CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-17365
https://notcve.org/view.php?id=CVE-2020-17365
24 Sep 2020 — Improper directory permissions in the Hotspot Shield VPN client software for Windows 10.3.0 and earlier may allow an authorized user to potentially enable escalation of privilege via local access. The vulnerability allows a local user to corrupt system files: a local user can create a specially crafted symbolic link to a critical file on the system and overwrite it with privileges of the application. Los permisos de directorio inadecuados en el software cliente VPN de Hotspot Shield para Windows versión 10.... • https://cymptom.com/cve-2020-17365-hotspot-shield-vpn-new-privilege-escalation-vulnerability/2020/10 • CWE-59: Improper Link Resolution Before File Access ('Link Following') CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 10.0EPSS: 14%CPEs: 1EXPL: 1CVE-2020-12828
https://notcve.org/view.php?id=CVE-2020-12828
21 May 2020 — An issue was discovered in AnchorFree VPN SDK before 1.3.3.218. The VPN SDK service takes certain executable locations over a socket bound to localhost. Binding to the socket and providing a path where a malicious executable file resides leads to executing the malicious executable file with SYSTEM privileges. Se descubrió un problema en AnchorFree VPN SDK versiones anteriores a la versión 1.3.3.218. El servicio VPN SDK toma determinadas ubicaciones ejecutables a través de un socket vinculado a localhost. • https://github.com/0xsha/ZombieVPN • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.8EPSS: 11%CPEs: 39EXPL: 5CVE-2011-0020 – Pango Font Parsing - 'pangoft2-render.c' Heap Corruption
https://notcve.org/view.php?id=CVE-2011-0020
24 Jan 2011 — Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object. Desbordamiento de búfer basado en memoria dinámica en la función pango_ft2_font_render_box_glyph en pango/pangoft2-render.c de libpan... • https://www.exploit-db.com/exploits/35232 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 9.8EPSS: 4%CPEs: 11EXPL: 1CVE-2009-1194 – pango: pango_glyph_string_set_size integer overflow
https://notcve.org/view.php?id=CVE-2009-1194
11 May 2009 — Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox. Un desbordamiento de entero en la función pango_glyph_string_set_size en pango/glyphstring.c en Pango antes de la versión v1.24 permite causar una denegación ... • http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e • CWE-189: Numeric Errors CWE-190: Integer Overflow or Wraparound •