CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-11128 – Insufficient Hardened Runtime or Library Validation signing in Bitdefender Virus Scanner for macOS
https://notcve.org/view.php?id=CVE-2024-11128
13 Jan 2025 — A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection (DYLD injection) without being blocked by AppleMobileFileIntegrity (AMFI). This issue is caused by the absence of Hardened Runtime or Library Validation signing. This issue affects Bitdefender Virus Scanner versions before 3.18. A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection (DYLD i... • https://www.bitdefender.com/support/security-advisories/insufficient-hardened-runtime-or-library-validation-signing-in-bitdefender-virus-scanner-for-macos • CWE-269: Improper Privilege Management •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1109
https://notcve.org/view.php?id=CVE-2002-1109
04 Oct 2002 — securetar, as used in AMaViS shell script 0.2.1 and earlier, allows users to cause a denial of service (CPU consumption) via a malformed TAR file, possibly via an incorrect file size parameter. • http://marc.info/?l=amavis-announce&m=103121272122242&w=2 •
CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 0CVE-1999-1512
https://notcve.org/view.php?id=CVE-1999-1512
31 Dec 1999 — The AMaViS virus scanner 0.2.0-pre4 and earlier allows remote attackers to execute arbitrary commands as root via an infected mail message with shell metacharacters in the reply-to field. • http://marc.info/?l=bugtraq&m=93219846414732&w=2 •