[Bug 1829269] CVE-2020-11722 crawl: a remote attacker may execute arbitrary code via Lua bytecode

Author:



Dungeon Crawl Stone Soup (aka DCSS or crawl) before 0.25 allows remote attackers to execute arbitrary code via Lua bytecode embedded in an uploaded .crawlrc file. External Reference:

Created crawl tracking bugs for this issue: Affects: fedora-all [

This CVE Bugzilla entry is for community support….



Source link

Write a comment:
*

Your email address will not be published.

RELATED STORIES
Category CERT-LatestNews Linux ThreatsCybercrime ThreatsStrategic VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesLinux VulnerabilitiesMozilla VulnerabilitiesOS

Castel NextGen DVR 1.0.0 Bypass / CSRF / Disclosure

June 6, 2020
All issues are associated with *Castel NextGen DVR v1.0.0 *and have been resolved in v1.0.1*.* ...
Tags , , , , , ,
Read More
Category Applications VulnerabilitiesAll VulnerabilitiesApplications

Quick Player 1.3 Denial Of Service

June 6, 2020
# Exploit Title: Quick Player 1.3 – ‘Browser.exe’ Denial of Service # Date: 06/05/2020 #...
Read More
Category Applications APTFilter CERT-LatestNews ThreatsCybercrime ThreatsStrategic VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesNetwork

Cyber Deception Market Development, Top Trends and Future Scope with Upcoming Opportunities 2018 – 2026 – Cole Reports

June 6, 2020
Introduction System breaching is a common activity carried out by cyber hacker to extract sensitive...
Read More
vamtam-theme-circle-post
Category CERT-LatestNews Linux Malware ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesLinux VulnerabilitiesMicrosoft VulnerabilitiesNetwork VulnerabilitiesOS

Tycoon Ransomware – Java Ransomware Attack Windows & Linux Users

June 6, 2020
Security experts have warned that hackers are using a new multi-platform Java ransomware “Tycoon” to...
Tags , , , , , , ,
Read More
Category Applications VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCisco

一个 gif 就可以黑掉Zoom接收者系统

June 6, 2020
Zoom再爆安全漏洞,一个gif就可以入侵接收者系统。 漏洞 作为疫情期间使用量最多的视频会议软件,随着Zoom用户数和使用量的激增,应用安全问题得到了广大安全研究人员的关注。 漏洞概述. 近日,Cisco Talos安全研究人员又在Zoom客户端中发现了2个安全漏洞,CVE编号分别是CVE-2020-6109和CVE-2020-6110。攻击者利用这2个漏洞可以远程黑进参与者群聊或会话接收者的系统中,细思极恐…… 这2个漏洞都属于路径遍历漏洞,可以用来在系统上写任意文件来执行恶意代码,而且成功利用这两个缺陷不需要目标聊天参与者进行任何或很少的交互,只需通过聊天功能向个人或群组发送精心编制的消息即可。 漏洞分析. Source link
Tags
Read More
vamtam-theme-circle-post
Category Applications VulnerabilitiesAll VulnerabilitiesApplications

CVE-2020-4183 – Alert Detail – Security Database

June 6, 2020
Executive Summary This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For...
Tags , , , , , , , , , , , , , , , ,
Read More
vamtam-theme-circle-post
Category CERT-LatestNews Cryptography ThreatsCybercrime ThreatsEconomic TrendMicroNews VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCrypto VulnerabilitiesGoogle VulnerabilitiesOS

New Tekya Ad Fraud Found on Google Play

June 6, 2020
By Ford Qin (Mobile Threats Analyst) In late March, researchers from CheckPoint found the Tekya...
Tags , , , ,
Read More
Category Database Management Systems VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesDBMS

Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU – Apr 2020 – Includes Oracle Apr 2020 CPU minus CVE-2020-2773 affects Liberty for Java for IBM Cloud

June 6, 2020
Jun 5, 2020 8:00 pm EDT Categorized: High Severity Share this post: Multiple...
Tags , , , , , , , , , , , , , , , , ,
Read More
vamtam-theme-circle-post
Category Hardware VulnerabilitiesAll VulnerabilitiesApple VulnerabilitiesApplications VulnerabilitiesHardware VulnerabilitiesOS

Massive iPhone Leak, Apple’s iOS Nightmare, MacBook Pro’s Sneaky Surprise

June 6, 2020
Taking a look back at another week of news and headlines from Cupertino, this week’s...
Tags , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
Read More
vamtam-theme-circle-post
Category Applications VulnerabilitiesAll VulnerabilitiesApplications

CVE-2020-5591 – Alert Detail – Security Database

June 6, 2020
Executive Summary Informations Name CVE-2020-5591 First vendor Publication 2020-06-05 Vendor Cve Last vendor Modification 2020-06-05...
Tags , , , , , , , , , , , , , , , ,
Read More
digitpol
scale
element-support
Call Center
+31 55 8448040
element-map
Location

Global

International Cyber Crime Investigation

Digitpol is licensed by the Ministry of Justice: Licence Number POB1557

©Digitpol. All images and content are copyright of Digitpol and can not be used, replicated or reproduced without written permission. 2019.

Privacy  /   Terms and Policy   /   Site map  /   Contact