Wireshark 3.4.x < 3.4.11 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 3.4.11. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.4.11 advisory. - Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or...

KLA12409 Multiple vulnerabilities in Wireshark

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in RTMPT dissector can be exploited via special crafted packet to cause denial of service...

Wireshark 3.6.x < 3.6.1 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 3.6.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.6.1 advisory. - Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted...

Wireshark 3.6.x < 3.6.1 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.6.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.6.1 advisory. - Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or...

Wireshark 3.4.x < 3.4.11 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.4.11. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.4.11 advisory. - Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet...

PT-2021-6886 · Wireshark +3 · Wireshark +3

Name of the Vulnerable Software and Affected Versions: Wireshark versions 3.4.0 through 3.4.10 Wireshark version 3.6.0 Description: The issue is related to an infinite loop in the BitTorrent DHT dissector, which can be exploited to cause a denial of service via packet injection or crafted capture...

Mozi IoT Botnet Now Also Targets Netgear, Huawei, and ZTE Network Gateways

Mozi, a peer-to-peer P2P botnet known to target IoT devices, has gained new capabilities that allow it to achieve persistence on network gateways manufactured by Netgear, Huawei, and ZTE, according to latest findings. "Network gateways are a particularly juicy target for adversaries because they...

How to proactively defend against Mozi IoT botnet

Mozi is a peer-to-peer P2P botnet that uses a BitTorrent-like network to infect IoT devices such as network gateways and digital video records DVRs. It works by exploiting weak telnet passwords1 and nearly a dozen unpatched IoT vulnerabilities2 and it’s been used to conduct distributed...

‘Oddball’ Malware Blocks Access to Pirated Software

The objective of most malware is some kind of gain — financial or otherwise — for the attackers who use it. However, researchers recently observed a unique malware with a single intent: Blocking the infected computers from visiting websites dedicated to software piracy. The malware which SophosLa...

Unauthorized Access Vulnerability in qBittorrent

QBittorrent is a new lightweight BitTorrent client that runs on Linux, windows and other possible systems. An unauthorized access vulnerability exists in qBittorrent, which can be exploited by an attacker to gain direct access to the backend interface...

Microsoft Windows XP Source Code Reportedly Leaked Online

Microsoft's long-lived operating system Windows XP—that still powers over 1% of all laptops and desktop computers worldwide—has had its source code leaked online, allegedly, along with Windows Server 2003. Yes, you heard that right. The source code for Microsoft's 19-year-old operating system was...

Triple-Threat Cryptocurrency RAT Mines, Steals and Harvests

A previously undocumented malware family called KryptoCibule is mounting a three-pronged cryptocurrency-related attack, while also deploying remote-access trojan RAT functionality to establish backdoors to its victims. According to researchers at ESET, the malware has been seen targeting victims...

Remote Memory Disclosure in bittorrent-dht

Versions of bittorrent-dht prior to 5.1.3 are affected by a remote memory disclosure vulnerability. This vulnerability allows an attacker to send a specific series of of messages to a listening peer and get it to reveal internal memory. There are two mitigating factors here, that slightly reduce...

@actiflixr/webtorrent (=1.0.0), @andrewosh/torrent-docker (>=1.6.0 <=1.6.1) +249 more potentially affected by CVE-2016-10519 via bittorrent-dht (>=0.5.0 <=4.0.4)

bittorrent-dht NPM version =0.5.0, =1.6.0, =0.1.0-beta.0, =0.1.1, =0.1.0, =0.1.1, =1.0.0, =0.0.1, =1.0.0-alpha.18, =1.0.0-alpha.18, =0.0.1, =1.2.18, =1.0.17, =1.0.0, =1.0.1 and more Source cves: CVE-2016-10519 Source advisory: OSV:GHSA-77G4-36JP-5V3M...

GHSA-77G4-36JP-5V3M Remote Memory Disclosure in bittorrent-dht

Versions of bittorrent-dht prior to 5.1.3 are affected by a remote memory disclosure vulnerability. This vulnerability allows an attacker to send a specific series of of messages to a listening peer and get it to reveal internal memory. There are two mitigating factors here, that slightly reduce...

Transmission: Remote code execution

Background Transmission is a cross-platform BitTorrent client. Description Transmission mishandles some memory management which may allow manipulation of the heap. Impact A remote attacker could entice a user to open a specially crafted torrent file using Transmission, possibly resulting in...

EvilQuest Mac Ransomware Has Keylogger, Crypto Wallet-Stealing Abilities

A rare new ransomware strain targeting macOS users has been discovered, called EvilQuest. Researchers say the ransomware is being distributed via various versions of pirated software. EvilQuest, first discovered by security researcher Dinesh Devadoss, goes beyond the normal encryption capabilitie...

OSV-2020-171 Heap-buffer-overflow in ndpi_parse_packet_line_info

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23396 Crash type: Heap-buffer-overflow READ 1 Crash state: ndpiparsepacketlineinfo ndpiintsearchbittorrenttcpzero ndpiintsearchbittorrenttcp...

Gazelle Cross-Site Scripting Vulnerability

Gazelle is a set of web frameworks for BitTorrent trackers. A cross-site scripting vulnerability exists in versions of Gazelle prior to 2017-03-19. A remote attacker can exploit the vulnerability to execute arbitrary HTML and script...

remote.bittorrent.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1180593 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...