbrugna...
EUVD-2016-2846
Malware in sbrugna...
EUVD-2018-15961
Malware in sbrugna...
EUVD-2014-4382
Malware in sbrugna...
EUVD-2016-2351
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2025-0509
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle's EdDSA...