>> CATEGORY: exploit
HEUR.Backdoor.Win32.Generic malware suffers from a file download vulnerability.
Trojan.Win32.Agentb.iofv malware suffers from an insecure permissions vulnerability.
Constructor.Win32.Bifrose.ag malware suffers from a buffer overflow vulnerability.
Trojan.Win32.Bayrob.dtrg malware suffers from an insecure permissions vulnerability.
Trojan-Dropper.Win32.Agent.bjtzcp malware suffers from an insecure permissions vulnerability.
Trojan.Win32.NanoBot.onh malware suffers from an insecure permissions vulnerability.
xscreensaver suffers from a raw socket leak vulnerability. Proof of concept exploit demonstrates running tcpdump via this issue.
WordPress Photo Gallery plugin versions 1.5.69 and below suffer from multiple reflective cross site scripting vulnerabilities.
This Metasploit module exploits CVE-2020-5791, an OS command injection vulnerability on Nagios XI versions 5.6.0 through 5.7.3 in admin/mibs.php that enables an authenticated user with admin privileges to achieve remote…