SUSE-SU-2024:0242-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 115.7 MFSA 2024-04 bsc1218955: - CVE-2024-0741: Out of bounds write in ANGLE - CVE-2024-0742: Failure to update user input timestamp - CVE-2024-0746: Crash when listing printers on Linux - CVE-2024-0747:...

2024 State of Ransomware in Education: 92% spike in K-12 attacks

This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on their Dark Web sites. In this report, “known attacks” are those where the victim did not pay a ransom. This provides the best overall picture of...

PT-2024-40731 · Absl · Absl

Name of the Vulnerable Software and Affected Versions: absl affected versions not specified Description: A heap-use-after-free READ 4 crash has been identified. The issue is related to the absl::lts NUMBER::random internal::InitDiscreteDistribution and absl::lts NUMBER::discrete distribution::par...

The vulnerability of the Spring Framework software platform, related to unlimited resource distribution, allows attackers to trigger service failures.

The vulnerability of the Spring Framework software platform is related to the unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures by using a specially created SpEL expression...

VexTrio: The Uber of Cybercrime - Brokering Malware for 60+ Affiliates

The threat actors behind ClearFake, SocGholish, and dozens of other e-crime outfits have established partnerships with another entity known as VexTrio as part of a massive "criminal affiliate program," new findings from Infoblox reveal. The latest development demonstrates the "breadth of their...

The vulnerability of the Server Key Distribution service in the Windows operating system allows a hacker to circumvent existing security restrictions.

The vulnerability of the Server Key Distribution service in the Windows operating system is related to errors in the certificate validation process. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...

Remcos RAT Spreading Through Adult Games in New Attack Wave

The remote access trojan RAT known as Remcos RAT has been found being propagated via webhards by disguising it as adult-themed games in South Korea. WebHard, short for web hard drive, is a popular online file storage system used to upload, download, and share files in the country. While webhards...

RHEL 8 : krb5 (RHSA-2024:0252)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0252 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending...

AlmaLinux 8 : idm:DL1 (ALSA-2024:0143)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:0143 advisory. Kerberos: delegation constrain bypass in S4U2Proxy CVE-2020-17049 ipa: Invalid CSRF protection CVE-2023-5455 Tenable has extracted the preceding descripti...

Rocky Linux 8 : idm:DL1 (RLSA-2024:0143)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0143 advisory. - A security feature bypass vulnerability exists in the way Key Distribution Center KDC determines if a service ticket can be used for delegation via...

Atomic Stealer rings in the new year with updated version

Last year, we documented malware distribution campaigns both via malvertising and compromised sites delivering Atomic Stealer AMOS onto Mac users. This stealer has proven to be quite popular in the criminal underground and its developers have been adding new features to justify its hefty...

Kerberos: delegation constrain bypass in S4U2Proxy

It was found that the Kerberos Key Distribution Center KDC delegation feature, Service for User S4U, did not sufficiently protect the tickets it's providing from tempering. A malicious, authenticated service principal allowed to delegate could use this flaw to impersonate a non-forwardable user...

CentOS 8 : idm:DL1 (CESA-2024:0143)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2024:0143 advisory. - A security feature bypass vulnerability exists in the way Key Distribution Center KDC determines if a service ticket can be used for delegation via...

CVE-2024-21316

Windows Server Key Distribution Service Security Feature Bypass...

CVE-2024-21316

Windows Server Key Distribution Service Security Feature Bypass...

Security feature bypass

Windows Server Key Distribution Service Security Feature Bypass...

CVE-2024-21316

CVE-2024-21316 is a Windows Server vulnerability described as a Key Distribution Service Security Feature Bypass. Documents confirm the issue affects Windows Server/KDS handling and carry a CVSS v3.1 base score of 6.1 (Network, Low attack complexity, High privileges required, User interaction req...

CVE-2024-21316 Windows Server Key Distribution Service Security Feature Bypass

...

CVE-2024-21316 Windows Server Key Distribution Service Security Feature Bypass

...

January 9, 2024—KB5034129 (OS Build 20348.2227)

January 9, 2024—KB5034129 OS Build 20348.2227 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when...