EUVD-2004-2754

Malware in sbrugna...

EUVD-2023-23529

Malicious code in bioql PyPI...

CVE-2023-1261

Missing MAC layer security in Silicon Labs Wi-SUN SDK v1.5.0 and earlier allows malicious node to route malicious messages through network...

CVE-2023-1261

Missing MAC layer security in Silicon Labs Wi-SUN SDK v1.5.0 and earlier allows malicious node to route malicious messages through network...

CVE-2023-1261

Missing MAC layer security in Silicon Labs Wi-SUN SDK v1.5.0 and earlier allows malicious node to route malicious messages through network...

Design/Logic Flaw

Missing MAC layer security in Silicon Labs Wi-SUN SDK v1.5.0 and earlier allows malicious node to route malicious messages through network...

CVE-2023-1261 Missing MAC layer security in Wi-SUN SDK

Missing MAC layer security in Silicon Labs Wi-SUN SDK v1.5.0 and earlier allows malicious node to route malicious messages through network...

CVE-2023-1261 Missing MAC layer security in Wi-SUN SDK

Missing MAC layer security in Silicon Labs Wi-SUN SDK v1.5.0 and earlier allows malicious node to route malicious messages through network...

CVE-2023-1261

Silicon Labs Wi-SUN SDK is affected (versions 1.5.0 and earlier) by a vulnerability caused by missing MAC-layer security that allows a malicious node to route malicious messages through a network. The CVE entry notes the issue but public sources describe the impact as enabling message routing thr...

PT-2023-16845 · Silicon · Wi-Sun Sdk

Name of the Vulnerable Software and Affected Versions: Silicon Labs Wi-SUN SDK versions 1.5.0 and earlier Description: The issue is related to missing MAC layer security, which allows a malicious node to route malicious messages through the network. Recommendations: For Silicon Labs Wi-SUN SDK...

Silicon Labs Wi-SUN SDK 安全漏洞

Silicon Labs Wi-SUN SDK is an industry-leading software stack and development tool for Wi-SUN application development from Silicon Labs, Inc. A security vulnerability exists in Silicon Labs Wi-SUN SDK v1.5.0 and earlier versions, which stems from an issue with the MAC layer security of the...

CVE-2004-2764

Sun SDK and Java Runtime Environment JRE 1.4.2 through 1.4.204, 1.4.1 through 1.4.107, and 1.4.0 through 1.4.004 allows untrusted applets and unprivileged servlets to gain privileges and read data from other applets via unspecified vectors related to classes in the XSLT processor, aka "XML...

CVE-2004-2764

CVE-2004-2764 affects Sun JRE/JSDK 1.4.x (1.4.0 to 1.4.2_04, and 1.4.1, 1.4.2) where untrusted applets and unprivileged servlets could gain privileges and read data from other applets due to issues in the XSLT processor (XML sniffing). The vulnerability description states privilege escalation via...

Sun Java Runtime Environment虚拟机提权漏洞

Sun Java Runtime Environment是一款SUN公司开发的JAVA实时运行环境。 Sun Java Runtime Environment虚拟机存在漏洞允许不可信applet提升自身特权，远程攻击者可以利用漏洞获得登录用户权限。 恶意applet可以授权本地文件读和写权限，并以运行此不可信用户进程权限执行applet。 Sun SDK Windows Production Release 1.4.2 15 Sun SDK Windows Production Release 1.4.2 08 Sun SDK Windows Production Release 1.4...

Sun JSSE SSL/TLS握手处理拒绝服务漏洞

BUGTRAQ ID: 24846 CNCAN ID:CNCAN-2007071109 Sun JSSE是一款用于应用程序中提供数据传输安全性的安全套接字扩展。 多个Java实时环境中的Sun JSSE不正确处理SSL/TLS握手请求，远程攻击者可以利用漏洞对使用JSSE支持SSL/TLS的应用程序进行拒绝服务攻击。 目前没有详细漏洞细节提供。 Sun SDK Windows Production Release 1.4.2 15 Sun SDK Windows Production Release 1.4.214 Sun SDK Windows Production Release...

Sun Java Web Start任意文件覆盖权限提升漏洞

BUGTRAQ ID: 24695 Java Web Start是用于简化在客户端部署Java应用程序的技术。 Java Web Start在处理应用程序的访问权限时存在漏洞，攻击者可能利用此漏洞提升自己的权限。 Java Web Start中的安全漏洞允许不可信任的应用程序给予其本身覆盖任何运行应用程序用户可写文件的权限，包括用户的.java.policy文件，这允许应用程序调用applet或Java Web Start应用程序，以运行不可信任应用程序的权限执行任意指令。 Sun JDK = 5.0 Update 11 Sun JRE = 5.0 Update 11 Sun JRE...

CVE-2003-0896

The CVE-2003-0896 entry concerns the loadClass method of sun.applet.AppletClassLoader in the JVM used with Sun SDK/JRE 1.4.1_03 and earlier. A remote attacker can bypass sandbox restrictions and execute arbitrary code by loading a class name that uses "/" instead of "." (dot), which avoids the Se...