#binary-parser

[ follow ]
#remote-code-execution #input-sanitization #npm
Information security
fromThe Hacker News
1 week ago

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A lack of sanitization in binary-parser versions before 2.3.0 can allow attacker-controlled input to be compiled into runtime code, enabling arbitrary JavaScript execution.
[ Load more ]