PEframe - Tool to perform static analysis on Portable Executable malware

PEframe is a open source tool to perform static analysis on Portable Executable malware. Usage $ peframe malware.exe $ peframe --option malware.exe Options --json Output in json --import Imported function and dll --export Exported function and dll --dir-import Import directory --dir-export Export...

Seeds acmailer Delete Arbitrary File Vulnerability

acmailer is asp-type mail delivery is different from the mail delivery system that you set up on your website. Seeds acmailer 3.8.18 before the version and 3.9.12 ,Beta before the 3.9.x version of a security vulnerability, remote attackers can be exploited with the help of specially crafted strin...

file: out of bounds read in mconvert()

An ouf-of-bounds read flaw was found in the way the file utility processed certain Pascal strings. A remote attacker could cause an application using the file utility for example, PHP using the fileinfo module to crash if it was used to identify the type of the attacker-supplied file...

chicken -- Potential buffer overrun in string-translate*

chicken developer Peter Bex reports: Using gcc's Address Sanitizer, it was discovered that the string-translate procedure from the data-structures unit can scan beyond the input string's length up to the length of the source strings in the map that's passed to string-translate. This issue was fix...

Ubuntu 14.04 LTS : OpenSSL vulnerabilities (USN-2639-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2639-1 advisory. Praveen Kariyanahalli, Ivan Fratric and Felix Groebert discovered that OpenSSL incorrectly handled memory when buffering DTLS data. A remote attacker cou...

CUPS Localized String Elevation of Privilege Vulnerability

CUPS is a universal Unix printing system , is a cross-platform printing solution for the Unix environment , based on the Internet Printing Protocol , to provide most of the PostScript and raster printer services. CUPS has a security vulnerability that allows remote users to send special localized...

USN-2629-1 cups vulnerabilities

It was discovered that CUPS incorrectly handled reference counting when handling localized strings. A remote attacker could use this issue to escalate permissions, upload a replacement CUPS configuration file, and execute arbitrary code. CVE-2015-1158 It was discovered that the CUPS templating...

cups: multiple issues

CVE-2015-1158 arbitrary code execution, privilege escalation An issue with how localized strings are handled in cupsd allows a reference counter to over-decrement when handling certain print job request errors. As a result, an attacker can prematurely free an arbitrary string of global scope,...

CVE-2015-1158

The addjob function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes, which allows remote attackers to trigger data corruption for reference-counted strings via a crafted 1 IPPCREATEJOB or 2 IPPPRINTJOB...

file: out of bounds read in mconvert()

An ouf-of-bounds read flaw was found in the way the file utility processed certain Pascal strings. A remote attacker could cause an application using the file utility for example, PHP using the fileinfo module to crash if it was used to identify the type of the attacker-supplied file...

file: out of bounds read in mconvert()

An ouf-of-bounds read flaw was found in the way the file utility processed certain Pascal strings. A remote attacker could cause an application using the file utility for example, PHP using the fileinfo module to crash if it was used to identify the type of the attacker-supplied file...

Jildi FTP Client 1.5.2 b1138 Buffer Overflow

Document Title: =============== Jildi FTP Client 1.5.2 b1138 - Buffer Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1503 Release Date: ============= 2015-06-03 Vulnerability Laboratory ID VL-ID: ==================================...

WebDrive 12.2 (B4172) - Buffer Overflow Vulnerability

Document Title: =============== WebDrive 12.2 B4172 - Buffer Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1500 Release Date: ============= 2015-06-01 Vulnerability Laboratory ID VL-ID: ==================================== 1500...

Dell NetVault Backup Heap Buffer Overflow Remote Code Execution Vulnerability

NetVault Backup is a cross-platform backup and recovery software solution that protects data and applications in physical and virtual environments. It is scalable and supports multiple server and application platforms across the enterprise. It has a single, intuitive interface that requires minim...

Double the bang for your buck with Acunetix Vulnerability Scanner

Acunetix have announced that they are extending their current free offering of the network security scan, part of their cloud-based web and network vulnerability scanner. Those signing up for a trial of the online version of Acunetix vulnerability scanner will now be able to scan their perimeter...

Grindr for iOS Edit Configuration Document Display Name Denial of Service Vulnerability

Grindr for iOS is GPS based mobile app. Grindr for iOS suffers from an input validation vulnerability in the handling of Display Name when editing configuration options, which allows remote attackers to exploit the vulnerability to inject multiple terminator strings and conduct denial of service...

Apple Mac OS X LaunchServices Arbitrary Code Execution Vulnerability

Apple Mac OS X is an operating system developed by Apple Inc. A type confusion vulnerability in the handling of localized strings by Apple Mac OS X LaunchServices allows local attackers to execute arbitrary code...

KLA10539 Multiple vulnerabilities in Open-source ARJ archiver

Buffer overflow, improper strings restriction and other unknown vulnerabilities were found in Open-source ARJ archiver. By exploiting these vulnerabilities malicious users can cause denial of service, execute arbitrary code or write to arbitrary local files. These vulnerabilities can be exploited...

10gen MongoDB Denial of Service Vulnerability

10gen MongoDB is a set of open source NoSQL database from the American company 10gen. A security vulnerability exists in 10gen MongoDB that allows remote attackers to submit BSON requests that specifically contain UTF-8 strings for denial of service attacks...

CVE-2015-2776

The parseSST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service memory consumption via a crafted shared strings table in a workbook...