CVE-2025-2849

A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...

UBUNTU-CVE-2025-2849

A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...

CVE-2025-2849

CVE-2025-2849 affects UPX up to 5.0.0. The vulnerability is in PackLinuxElf64::un_DT_INIT (src/p_lx_elf.cpp) and enables a heap-based buffer overflow, exploitable on the local host. Public exploit information exists. A patch is identified as e0b6ff192412f5bb5364c1948f4f6b27a0cd5ea2; applying the ...

CVE-2025-2849 UPX p_lx_elf.cpp un_DT_INIT heap-based overflow

A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...

CVE-2025-2849 UPX p_lx_elf.cpp un_DT_INIT heap-based overflow

A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...

CVE-2025-2849

A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...

PT-2025-13195 · Upx +2 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX versions up to 5.0.0 Description: A problematic issue was found in the function PackLinuxElf64::un DT INIT of the file src/p lx elf.cpp, leading to a heap-based buffer overflow. The attack can be launched on the local host. Recommendation...

CVE-2023-23456 vulnerabilities

Vulnerabilities for packages: upx...

GHSA-3J7G-922G-J6R3 vulnerabilities

Vulnerabilities for packages: upx...

CVE-2023-23456 vulnerabilities

Vulnerabilities for packages: upx...

GHSA-3J7G-922G-J6R3 vulnerabilities

Vulnerabilities for packages: upx...

Linux Distros Unpatched Vulnerability : CVE-2024-3209

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in UPX up to 4.2.2. It has been rated as critical. This issue affects the function getne64 of the file bele.h. The manipulation leads ...

Linux Distros Unpatched Vulnerability : CVE-2021-20285

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in upx canPack in plxelf.cpp in UPX 3.96. This flaw allows attackers to cause a denial of service SEGV or buffer overflow and application crash...

Linux Distros Unpatched Vulnerability : CVE-2020-27801

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer over-read was discovered in the getle64 function in bele.h in UPX 4.0.0 via a crafted Mach-O file. CVE-2020-27801 Note that Nessus relies on...

Linux Distros Unpatched Vulnerability : CVE-2020-27800

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer over-read was discovered in the getle32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file. CVE-2020-27800 Note that Nessus relies on...

Debian: Security Advisory (DLA-3991-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3991-1] upx-ucl security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3991-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler December 11, 2024 https://wiki.debian.org/LTS -...

Debian dla-3991 : upx-ucl - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-3991 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3991-1 [email protected] https://www.debian.org/lts/security/...

DLA-3991-1 upx-ucl - security update

Bulletin has no description...

LodaRAT: Established Malware, New Victim Patterns

Executive Summary Rapid7 has observed an ongoing malware campaign involving a new version of LodaRAT. This version possesses the ability to steal cookies and passwords from Microsoft Edge and Brave. LodaRAT, first observed in 2016, is a remote access tool RAT written in AutoIt. Development of...