7-Technologies IGSS 9 IGSSdataServer.exe Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule '7-Technologies IGSS 9 IGSSdataServer.exe DoS', 'Description' = %q The 7-Technologies SCADA IGSS Data Server IGSSdataServer.exe 'jfa', Metasploit...

Debian: Security Advisory (DLA-335-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Exposed 2.4 TB of Business Customer Data in BlueBleed Breach

By Deeba Ahmed According to researchers, the data included 335,000 emails, 548,000 users, and 133,000 projects. This is a post from HackRead.com Read the original post: Microsoft Exposed 2.4 TB of Business Customer Data in BlueBleed Breach...

AlCoda NetBiblio WebOpac 跨站脚本漏洞

AlCoda NetBiblio WebOpac is an integrated It solution for libraries, media centers, documentation centers and archives from AlCoda Switzerland. A security vulnerability exists in AlCoda NetBiblio WebOPAC, which can be exploited by attackers to perform cross-site scripting attacks. This issue...

Minecraft declared the most malware-infected game

By Waqas According to new research by Atlas VPN, Minecraft related malware infected 44,335 devices while Kaspersky antivirus software detected 300,000 malware cases. This is a post from HackRead.com Read the original post: Minecraft declared the most malware-infected game...

openSUSE Security Update : MozillaFirefox (openSUSE-2021-335)

This update for MozillaFirefox fixes the following issues : Firefox Extended Support Release 78.7.1 ESR bsc1181848 - Fixed: Prevent access to NTFS special paths that could lead to filesystem corruption. - Buffer overflow in depth pitch calculations for compressed textures C Tenable Network...

TP-Link Archer A7/C7 Unauthenticated LAN Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule 'TP-Link Archer A7/C7 Unauthenticated LAN Remote Code Execution', 'Description' = %q This module exploits a command injection...

CVE-2017-2747

HP has identified a potential security vulnerability before IG110000.10 for DesignJet T790, T795, T1300, T2300, before MRY040500.5 for DesignJet T920, T930, T1500, T1530, T2500, T2530, before AENEAS030400.9 for DesignJet T3500, before NEXUS011200.11 for Latex 310, 330, 360, 370, before...

openSUSE Security Update : Adobe Flash Player (openSUSE-2016-335)

This update to Adobe Flash Player 11.2.202.577 fixes a number of vulnerabilities that could have allowed remote attackers to execute arbitrary code through crafted content. boo970547 - APSB16-08, CVE-2016-0960, CVE-2016-0961, CVE-2016-0962, CVE-2016-0963, CVE-2016-0986, CVE-2016-0987,...

Amazon Linux AMI : mod_security (ALAS-2014-335)

apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Polycom SoundPoint IP Devices Denial of Service

No description provided by source. Source: http://packetstormsecurity.org/files/view/97948/polycomsoundpoint-dos.txt Hello, Polycom SoundPoint IP devices IP phones are vulnerable to Denial of Service attacks. Sending HTTP GET request with broken Authorization header effect a device restart after ...

7-Technologies IGSS 9 IGSSdataServer.exe DoS

The 7-Technologies SCADA IGSS Data Server IGSSdataServer.exe '7-Technologies IGSS 9 IGSSdataServer.exe DoS', 'Description' = %q The 7-Technologies SCADA IGSS Data Server IGSSdataServer.exe 'jfa', Metasploit module , 'License' = MSFLICENSE, 'References' = 'CVE', '2011-4050' , 'OSVDB', '77976' ,...

ZDI-11-335 : RealNetworks RealPlayer RV10 Sample Height Parsing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-11-335 : RealNetworks RealPlayer RV10 Sample Height Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-335 November 28, 2011 - -- CVE ID: CVE-2011-4252 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - --...

Server with 335 websites got hacked by PakH3X0r

Server with 335 websites got hacked by PakH3X0r An Indian Server with 335 websites has been hacked by PakH3X0r and all sites get defaced . The list of sites are given at : https://pastebin.com/BEChkwD9...

Mandriva Security Advisory MDVSA-2009:335 (ffmpeg)

The remote host is missing an update to ffmpeg announced via advisory MDVSA-2009:335. OpenVAS Vulnerability Test $Id: mdksa2009335.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:335 ffmpeg Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft In...

Mandriva Security Advisory MDVSA-2009:335 (ffmpeg)

The remote host is missing an update to ffmpeg announced via advisory MDVSA-2009:335. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Ubuntu 5.04 / 5.10 / 6.06 LTS : heartbeat vulnerability (USN-335-1)

Yan Rong Ge discovered that heartbeat did not sufficiently verify some packet input data, which could lead to an out-of-boundary memory access. A remote attacker could exploit this to crash the daemon Denial of Service. Note that Tenable Network Security has extracted the preceding description...

Linux Kernel mq_open系统调用拒绝服务漏洞

BUGTRAQ ID: 16283 CVECAN ID: CVE-2005-335 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel对目录操作的实现上存在漏洞，本地攻击者可能利用此漏洞对系统进行拒绝服务攻击。 如果dentryopen函数调用失败的话，就会多次调用mntput函数。Linux Kernel的mqopen系统调用在这种情况下就可能两次递减计数器，这就允许本地攻击者导致系统忙碌，造成拒绝服务。 Linux kernel 2.6.9 RedHat Linux WS 4 RedHat Linux ES 4 RedHat Linux...

RHEL 4 : mozilla (RHSA-2005:335)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2005:335 advisory. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. A buffer overflow bug was found...