18 matches found
EUVD-2017-6486
Malware in sbrugna...
EUVD-2024-44077
Malicious code in bioql PyPI...
CVE-2024-4461
Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting in privilege escalation...
CVE-2024-4461
SugarSync for Windows is affected by CVE-2024-4461: unquoted service path in the installed SugarSync service allows a local attacker to inject arbitrary code, leading to privilege escalation. The issue affects versions before 4.1.3; remediation is to upgrade to 4.1.3 or later.
CVE-2024-4461 Unquoted path or search item vulnerability in SugarSync
Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting in privilege escalation...
CVE-2024-4461 Unquoted path or search item vulnerability in SugarSync
Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting in privilege escalation...
SugarSync 代码问题漏洞
SugarSync is software from SugarSync that automates the access and sharing of photos, videos, and files in any folder. A code issue vulnerability exists in SugarSync versions prior to 4.1.3 that originates from a privilege escalation that allows unauthorized local users to inject arbitrary code...
SugarSync 4.1.3 Unquoted Service Path
Exploit Title: SugarSync 4.1.3 - 'SugarSync Service' Unquoted Service Path Exploit Author: Jorge Manuel Lozano Gómez Date: 2022-10-20 Vendor Homepage: https://www1.sugarsync.com Software Link: https://www1.sugarsync.com/apps/windows/ Version : 4.1.3 Tested on: Windows 11 64bit CVE : N/A About...
SugarSync 4.1.3 - 'SugarSync Service' Unquoted Service Path
Exploit Title: SugarSync 4.1.3 - 'SugarSync Service' Unquoted Service Path Exploit Author: Jorge Manuel Lozano Gómez Date: 2022-10-20 Vendor Homepage: https://www1.sugarsync.com Software Link: https://www1.sugarsync.com/apps/windows/ Version : 4.1.3 Tested on: Windows 11 64bit CVE : N/A About...
SugarSync 4.1.3 - (SugarSync Service) Unquoted Service Path Vulnerability
Exploit Title: SugarSync 4.1.3 - 'SugarSync Service' Unquoted Service Path Exploit Author: Jorge Manuel Lozano Gómez Vendor Homepage: https://www1.sugarsync.com Software Link: https://www1.sugarsync.com/apps/windows/ Version : 4.1.3 Tested on: Windows 11 64bit CVE : N/A About Unquoted Service Pat...
Digia Qt Buffer Overflow Vulnerability
qBittorrent is a cross-platform lightweight BitTorrent client. keepltSafe SugarSync is a suite of cloud storage products for backing up, accessing, and sharing users' files from KeepltSafe in the U.S.A. Digia Qt is, among other things, a cross-platform C++ application development framework from...
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service application crash via an unspecified string...
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service application crash via an unspecified string...
CVE-2017-15011
The CVE concerns the named pipes feature in qtsingleapp (Qt 5.x), used by qBittorrent and SugarSync. Connected sources indicate these named pipes are configured for remote access, allowing remote attackers to trigger a denial of service (application crash) by providing an unspecified string. The ...
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service application crash via an unspecified string...
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service application crash via an unspecified string...
SugarSync 'Cloud' Backup Service Detection
Binary data 6587.prm...
SugarSync 'Cloud' Backup Service Detection
Binary data 6586.prm...