An issue was discovered in armadito-windows-driver/src/communication.c in Armadito 0.12.7.2. Malware with filenames containing pure UTF-16 characters can bypass detection. The user-mode service will fail to open the file for scanning after the conversion is done from Unicode to ANSI. This happens because characters that cannot be converted from Unicode are replaced with '?' characters.
oryginał ENCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:NTeclib Edition Armadito Antivirus
APPTeclib-Edition0.12.7.2
Powiązane podatności
RCE przez tworzenie dropdownów w pluginie Fields dla GLPI
GLPI is an open source IT Asset Management, issue tracking system and service desk system. The GLPI addressing...
An issue was discovered in the Teclib Fields plugin through 1.9.2 for GLPI. it allows SQL Injection via contai...
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of authentication....
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlock_tasks.php.