KLA11513 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security...

Ubuntu 16.04 LTS / 18.04 LTS : Docker vulnerabilities (USN-4048-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4048-1 advisory. Aleksa Sarai discovered that Docker was vulnerable to a directory traversal attack. An attacker could use this vulnerability to read and writ...

USN-4048-1 Docker vulnerabilities

Aleksa Sarai discovered that Docker was vulnerable to a directory traversal attack. An attacker could use this vulnerability to read and write arbitrary files on the host filesystem as root...

USN-4048-1: Docker vulnerabilities

Aleksa Sarai discovered that Docker was vulnerable to a directory traversal attack. An attacker could use this vulnerability to read and write arbitrary files on the host filesystem as root...

PT-2019-6133 · Docker · Docker Desktop Community Edition +1

Name of the Vulnerable Software and Affected Versions: Docker Desktop Community Edition versions prior to 2.1.0.1 Description: The issue is related to incorrect permission assignment for the docker-credential-wincred.exe file in the %PROGRAMDATA%DockerDesktopversion-bin folder. This could allow a...

The vulnerability of the Alpine Linux Docker distribution, related to the use of a empty password for the pre-installed account, allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Alpine Linux Docker distribution stems from the use of a empty password for the pre-installed root account. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

django-aesfield (=3.0.0), django-autoconfig (=0.8.0) +11 more potentially affected by CVE-2019-12781 via django (>=2.1.0 <=2.1.1)

django PYPI version =2.1.0, =0.1.0, =0.1.0, =0.3.0, =1.7.3, =0.0.3, =1.1.0, =0.1.2, =1.0.0rc2, =0.1.0, =0.2.0.dev2 Source cves: CVE-2019-12781 Source advisory: OSV:GHSA-6C7V-2F49-8H26...

ncu-ad-course-2017-pwn

This repository is an offensive tool for a Capture The Flag CTF challenge. It contains a series of pwn tasks created by the author for the NCU A&D course. The tasks are designed to test the participants' skills in exploiting vulnerabilities and bypassing security measures. The repository includes...

MIG - Distributed And Real Time Digital Forensics At The Speed Of The Cloud

MIG is Mozilla's platform for investigative surgery of remote endpoints. Quick Start w/ Docker You can spin up a local-only MIG setup using docker. The container is not suitable for production use but lets you experiment with MIG quickly, providing a single container environment that has most of...

Sherlock - Find Usernames Across Social Networks

Find usernames across social networks Installation NOTE : Python 3.6 or higher is required. clone the repo $ git clone https://github.com/sherlock-project/sherlock.git change the working directory to sherlock $ cd sherlock install python3 and python3-pip if not exist install the requirements $ pi...

Exploit for OS Command Injection in Docker

Breaking out of Docker via RunC A proof of concept code for CV...

Informatica: Public Github Repo Leaking Internal Credentials Leading To DiscoveryIQ Docker Access

Researcher has identified and reported public github repo leaking internal information...

Qualys Cloud Platform (VM, PC) 8.20 New Features

This new release of the Qualys Cloud Platform VM, PC, version 8.20, includes several new features in Qualys Cloud Platform and additional support for multiple technologies in Qualys Policy Compliance. Feature Highlights Qualys Cloud Platform Configure Password Expiration Notification – Now users...

openSUSE: Security Advisory for docker (openSUSE-SU-2019:1621-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2019:1621-1 Security update for docker

This update for docker fixes the following issues: Security issue fixed: - CVE-2018-15664: Fixed an issue which could make docker cp vulnerable to symlink-exchange race attacks bsc1096726. This update was imported from the SUSE:SLE-15:Update update project...

Photon OS 3.0: Docker PHSA-2019-3.0-0019

An update of the docker package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0019. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid126192;...

Photon OS 2.0: Docker PHSA-2019-2.0-0162

An update of the docker package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0162. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid12620...

Photon OS 1.0: Docker PHSA-2019-1.0-0238

An update of the docker package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0238. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid12619...

openSUSE Security Update : docker (openSUSE-2019-1621)

This update for docker fixes the following issues : Security issue fixed: - CVE-2018-15664: Fixed an issue which could make docker cp vulnerable to symlink-exchange race attacks bsc1096726. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The...

Security update for docker (moderate)

openSUSE Security Update: Security update for docker Announcement ID: openSUSE-SU-2019:1621-1 Rating: moderate References: 1096726 Cross-References: CVE-2018-15664 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This...