Scapy Packet Manipulation Tool 2.6.0

Debian Security Advisory 5779-1

Debian Security Advisory 5778-1

VegaBird Vooki 5.2.9 DLL Hijacking

VegaBird Yaazhini 2.0.2 DLL Hijacking

VegaBird Yaazhini version 2.0.2 suffers from a dll hijacking vulnerability.

    ====================================CVE ID: CVE-2024-45873Author: Iulian FloreaVendor: VegaBirdProduct:  Vooki - Free Android APK & API Vulnerability Scanner(Yaazhini)Vulnerability Type: DLL Hijacking========================================================================Summary==================================== A DLL hijacking vulnerability in VegaBird Yaazhini 2.0.2 allows attackers to execute arbitrary code / maintain persistence via placing a crafted DLL file in the same directory as Yaazhini.exe.====================================Exploitation====================================By placing an arbitrary DLL (Example: dcomp.dll) within the application folder (C:\Users\<USER>\AppData\Local\Programs\Yaazhini) and opening the application (Yaazhini.exe) it can be noted that the DLL is being loaded. This can lead to persistence or in some cases to privilege escalation.

Headline

VegaBird Yaazhini 2.0.2 DLL Hijacking

Packet Storm: Latest News