-
```
There is an obvious path traversal in Kaspersky Virtual Keyboard, a hosting
website can simply do element.GetGraphics("../../../../whatever") to read any
png file on the victims computer.
x = d…
-
```
The fusermount binary calls setuid(geteuid()) to reset the ruid when
it invokes /bin/mount so that it can use privileged mount options that
are normally restricted if ruid != euid. That's acceptab…
-
```
The FireEye MPS (Malware Protection System) is vulnerable to a remote code
execution vulnerability, simply from monitoring hostile traffic. FireEye is
designed to operate as a passive network ta…
-
```
The fusermount binary calls setuid(geteuid()) to reset the ruid when
it invokes /bin/mount so that it can use privileged mount options that
are normally restricted if ruid != euid. That's acceptab…
-
@RoySegall / @jhedstrom I did a diff between these branches (attached).
If you `cat update-rc1_update-travis_diff.txt` it should display with color. Can you please let me know which changes should be…
-
```
When Kaspersky https inspection is enabled, temporary certificates are created
in %PROGRAMDATA% for validation. I observed that the naming pattern is
{CN}.cer.
I created a certificate with CN=…
-
```
There is an obvious path traversal in Kaspersky Virtual Keyboard, a hosting
website can simply do element.GetGraphics("../../../../whatever") to read any
png file on the victims computer.
x = d…
-
```
When Kaspersky https inspection is enabled, temporary certificates are created
in %PROGRAMDATA% for validation. I observed that the naming pattern is
{CN}.cer.
I created a certificate with CN=…
-
```
When Kaspersky https inspection is enabled, temporary certificates are created
in %PROGRAMDATA% for validation. I observed that the naming pattern is
{CN}.cer.
I created a certificate with CN=…
-
```
One component of Avast Antivirus is called "Sandbox". As you might guess, it's
a proprietary application sandbox for Windows. Avast describes it as "[...]
lets you run apps, download files, and …