Gentoo Linux Security Advisory 202101-38 - A vulnerability was discovered in NSD which could allow a local attacker to cause a Denial of Service condition. Versions less than 4.3.4 are affected.
7d524441ccd8474adf4b85bdd76aa9cb9c85c2b7ff7a88a04dffde4e91306901Ubuntu Security Notice 4714-1 - Zhihong Tian and Hui Lu found that XStream was vulnerable to remote code execution. A remote attacker could run arbitrary shell commands by manipulating the processed input stream. It was discovered that XStream was vulnerable to server-side forgery attacks. A remote attacker could request data from internal resources that are not publicly available only by manipulating the processed input stream. Various other issues were also addressed.
0599be6b3cfb387f0c1c305c18e99a24d7e7aabf6f5bb1820cebfd59b75b191bMetasploit Framework version 6.0.11 msfvenom APK template command injection exploit.
0d9c5f7dc903dd1d7e2dd33b50690e3be7b460458dacf13578f2a28fa5ba3ec3Packed.Win32.Katusha.o suffers from an insecure permissions vulnerability.
a9b5e83001190ef68d071f5929c56248aad49dd3be5021af063c90e76906e12dBackdoor.Win32.MiniBlackLash malware suffers from a denial of service vulnerability.
990e85aa559b8d7872f4bd1d2d9c7414e72696a4e08982398c71d435a17e36c1Online Voting System version 1.0 suffers from an authorization bypass vulnerability that allows for the password change of other users.
b5602920743becf85d943b0687ceab51b1b1fe2b42685c27fffed369ebcea8e3Red Hat Security Advisory 2021-0299-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Issues addressed include an information leakage vulnerability.
47a6c099170886d0dfec4ce713a988a2cfc638ff6c8591e9a90a90b77ed1376eBloofoxCMS version 0.5.2.1 suffers from a persistent cross site scripting vulnerability.
c6cc0a7902952943c480d0bed0bedebd44d4bb52108d4e042d32b75d376fb55aGentoo Linux Security Advisory 202101-37 - A buffer overflow in VLC might allow remote attacker(s) to execute arbitrary code. Versions less than 3.0.12.1 are affected.
4f3ec9b81da7090724694c74da49a355c57de39fca2fc9b1a27a44eb6f0dc55aGentoo Linux Security Advisory 202101-36 - A vulnerability in ImageMagick's handling of PDF was discovered possibly allowing code execution. Versions less than 6.9.11.41-r1 are affected.
c2ba100de84f7d1fd8ec3787eaeac17dfcce035fef1ed1f023f21d07def2b642Online Grading System version 1.0 suffers from a remote SQL injection vulnerability.
b03d85739dc18f083afd092e5bcc7421a9399a88f8fcb6b91fbece090f151f02Backdoor.Win32.Mhtserv.b malware suffers from a missing authentication vulnerability.
c2d962b6b33685f4a1b80d7ef4869d759d00c5699b31aa97936bf2d6accbf8a3Red Hat Security Advisory 2021-0298-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Issues addressed include an information leakage vulnerability.
3522adef5d9665bda2b6a20a4478bdf85a0af546dacec458397fbdd1752a84dcQuick.CMS versions 6.7 and below suffer from an authenticated remote code execution vulnerability.
c14f2374f378b8f14bdd754ad6b876269ddc8433b34763841ada668656c12a01Home Assistant Community Store (HACS) version 1.10.0 suffers from a path traversal vulnerability that allows for account takeover.
06a8ea0658722e24ff3247bf292a001bb12ff1cf3cce3876e958d4add5ff945bBackdoor.Win32.Zhangpo malware suffers from a denial of service vulnerability.
5cb8723bcc0056e506df32a4a5bd6da484f5fa7c392b129308a901e46c9a4deeBackdoor.Win32.Zetronic malware suffers from a denial of service vulnerability.
58737cb63d2968feaacbe6dce8c7ad02a3d0289723f92f5a5dff7376fb89db3fMyBB Hide Thread Content plugin version 1.0 suffers from an information leakage vulnerability.
7f46b890703ec52c6f242ce37fd468e2f2fd79d720184202e24037508b01fd8bRed Hat Security Advisory 2021-0297-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.7.0. Issues addressed include an information leakage vulnerability.
238fdcbe4d4917b8291e1febe41d0d12f2e523bf85472e50e2b701209c7c7d4bIf an application uses iconv() with an attacker specified character set, there's an assertion in the gconv buffer management code that can be triggered, crashing the application. The crash only occurs with ISO-2022-JP-3 encoding.
c6a21c4fe097d825b800e707fc854c169f367c24e1653ab4813d566b22024d97
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed