The vulnerability of the Firefox browser, which allows a hacker to obtain information about the last visited pages

The vulnerability of Firefox browsers is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, operating remotely, to obtain information about the last visited pages by using the Resource Timing API interface’s calls...

iOS 9.3.4 Patches Critical Code Execution Flaw

Apple last week patched a critical iOS memory corruption vulnerability that could allow attackers to execute code on compromised devices. The flaw was found by Team Pangu, a Chinese hacker group that specializes in building iOS jailbreak tools. The vulnerability is fixed in iOS 9.3.4. “An...

Sql injection

IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server aka IBM Spectrum Protect for Databases 6.3 before 6.3.1.7 and 6.4 before 6.4.1.9 and Tivoli Storage FlashCopy Manager for Microsoft SQL Server aka IBM Spectrum Protect Snapshot 3.1 before 3.1.1.7 and 3.2 before...

CVE-2016-3059

IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server aka IBM Spectrum Protect for Databases 6.3 before 6.3.1.7 and 6.4 before 6.4.1.9 and Tivoli Storage FlashCopy Manager for Microsoft SQL Server aka IBM Spectrum Protect Snapshot 3.1 before 3.1.1.7 and 3.2 before...

CVE-2016-3059

CVE-2016-3059 affects IBM Tivoli Storage Manager for Databases (IBM Spectrum Protect for Databases) and IBM Tivoli Storage FlashCopy Manager for Microsoft SQL Server (IBM Spectrum Protect Snapshot). The vulnerability allows local users to disclose the cleartext SQL Server password by reading the ...

NUUO NVRmini 2 3.0.8 - Remote Code Execution

NUUO NVRmini 2 3.0.8 - Remote Code Execution !/usr/bin/env python NUUO Remote Root Exploit Vendor: NUUO Inc. Product web page: http://www.nuuo.com Affected version: =3.0.8 Summary: NUUO NVRmini 2 is the lightweight, portable NVR solution with NAS functionality. Setup is simple and easy, with...

NUUO NVRmini 2 3.0.8 - Remote Root Exploit

Exploit for php platform in category web applications !/usr/bin/env python NUUO Remote Root Exploit Vendor: NUUO Inc. Product web page: http://www.nuuo.com Affected version: =3.0.8 Summary: NUUO NVRmini 2 is the lightweight, portable NVR solution with NAS functionality. Setup is simple and easy,...

The vulnerability of the Flash Player software allows a perpetrator to obtain confidential information from the process’s memory.

The vulnerability of the Flash Player software is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information from the process’s memory...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the network component of the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, operating remotely, to obtain confidential information through a specially created application...

The vulnerability of the Android operating system, which allows a perpetrator to gain access to protected information

The vulnerability of the NfcService.java script, a component of the NFC operating system in Android, is related to the lack of protection for service data. Exploiting this vulnerability could allow a local attacker to gain access to protected information through a specially crafted background...

Flash Cookie History

Nessus was able to generate a list of URLs that set Flash cookies on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid92419; scriptversion"1.5"; scriptcvsdate"Date: 2018/05/23 16:10:01"; scriptnameenglish:"Flash Cookie History";...

Skype User Configuration Files

Nessus was able to collect the Skype user configuration files for each system user. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid92432; scriptversion"1.5"; scriptcvsdate"Date: 2018/05/23 16:10:01"; scriptnameenglish:"Skype User Configuration Files";...

BagMRU Folder History

Nessus was able to enumerate folders that were opened in Windows Explorer. Microsoft Windows maintains folder settings using a registry key known as shellbags or BagMRU. The generated folder list report contains folders local to the system, folders from past mounted network drives, and folders fr...

Microsoft Windows Hosts File

Nessus was able to collect the hosts file from the remote Windows host and report it as attachment. C Tenable Network Security, Inc. include"compat.inc"; if !definedfunc"nasllevel" || nasllevel 5200 exit0, "Not Nessus 5.2+"; if description scriptid92365; scriptversion"1.10"; scriptcvsdate"Date:...

Microsoft Windows Environment Variables

Nessus was able to collect system and active account environment variables on the remote Windows host and generate a report as a CSV attachment. C Tenable, Inc. include"compat.inc"; if description scriptid92364; scriptversion"1.14"; scriptsetattributeattribute:"pluginmodificationdate",...

PT-2016-2425 · Adobe +3 · Flash Player +3

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions prior to 18.0.0.366 Adobe Flash Player versions 19.x through 22.x before 22.0.0.209 Adobe Flash Player version before 11.2.202.632 on Linux Description: The issue is related to the lack of protection for internal...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the Activity Manager component in the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information through a specially created application...

The vulnerability of the antivirus software Internet Security allows a hacker to read arbitrary files.

The vulnerability of the antivirus software Internet Security is related to the lack of protection for operational data. Exploiting this vulnerability allows a malicious actor to remotely read arbitrary files...

What you need to know: Navigating EU Data Protection changes – EU-US Privacy Shield and EU General Data Protection Regulation

If youre an organization with trans-Atlantic presence that transmits and stores European citizen data e.g. employee payroll & HR data, client & prospect data in the U.S. you will want to pay attention. What we will discuss was administered under the European Unions Data Protection Directive and a...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The kdelibs4-doc package for the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...