Linux Distros Unpatched Vulnerability : CVE-2026-7179

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file...

SUSE CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

DEBIAN-CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

CVE-2026-7179 OSPG binwalk WinCE Extraction Plugin winceextract.py read_null_terminated_string path traversal

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

CVE-2026-7179

CVE-2026-7179 affects OSPG binwalk up to 2.4.3, specifically the WinCE Extraction Plugin’s read_null_terminated_string in src/binwalk/plugins/winceextract.py. The issue allows local path traversal via manipulation of self.file_name. Exploitation is local; the vulnerability is tied to products no ...

CVE-2026-7179 OSPG binwalk WinCE Extraction Plugin winceextract.py read_null_terminated_string path traversal

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

Binwalk 路径遍历漏洞

Binwalk is a fast and easy-to-use tool open sourced by ReFirm Labs. It is used for analysis, reverse engineering, and extracting firmware images. Versions of Binwalk 2.4.3 and earlier have a path traversal vulnerability. This vulnerability stems from improper handling of the parameter self.filena...

PT-2026-35536

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function read null terminated string of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.file name leads to path...

ICT Protege GX/WX 2.08 - Client-Side SHA1 Password Hash Disclosure Vulnerability

Exploit Title: ICT Protege GX/WX 2.08 - Client-Side SHA1 Password Hash Disclosure Exploit Author: LiquidWorm Vendor: Integrated Control Technology Ltd. Product web page: https://www.ict.co Affected version: GX: Ver: 2.08.1002 K1B3 Lib: 04.00.217 Int: 2.3.235.J013 OS: 2.0.20 WX: Ver: 4.00 284 H062...

ICT Protege GX/WX 2.08 - Stored Cross-Site Scripting (XSS)

Exploit Title: ICT Protege GX/WX 2.08 - Stored Cross-Site Scripting XSS Exploit Author: LiquidWorm Vendor: Integrated Control Technology Ltd. Product web page: https://www.ict.co Affected version: GX: Ver: 2.08.1002 K1B3 Lib: 04.00.217 Int: 2.3.235.J013 OS: 2.0.20 WX: Ver: 4.00 284 H062 App:...

ICT Protege GX/WX 2.08 Cross Site Scripting

ICT Protege GX/WX 2.08 Authenticated Stored XSS Vulnerability Vendor: Integrated Control Technology Ltd. Product web page: https://www.ict.co Affected version: GX: Ver: 2.08.1002 K1B3 Lib: 04.00.217 Int: 2.3.235.J013 OS: 2.0.20 WX: Ver: 4.00 284 H062 App: 02.08.766 Lib: 04.00.169 Int: 02.2.208...

ICT Protege GX/WX 2.08 Client-Side SHA1 Password Hash Disclosure

ICT Protege GX/WX 2.08 Client-Side SHA1 Password Hash Disclosure Vendor: Integrated Control Technology Ltd. Product web page: https://www.ict.co Affected version: GX: Ver: 2.08.1002 K1B3 Lib: 04.00.217 Int: 2.3.235.J013 OS: 2.0.20 WX: Ver: 4.00 284 H062 App: 02.08.766 Lib: 04.00.169 Int: 02.2.208...

ICT Protege GX/WX 2.08 Authenticated Stored XSS Vulnerability

Summary Protege GX is an enterprise level integrated access control, intrusion detection and building automation solution with a feature set that is easy to operate, simple to integrate and effortless to extend. Protege WX is an all-in-one, web-based, cross-platform system that gives you a fully...

Windows Mobile 6.5 TR (WinCE 5.2) MessageBox Shellcode (ARM)

No description provided by source...

[SecurityArchitect-009]: Microsoft Windows Mobile Double Free Vulnerability

Vendor: Microsoft Product: Windows Mobile Vulnerability: Double Free Tested vulnerable versions: Windows Mobile 6.1 and 6.5 Tested on : HTC Touch WM 6.1, HTC Touch2 WM 6.5 CREDITS: Celil nver from SecurityArchitect.Org CONTACT: celilunuvern0sp4mgmail.com Vulnerability Details and Analysis: The...

Windows Mobile 6.1 and 6.5 Double Free Denial of Service

Exploit for windows platform in category dos / poc ======================================================== Windows Mobile 6.1 and 6.5 Double Free Denial of Service ======================================================== Product: Windows Mobile 6.1 and 6.5 Vulnerability: Double Free Denial of...

windows Mobile 6.5 TR Phone Call Shellcode

Exploit for win32 platform in category shellcode ========================================== windows Mobile 6.5 TR Phone Call Shellcode ========================================== / Device: HTC Touch2 System: Windows Mobile 6.5 TR WinCE 5.0.2 Coded by Celil ‹n¸ver from SecurityArchitect Contact:...

windows Mobile 6.5 TR (WinCE 5.2) MessageBox Shellcode (ARM)

Exploit for win32 platform in category shellcode ============================================================ windows Mobile 6.5 TR WinCE 5.2 MessageBox Shellcode ARM ============================================================ / Device: HTC Touch2 System: Windows Mobile 6.5 TR WinCE 5.0.2...