The vulnerability of the Adobe AIR software platform, which allows a hacker to circumvent access restrictions

The vulnerability of the Adobe AIR software platform is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass access restrictions remotely...

The vulnerability of the Adobe AIR software platform, which allows a hacker to bypass the ASLR protection mechanism

The vulnerability of the Adobe AIR software platform is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism...

The vulnerability of the Adobe AIR software platform, which allows a hacker to circumvent access restrictions

The vulnerability of the Adobe AIR software platform is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass access restrictions remotely...

The vulnerability of the Debian GNU/Linux operating system allows a perpetrator to gain access to information processed by the previous user.

Vulnerability of the Drupal subsystem of the Debian GNU/Linux operating system, with no protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to access information processed by the previous user, through analysis of the cache...

Arcserve Unified Data Protection Management getBackupPolicies Information Disclosure (CVE-2015-4069)

An information disclosure vulnerability exists in Arcserve Unified Data Protection UDP. This vulnerability exists in EdgeServiceImpl and is due to insufficient input validation of certain SOAP requests using the getBackupPolicies method. A remote unauthenticated attacker can exploit this...

How To Encrypt Your USB Drive to Protect Data

The USB flash drives or memory sticks are an excellent way to store and carry data and applications for access on any system you come across. With storage spaces already reaching 256 gigabytes, nowadays USB drives are often larger than past's hard drives. Thanks to increased storage capacity and...

Arcserve Unified Data Protection (UDP) Detection (HTTP)

HTTP based detection of Arcserve Unified Data Protection UDP. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Federal Agencies to Move to HTTPS-Only Connections

Following the lead of many major Web services, the White House on Monday announced that it would move all of the federal government’s public sites and services to HTTPS-only. Tony Scott, the federal CIO, has issued a memorandum to all federal agencies and departments instructing them to move all ...

Multiple Information Disclosure Vulnerabilities in Arcserve Unified Data Protection

Arcserve UDP Unified Data Protection is a set of unified data protection solutions from the U.S. company Arcserve. The solution provides backup and recovery of all virtual and physical environments, global deduplication and other functions. A security vulnerability exists in the 'getBackupPolicy'...

Arcserve Unified Data Protection Management Service EdgeServiceImpl getBackupPolicies Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose information on vulnerable installations of Arcserve Unified Data Protection. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getBackupPolicies method of the EdgeServiceImpl web service. By...

Arcserve Unified Data Protection Management Service EdgeServiceImpl getBackupPolicy Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose information on vulnerable installations of Arcserve Unified Data Protection. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getBackupPolicy method of the EdgeServiceImpl web service. By sendi...

Arcserve Unified Data Protection Management Service reportFileServlet Directory Traversal Information Disclosure and Denial of Service Vulnerability

This vulnerability allows remote attackers to disclose and delete files on vulnerable installations of Arcserve Unified Data Protection. Authentication is not required to exploit this vulnerability. The specific flaw exists within the reportFileServlet. The issue lies in the failure to sanitize t...

Arcserve Unified Data Protection Management Service exportServlet Directory Traversal Information Disclosure and Denial of Service Vulnerability

This vulnerability allows remote attackers to disclose and delete files on vulnerable installations of Arcserve Unified Data Protection. Authentication is not required to exploit this vulnerability. The specific flaw exists within the exportServlet servlet. The issue lies in the failure to saniti...

Unix / Linux - Local Users Information : Passwords Never Expire

Using the supplied credentials, Nessus was able to list local users that are enabled and whose passwords never expire. TRUSTED...

USBKill — Code That Kills Computers Before They Examine USBs for Secrets

USBkill — A new program that once activated, will instantly disable the laptop or computer if there is any activity on USB port. Hey Wait, don’t compare USBkill with the USB Killer stick that destroy sensitive components of a computer when plugged-in. "USBKill" is a new weapon that could be a boo...

Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the iscsitarget-kmp-default-debuginfo package of the OpenSUSE operating system can lead to breaches of the confidentiality, integrity, and accessibility of protected information. Exploitation of these vulnerabilities can be carried out remotely...

Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-xen-debuginfo package of the OpenSUSE operating system can be exploited, leading to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities of the Red Hat Enterprise Linux operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the texinfo-4.5 package of the Red Hat Enterprise Linux operating system can be exploited, which may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited locally...

The vulnerability of the OpenSUSE operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the libpciaccess0-32bit package of the OpenSUSE operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. Exploitation of this vulnerability can be carried out remotely...

Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the libldb1-debuginfo-x86 package of the OpenSUSE operating system can be exploited, leading to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...