Mail Index

• Thread Index

• [FD] NULL pointer dereference in the function handle_viminfo_register() of vim
  • From: Christian Brabandt
• [FD] [KIS-2024-01] XenForo <= 2.2.13 (ArchiveImport.php) Zip Slip Vulnerability
  • From: Egidio Romano
• [FD] TROJAN.WIN32 BANKSHOT / Remote Stack Buffer Overflow (SEH)
  • From: malvuln
• [FD] Research about usage & possible issues of the NVD
  • From: Andreas Hammer
• [FD] CVE-2023-6246: Heap-based buffer overflow in the glibc's syslog()
  • From: Qualys Security Advisory via Fulldisclosure
• [FD] Out-of-bounds read & write in the glibc's qsort()
  • From: Qualys Security Advisory via Fulldisclosure
• [FD] APPLE-SA-02-02-2024-1 visionOS 1.0.2
  • From: Apple Product Security via Fulldisclosure
• [FD] IBM i Access Client Solutions / Remote Credential Theft / CVE-2024-22318
  • From: hyp3rlinx
• [FD] Wyrestorm Apollo VX20 / Incorrect Access Control - DoS / CVE-2024-25736
  • From: hyp3rlinx
• [FD] Wyrestorm Apollo VX20 / Account Enumeration / CVE-2024-25734
  • From: hyp3rlinx
• [FD] Wyrestorm Apollo VX20 / Incorrect Access Control - Credentials Disclosure / CVE-2024-25735
  • From: hyp3rlinx
• [FD] Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 2.
  • From: hyp3rlinx
• [FD] Command Injection Vulnerability in KiTTY Get Remote File Through SCP Input (CVE-2024-23749)
  • From: Austin DeFrancesco via Fulldisclosure
• [FD] Buffer Overflow Vulnerabilities in KiTTY Start Duplicated Session Hostname (CVE-2024-25003) & Username (CVE-2024-25004) Variables
  • From: Austin DeFrancesco via Fulldisclosure
• [FD] Android passkeys unexpectedly deleted or useless after sync
  • From: Erik van Straten (FD)
• [FD] OXAS-ADV-2023-0007: OX App Suite Security Advisory
  • From: Martin Heiland via Fulldisclosure
• [FD] Stored XSS and RCE - adaptcmsv3.0.3
  • From: Andrey Stoykov
• [FD] SEC Consult SA-20240212-0 :: Multiple Stored Cross-Site Scripting vulnerabilities in Statamic CMS
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] 44CON 2024 September 18th - 20th CFP
  • From: Florent Daigniere via Fulldisclosure
• [FD] Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 3
  • From: hyp3rlinx
• [FD] Microsoft Windows Defender / VBScript Detection Bypass
  • From: hyp3rlinx
• [FD] Microsoft Windows Defender / Backdoor:JS/Relvelshe.A / Detection Mitigation Bypass
  • From: hyp3rlinx
• [FD] CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool
  • From: Jeroen J.A.W. Hermans via Fulldisclosure
• Re: [FD] Buffer Overflow in graphviz via via a crafted config6a file
  • From: Matthew Fernandez
• [FD] SEC Consult SA-20240220-0 :: Multiple Stored Cross-Site Scripting Vulnerabilities in OpenOLAT (Frentix GmbH)
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure