CVE-2023-40477 - WinRAR Recovery Volume Remote Code Execution Vulnerability Explained
In August 2023, cybersecurity researchers uncovered a serious vulnerability in WinRAR, the well-known file archiver by RARLAB, which could let hackers run code on your
CVE-2023-40474 - GStreamer MXF File Parsing Integer Overflow Leading to Remote Code Execution
GStreamer is a widely-used open source multimedia framework. In 2023, a critical security vulnerability was found that allows attackers to execute arbitrary code just by
CVE-2023-38089 - Understanding the Kofax Power PDF clearInterval Out-Of-Bounds Write RCE Vulnerability
In 2023, security researchers discovered a serious vulnerability affecting Kofax Power PDF, a widely used PDF reader and editor. This vulnerability is identified as CVE-2023-38089,
CVE-2023-37329 - Understanding the GStreamer SRT Subtitle File Heap Buffer Overflow Vulnerability
GStreamer is a widely-used open source multimedia framework found in popular desktop environments, media players, browsers, and even embedded systems. In June 2023, a critical
CVE-2023-37328 - Exploiting a Heap-based Buffer Overflow in GStreamer’s PGS File Parsing
TL;DR:
A critical vulnerability, CVE-2023-37328 (ZDI-CAN-20994), was discovered in GStreamer’s handling of PGS subtitle files. Insufficient validation of user-supplied data can lead to
Episode
00:00:00
00:00:00