Posted by malvuln on Feb 22
Discovery / credits: Malvuln – malvuln.com (c) 2022
Original source:
https://malvuln.com/advisory/1f84a5305b65d7f6aa3afa7e2f2bda0e.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln
Threat: Backdoor.Win32.Agent.baol
Vulnerability: Insecure Permissions
Description: The malware writes several PE files with insecure permissions
under c drive granting change (C) permissions to the authenticated user
group. Standard users can rename the…
More Stories
Monero 18.3.4 zero-day DoS vulnerability has been dropped publicly on social network.
Posted by upper.underflow via Fulldisclosure on Feb 16 Hello, About an hour ago, a group appearing to be named WyRCV2...
Netgear Router Administrative Web Interface Lacks Transport Encryption By Default
Posted by Ryan Delaney via Fulldisclosure on Feb 16 <!-- # Exploit Title: Netgear Router Administrative Web Interface Lacks Transport...
[CVE-2024-54756] GZDoom <= 4.13.1 Arbitrary Code Execution via Malicious ZScript
Posted by Gabriel Valachi via Fulldisclosure on Feb 15 In GZDoom 4.13.1 and below, there is a vulnerability involving array...
Re: Text injection on https://www.google.com/sorry/index via ?q parameter (no XSS)
Posted by David Fifield on Feb 15 Today at about 2025-02-13 19:00 I noticed the "≠" is back, but now...
python3.8-3.8.20-2.fc40
FEDORA-2025-b353a46e0c Packages in this update: python3.8-3.8.20-2.fc40 Update description: Security fixes for CVE-2024-11168 and CVE-2025-0938 Read More
python3.8-3.8.20-2.fc41
FEDORA-2025-bec494726c Packages in this update: python3.8-3.8.20-2.fc41 Update description: Security fixes for CVE-2024-11168 and CVE-2025-0938 Read More