OSCA-550, OSCA-550A, OSCA-550AX, OSCA-550X Security Vulnerabilities

Siemens SINAMICS S210 6SL3210-5HE11-5UF0 Servo Drive Detection

The 6SL3210-5HE11-5UF0 Servo Drive is characterized by: Input voltage: 200-480V 3AC; 3.8 A 45-66 Hz Output voltage: 0-input V; 3.0 A; 0-550 Hz Motor: 1.0 kW; degree of protection...

Siemens SINAMICS S210 6SL3210-5HE11-0UF0 Servo Drive Detection

The 6SL3210-5HE11-0UF0 Servo Drive is characterized by: Input voltage: 200-480V 3AC; 3.8 A 45-66 Hz Output voltage: 0-input V; 3.0 A; 0-550 Hz Motor: 1.0 kW; degree of protection...

Adobe ColdFusion RDS Authentication Bypass

Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote attackers to bypass authentication using the RDS component. Due to default settings or misconfiguration, its password can be set to an empty value. This allows an attacker to create a session via the RDS login that can be carried over to the....

Ransomware Hits B2B Payments Firm Billtrust

Business-to-business payments provider Billtrust is still recovering from a ransomware attack that began last week. The company said it is in the final stages of bringing all of its systems back online from backups. With more than 550 employees, Lawrence Township, N.J.-based Billtrust is a...

indegy.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-995800 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

Cisco Small Business Smart and Managed Switches Cross-Site Scripting Vulnerability

A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is due to insufficient validation of...

Cisco Small Business Smart and Managed Switches CVE-2019-12718 Cross Site Scripting Vulnerability

Description Cisco Small Business Smart and Managed Switches are prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the....

Multiple Cisco Products CVE-2019-12636 Cross Site Request Forgery Vulnerability

Description Multiple Cisco Products are prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain unauthorized actions and gain access to the affected application. Other attacks are also possible. This issue is being tracked by Cisco.....

DameWare Remote Support 12.1.0.34 - Buffer Overflow (SEH) Exploit

...

DameWare Remote Support 12.1.0.34 - Buffer Overflow (SEH)

...

DameWare Remote Support 12.1.0.34 Buffer Overflow

...

Cisco Small Business 220 Series - Multiple Vulnerabilities

...

DameWare Remote Support 12.1.0.34 - Buffer Overflow (SEH)

DameWare Remote Support 12.1.0.34 - Buffer Overflow...

Cisco Small Business 220 Series - Multiple Vulnerabilities

Cisco Small Business 220 Series - Multiple...

Realtek Managed Switch Controller (RTL83xx) Stack Overflow

...

Cisco Small Business 220 Series - Multiple Vulnerabilities

...

Threat Source newsletter (Sept. 19, 2019)

Newsletter compiled by Jon Munshaw. Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week. We’re all still trying to shake off the summer. Gone are the early Fridays, beach vacations and days by the pool. Turns out,...

AMD Radeon Graphics Cards Open VMware Workstations to Attack

A remote code-execution bug exists in some configurations of the AMD Radeon graphics card that could allow an attacker to take control of a targeted system. The hack entails luring users of vulnerable systems to visit a specially crafted website that can deliver “a malformed pixel shader” to...

Vulnerability Spotlight: AMD ATI Radeon ATIDXX64.DLL shader functionality remote code execution vulnerability

__Piotr Bania of Cisco Talos discovered this vulnerability. Some AMD Radeon cards contain a remote code execution vulnerability in their ATIDXX64.DLL driver. AMD produces the Radeon line of hardware, which includes graphics cards and graphics processing units. This specific vulnerability exists...

AMD ATI Radeon ATIDXX64.DLL shader functionality remote code execution vulnerability

Summary An exploitable memory corruption vulnerability exists in AMD ATIDXX64.DLL driver, versions 25.20.15031.5004 and 25.20.15031.9002. A specially crafted pixel shader can cause an out-of-bounds memory write. An attacker can provide a specially crafted shader file to trigger this vulnerability.....

WordPress Photo Gallery 1.5.34 SQL Injection

...

WordPress Plugin Photo Gallery 1.5.34 - SQL Injection

...

WordPress Photo Gallery 1.5.34 Plugin - SQL Injection Vulnerability

Exploit for php platform in category web...

WordPress Plugin Photo Gallery 1.5.34 - SQL Injection

WordPress Plugin Photo Gallery 1.5.34 - SQL...

Realtek Managed Switch Controller RTL83xx Stack Overflow

...

Description of the security update for Outlook 2013: August 13, 2019

Description of the security update for Outlook 2013: August 13, 2019 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Outlook software if it does not correctly handle objects in memory. To learn more about the vulnerability, see Microsoft Common.....

CVE-2019-12948

A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC Software, if exploited, could allow an authenticated, remote attacker with admin privileges to cause a denial of service (DoS) condition or execute arbitrary...

kubeadm-ha-setup security update

[0.0.2-1.0.52] - [OLCNE-678] Restore fails when trying to restore after a failed update [0.0.2-1.0.51] - [OLCNE-667] Minor version update doesn't update kubeadm on all master nodes [0.0.2-1.0.50] - Make k8s 1.14 specific changes [0.0.2-1.0.49] - [OLCNE-668] Remove 1.10 and 1.11 version since they.....

Description of the security update for Outlook 2013: July 9, 2019

Description of the security update for Outlook 2013: July 9, 2019 Summary This security update resolves an information disclosure vulnerability that exists if Microsoft Exchange allows entities to be created even though they have Display Names that contain non-printable characters.. To learn more.....

CVE-2019-10103

JetBrains IntelliJ IDEA projects created using the Kotlin (JS Client/JVM Server) IDE Template were resolving Gradle artifacts using an http connection, potentially allowing an MITM attack. This issue, which was fixed in Kotlin plugin version 1.3.30, is similar to...

CVE-2019-10101

JetBrains Kotlin versions before 1.3.30 were resolving artifacts using an http connection during the build process, potentially allowing an MITM...

EA Origin < 10.5.38 - Remote Code Execution Vulnerability

...

EA Origin Remote Code Execution

...

ABB IDAL FTP Server Path Traversal

...

EA Origin &lt; 10.5.38 - Remote Code Execution

...

EA Origin 10.5.38 - Remote Code Execution

EA Origin 10.5.38 - Remote Code...

Description of the security update for SharePoint Server 2010: June 11, 2019

Description of the security update for SharePoint Server 2010: June 11, 2019 Summary This security update resolves a cross-site–scripting (XSS) vulnerability that exists when Microsoft SharePoint Server does not correctly sanitize a specially crafted web request that's made to an affected...

Microsoft Windows gdiplus Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Denial of Service in ws

Affected versions of ws can crash when a specially crafted Sec-WebSocket-Extensions header containing Object.prototype property names as extension or parameter names is sent. Proof of concept ``` const WebSocket = require('ws'); const net = require('net'); const wss = new WebSocket.Server({ port:.....

Denial of Service in ws

Affected versions of ws can crash when a specially crafted Sec-WebSocket-Extensions header containing Object.prototype property names as extension or parameter names is sent. Proof of concept ``` const WebSocket = require('ws'); const net = require('net'); const wss = new WebSocket.Server({ port:.....

Schneider Electric Altivar ATV61HC50Y387 Variable Speed Drive

Schneider Electric ATV61HC50Y387 is an adjustable-speed drive used in electro-mechanical drive systems to control AC motor speed and torque by varying motor input frequency and voltage. Specifications include 494 A for 600 V 3 phases 400 kW / 550 hp, 505 A for 690 V 3 phases 400 kW / 550 hp, 547 A....

Schneider Electric Altivar ATV61HC50Y Variable Speed Drive

Schneider Electric ATV61HC50Y is an adjustable-speed drive used in electro-mechanical drive systems to control AC motor speed and torque by varying motor input frequency and voltage. Specifications include 494 A for 600 V 3 phases 400 kW / 550 hp, 505 A for 690 V 3 phases 400 kW / 550 hp, 547 A...

UPDATE: Sysdig Falco v0.15.0

PenTestIT RSS Feed Three days ago, an updated version – Sysdig Falco v0.15.0 – was released. It has been some time since I last blogged about this open source behavorial activity monitor which has container support. This release incorporates a lot of rule updates that are now also tagged the for...

CVE-2019-1806

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco Small Business Sx200, Sx300, Sx500, ESW2 Series Managed Switches and Small Business Sx250, Sx350, Sx550 Series Switches could allow an authenticated, remote attacker to cause the SNMP application of an....

Cisco Small Business Series Switches Simple Network Management Protocol Denial of Service Vulnerability

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco Small Business Sx200, Sx300, Sx500, ESW2 Series Managed Switches and Small Business Sx250, Sx350, Sx550 Series Switches could allow an authenticated, remote attacker to cause the SNMP application of an....

Toshiba VFAS3-4280KPC AS3 ASD Drive Detection

A VFAS3-4280KPC AS3 ASD Drive has been detected. It is described by Toshiba as AS3 Adjustable Speed Drive with 460 V AC, Heavy Duty HP of 450, Heavy Duty AMPS of 550, Normal Duty HP of 500, and Normal Duty AMPS of 616. This Speed Drive has 8 Programmable Digital Inputs, 3 Programmable Digital...

Toshiba VFAS3-4220KPC AS3 ASD Drive Detection

A VFAS3-4220KPC AS3 ASD Drive has been detected. It is described by Toshiba as AS3 Adjustable Speed Drive with 460 V AC, Heavy Duty HP of 350, Heavy Duty AMPS of 427, Normal Duty HP of 450, and Normal Duty AMPS of 550. This Speed Drive has 8 Programmable Digital Inputs, 3 Programmable Digital...

Schneider Electric Premium PLC Detection

A Premium PLC with model number TSXP57203M has been detected. It is described by Schneider Electric as double-format PL7 processor - 550 mA 5 V DC for Standard...

Schneider Electric Premium PLC Detection

A Premium PLC with model number TSXP57203MC has been detected. It is described by Schneider Electric as double-format PL7 processor - 550 mA 5 V DC for Harsh...

Europol Shuts Down Two Major Illegal 'Dark Web' Trading Platforms

Europol announced the shut down of two prolific dark web marketplaces—Wall Street Market and Silkkitie (also known as Valhalla)—in simultaneous global operations against underground websites for trading drugs, stolen credit card numbers, malicious software, and other illegal goods. Police in...