This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
This vulnerability allows remote attackers to bypass authentication on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit this vulnerability.
Posted by Mahmoud Noureldin on Aug 03
#!/usr/bin/python3
# Exploit Title: Kolibri GET request buffer Overflow [Stack Egghunter]
# Date: 2 Augst 2023
# Exploit Author: Mahmoud NourEldin @Engacker
# Vendor App:
https://www.exploit-db.com/apps/4d4e15b98e105facf94e4fd6a1f9eb78-Kolibri-2.0-win.zip
# Version: Kolibri 2.0
# Tested on: Windows 10
# Description:
# For the first time making the egghunter jumping to the begging of the
stack
import socket, time, sys, os
if len(sys.argv) != 3:…
Posted by Matthias Deeg via Fulldisclosure on Aug 03
Advisory ID: SYSS-2023-011
Product: PIXMA TR4550
Manufacturer: Canon
Affected Version(s): 1.020 / 1.080
also affects many other Canon inkjet printer
models[4]
Tested Version(s): 1.020 / 1.080
Vulnerability Type: Insufficient or Incomplete Data Removal
within Hardware Component (CWE-1301)…
Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.
It was discovered that ntpd in ntpsec, a secure, hardened, and improved
implementation derived from the original NTP project, could crash if NTS
is disabled and an NTS-enabled client request (mode 3) is received.
php-8.2.9-2.fc38
PHP version 8.2.9 (03 Aug 2023)
Build:
Fixed bug GH-11522 (PHP version check fails with ‘-‘ separator). (SVGAnimate)
CLI:
Fix interrupted CLI output causing the process to exit. (nielsdos)
Core:
Fixed oss-fuzz php#60011 (Mis-compilation of by-reference nullsafe operator). (ilutov)
Fixed line number of JMP instruction over else block. (ilutov)
Fixed use-of-uninitialized-value with ??= on assert. (ilutov)
Fixed oss-fuzz php#60411 (Fix double-compilation of arrow-functions). (ilutov)
Fixed build for FreeBSD before the 11.0 releases. (David Carlier)
Curl:
Fix crash when an invalid callback function is passed to CURLMOPT_PUSHFUNCTION. (nielsdos)
Date:
Fixed bug GH-11368 (Date modify returns invalid datetime). (Derick)
Fixed bug GH-11600 (Can’t parse time strings which include (narrow) non-breaking space characters). (Derick)
Fixed bug GH-11854 (DateTime:createFromFormat stopped parsing datetime with extra space). (nielsdos, Derick)
DOM:
Fixed bug GH-11625 (DOMElement::replaceWith() doesn’t replace node with DOMDocumentFragment but just deletes node or causes wrapping <> depending on libxml2 version). (nielsdos)
Fileinfo:
Fixed bug GH-11298 (finfo returns wrong mime type for xz files). (Anatol)
FTP:
Fix context option check for “overwrite”. (JonasQuinten)
Fixed bug GH-10562 (Memory leak and invalid state with consecutive ftp_nb_fget). (nielsdos)
GD:
Fix most of the external libgd test failures. (Michael Orlitzky)
Intl:
Fix memory leak in MessageFormatter::format() on failure. (Girgias)
Libxml:
Fixed bug GHSA-3qrf-m4j2-pcrr (Security issue with external entity loading in XML without enabling it). (CVE-2023-3823) (nielsdos, ilutov)
MBString:
Fix GH-11300 (license issue: restricted unicode license headers). (nielsdos)
Opcache:
Fixed bug GH-10914 (OPCache with Enum and Callback functions results in segmentation fault). (nielsdos)
Prevent potential deadlock if accelerated globals cannot be allocated. (nielsdos)
PCNTL:
Fixed bug GH-11498 (SIGCHLD is not always returned from proc_open). (nielsdos)
PDO:
Fix GH-11587 (After php8.1, when PDO::ATTR_EMULATE_PREPARES is true and PDO::ATTR_STRINGIFY_FETCHES is true, decimal zeros are no longer filled). (SakiTakamachi)
PDO SQLite:
Fix GH-11492 (Make test failure: ext/pdo_sqlite/tests/bug_42589.phpt). (KapitanOczywisty, CViniciusSDias)
Phar:
Add missing check on EVP_VerifyUpdate() in phar util. (nielsdos)
Fixed bug GHSA-jqcx-ccgc-xwhv (Buffer mismanagement in phar_dir_read()). (CVE-2023-3824) (nielsdos)
PHPDBG:
Fixed bug GH-9669 (phpdbg -h options doesn’t list the -z option). (adsr)
Session:
Removed broken url support for transferring session ID. (ilutov)
Standard:
Fix serialization of RC1 objects appearing in object graph twice. (ilutov) Streams:
Fixed bug GH-11735 (Use-after-free when unregistering user stream wrapper from itself). (ilutov)
SQLite3:
Fix replaced error handling in SQLite3Stmt::__construct. (nielsdos)
XMLReader:
Fix GH-11548 (Argument corruption when calling XMLReader::open or XMLReader::XML non-statically with observer active). (Bob)
Group-IB said the group carried out 750 DDoS attacks and more than 70 website defacements in a year
Over the last five years the firm reported and mitigated 141 advisories, encompassing 289 CVEs
The Russia-based actor exploited compromised Microsoft 365 tenants owned by small businesses
