Lucene search
+L

345 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:8 a.m.38 views

Security Bulletin: Multiple security vulnerabilities affect IBM WebSphere Application Server for Bluemix

Summary WebSphere Application Server may have insecure file permissions after custom startup scripts are run. The custom startup script will not pull the umask from the server.xml. This may cause some log files to have different permissions then expected. There is an information disclosure in the...

9.8CVSS0.5AI score0.57472EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:7 a.m.23 views

Security Bulletin: A Security vulnerability has been identified in IBM WebSphere Application Server bundled with IBM WebSphere Application Server Patterns and IBM WebSphere Application Server for Cloud (CVE-2017-1504)

Summary WebSphere Application Server traditional 9.0.0.4 added a new feature using the PasswordUtil command to enable AES password encryption. If you used this feature, then you have a potential for weaker than expected security since some passwords did not get encrypted as you might have expecte...

2.5AI score0.00944EPSS
Exploits0Affected Software1
Malwarebytes
Malwarebytes
added 2018/06/07 3:0 p.m.63 views

Malware analysis: decoding Emotet, part 2

In part two of our series on decoding Emotet, you can catch up on part 1 here, we'll cover analysis of the PowerShell code. Before we do that, however, it is a good idea to list some of the functions and calls that are used in the code for the execution. System.Runtime.InteropServices.Marshal: us...

0.5AI score
Exploits0
UbuntuCve
UbuntuCve
added 2018/06/04 12:0 a.m.35 views

CVE-2016-1000339

In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if the data channel on the CPU can be monitored the lookup table accesses are sufficient to leak...

5.3CVSS6.6AI score0.027EPSS
Exploits0References2
Malwarebytes
Malwarebytes
added 2018/05/25 3:0 p.m.138 views

Malware analysis: decoding Emotet, part 1

Emotet Banking Trojan malware has been around for quite some time now. As such, infosec researchers have made several attempts to develop tools to de-obfuscate and even decrypt the AES-encrypted code belonging to this malware. The problem with these tools is that they target active versions of th...

1AI score
Exploits0
NVD
NVD
added 2018/05/23 1:29 p.m.22 views

CVE-2017-2598

Jenkins before versions 2.44, 2.32.2 uses AES ECB block cipher mode without IV for encrypting secrets which makes Jenkins and the stored secrets vulnerable to unnecessary risks SECURITY-304...

4.3CVSS4.5AI score0.01098EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/05/23 1:0 p.m.25 views

CVE-2017-2598

Jenkins before versions 2.44, 2.32.2 uses AES ECB block cipher mode without IV for encrypting secrets which makes Jenkins and the stored secrets vulnerable to unnecessary risks SECURITY-304...

4.3CVSS4.7AI score0.01098EPSS
Exploits0References4
NVD
NVD
added 2018/04/12 1:29 a.m.23 views

CVE-2018-8117

A security feature bypass vulnerability exists in the Microsoft Wireless Keyboard 850 which could allow an attacker to reuse an AES encryption key to send keystrokes to other keyboard devices or to read keystrokes sent by other keyboards for the affected devices, aka "Microsoft Wireless Keyboard...

7.3CVSS6.4AI score0.01224EPSS
Exploits0References2
Prion
Prion
added 2018/04/12 1:29 a.m.23 views

Security feature bypass

A security feature bypass vulnerability exists in the Microsoft Wireless Keyboard 850 which could allow an attacker to reuse an AES encryption key to send keystrokes to other keyboard devices or to read keystrokes sent by other keyboards for the affected devices, aka "Microsoft Wireless Keyboard...

7.3CVSS6.4AI score0.01224EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/04/12 1:0 a.m.24 views

CVE-2018-8117

A security feature bypass vulnerability exists in the Microsoft Wireless Keyboard 850 which could allow an attacker to reuse an AES encryption key to send keystrokes to other keyboard devices or to read keystrokes sent by other keyboards for the affected devices, aka "Microsoft Wireless Keyboard...

6.5AI score0.01224EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2018/04/10 7:0 a.m.40 views

Microsoft Wireless Keyboard 850 Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in the Microsoft Wireless Keyboard 850 which could allow an attacker to reuse an AES encryption key to send keystrokes to other keyboard devices or to read keystrokes sent by other keyboards for the affected devices. An attacker would first have to...

7.3CVSS2.3AI score0.01224EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2018/02/28 4:0 p.m.76 views

Encryption 101: ShiOne ransomware case study

In part one of this series, Encryption 101: a malware analyst's primer, we introduced some of the basic encryption concepts used in malware. If you haven't read it, we suggest going back for a review, as it's necessary in order to be able to fully follow part two, our case study. In this study, w...

6.8AI score
Exploits0
NVD
NVD
added 2018/01/08 8:29 a.m.15 views

CVE-2018-5298

In the Procter & Gamble "Oral-B App" aka com.pg.oralb.oralbapp application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences...

7.5CVSS7.5AI score0.00411EPSS
Exploits0References1
Prion
Prion
added 2018/01/08 8:29 a.m.12 views

Design/Logic Flaw

In the Procter & Gamble "Oral-B App" aka com.pg.oralb.oralbapp application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences...

5CVSS7.6AI score0.00411EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/01/08 8:0 a.m.19 views

CVE-2018-5298

In the Procter & Gamble "Oral-B App" aka com.pg.oralb.oralbapp application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences...

7.6AI score0.00411EPSS
Exploits0References1
CVE
CVE
added 2018/01/08 8:0 a.m.37 views

CVE-2018-5298

The CVE-2018-5298 entry concerns the Procter & Gamble Oral-B App for Android (com.pg.oralb.oralbapp) v5.0.0, where AES is used with static parameters to protect locally stored shared preferences. The underlying issue is insecure key/parameter handling, enabling an attacker who can access the pref...

7.5CVSS7.5AI score0.00411EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2017/12/31 2:29 a.m.16 views

Design/Logic Flaw

A door-unlocking issue was discovered on Software House iStar Ultra devices through 6.5.2.20569 when used in conjunction with the IP-ACM Ethernet Door Module. The communications between the IP-ACM and the iStar Ultra is encrypted using a fixed AES key and IV. Each message is encrypted in CBC mode...

5.8CVSS7.6AI score0.00999EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2017/12/12 2:1 p.m.26 views

New Spider Ransomware Comes With 96-Hour Deadline

A new ransomware strain called Spider is targeting victims located in the Balkans in what is called a “mid-scale” campaign. The Spider ransomware is unique in that attackers are given a 96-hour deadline to pay. Attackers also attempt to calm victims, assuring them the ransom payment and file...

0.8AI score
Exploits0References1
n0where
n0where
added 2017/10/16 2:0 p.m.23 views

Cloud Client Side File Encryption: Cryptomator

Multi-platform transparent client-side encryption of your files in the cloud. Cryptomator provides transparent, client-side encryption for your cloud. Protect your documents from unauthorized access. Cryptomator is free and open source software, so you can rest assured there are no backdoors...

7.1AI score
Exploits0References5
The Hacker News
The Hacker News
added 2017/10/13 5:29 a.m.14 views

New Ransomware Not Just Encrypts Your Android But Also Changes PIN Lock

DoubleLocker—as the name suggests, it locks device twice. Security researchers from Slovakia-based security software maker ESET have discovered a new Android ransomware that not just encrypts users’ data, but also locks them out of their devices by changing lock screen PIN. On top of that:...

6.8AI score
Exploits0
Rows per page
Query Builder