EUVD-2022-7507

Malicious code in bioql PyPI...

Arbitrary Code Execution

vm2 is vulnerable to arbitrary code execution. Improper use of prototype lookup for the WeakMap.prototype.set method allows remote attackers to inject and execute malicious code on the system...

CVE-2022-25893 Arbitrary Code Execution

The package vm2 before 3.9.10 are vulnerable to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method. Exploiting this vulnerability leads to access to a host object and a sandbox compromise...

CVE-2022-25893

CVE-2022-25893 affects the vm2 Node.js module (pre-3.9.10) and is caused by a prototype pollution flaw in WeakMap.prototype.set, enabling an attacker to access host objects and potentially compromise the sandbox, leading to arbitrary code execution. Reported impact in the sources: remote code exe...

vm2 vulnerable to Arbitrary Code Execution

The package vm2 before 3.9.10 is vulnerable to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method. Exploiting this vulnerability leads to access to a host object and a sandbox compromise...

CVE-2022-25893

The package vm2 before 3.9.10 are vulnerable to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method. Exploiting this vulnerability leads to access to a host object and a sandbox compromise...

Spoofing

The package vm2 before 3.9.10 are vulnerable to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method. Exploiting this vulnerability leads to access to a host object and a sandbox compromise...

PT-2022-17590 · Vm2 · Vm2

Name of the Vulnerable Software and Affected Versions: vm2 versions prior to 3.9.10 Description: The issue is related to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method. This allows access to a host object and can lead to a sandbox compromise...

Arbitrary Code Execution

Overview vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. Affected versions of this package are vulnerable to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method. Exploiting this vulnerability leads to access to ...

Microsoft Internet Explorer JavaScript WeakMap Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

IE GC information leakage the vulnerability of the gossip-vulnerability warning-the black bar safety net

This vulnerability is several months earlier dion cow release, also recently got a pwnie award of the prize, the original speaking of the flash, ff, etc. of the GC engine are the use of conserved marker removal algorithm and are not tag data or pointer, so the presence of this problem, dion cattl...

Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero

No description provided by source. !-- Exploit title: Microsoft Internet Explorer 11 - WeakMap Integer divide-by-zero DoS Date: 29.05.2014 Vulnerable version: 11 Tested on: Windows 7/8 Author: Pawel Wylecial http://h0wl.pl @h0wlu -- html script var a = new WeakMap; a.pushnew WeakMap; a1.seta0, a1...

Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero

Exploit for windows platform in category dos / poc var a = new WeakMap; a.pushnew WeakMap; a1.seta0, a1; a0.deletea0; ,1::TryGetValueAndRemove+0x1f: 668756f0 f736 div eax,dword ptr esi ds:002b:04598cc8=00000000 -- 0day.today 2018-01-26...

Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero

var a = new WeakMap; a.pushnew WeakMap; a1.seta0, a1; a0.deletea0; ,1::TryGetValueAndRemove+0x1f: 668756f0 f736 div eax,dword ptr esi ds:002b:04598cc8=00000000 --...

Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero

Microsoft Internet Explorer 11 - WeakMap Integer Divide-by-Zero var a = new WeakMap; a.pushnew WeakMap; a1.seta0, a1; a0.deletea0; ,1::TryGetValueAndRemove+0x1f: 668756f0 f736 div eax,dword ptr esi ds:002b:04598cc8=00000000 --...