[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 2288 Download | Alert*

Oracle Solaris 11 - ( CVE-2023-37369 )

Ruby before 2.4.3 allows Net::FTP command injection. Net::FTP#get, getbinaryfile, gettextfile, put, putbinaryfile, and puttextfile use Kernel#open to open a local file. If the localfile argument starts with the "|" pipe character, the command following the pipe character is executed. The default value of localfile is File.basename(remotefile), so malicious FTP servers could cause arbitrary comman ...

The parser_yyerror function in the UTF-8 parser in Ruby 2.4.1 allows attackers to cause a denial of service (invalid write or read) or possibly have unspecified other impact via a crafted Ruby script, related to the parser_tokadd_utf8 function in parse.y. NOTE: this might have security relevance as a bypass of a $SAFE protection mechanism.

Oracle Solaris 11 - ( CVE-2023-24998 )

Oracle Solaris 11 - ( CVE-2023-24998 )

Oracle Solaris 11 - ( CVE-2024-25617 )

Oracle Solaris 11 - ( CVE-2023-44271 )

Oracle Solaris 11 - ( CVE-2023-39322 )

Oracle Solaris 11 - ( CVE-2023-45285 )

Oracle Solaris 11 - ( CVE-2022-27779 )


Pages:      Start    17    18    19    20    21    22    23    24    25    26    27    28    29    30    ..   228

© SecPod Technologies