Design/Logic Flaw

The Windows Installation component of TIBCO Software Inc.'s TIBCO Messaging - Eclipse Mosquitto Distribution - Bridge - Community Edition and TIBCO Messaging - Eclipse Mosquitto Distribution - Bridge - Enterprise Edition contains a vulnerability that theoretically allows a low privileged attacker...

Design/Logic Flaw

The Windows Installation component of TIBCO Software Inc.'s TIBCO Messaging - Eclipse Mosquitto Distribution - Core - Community Edition and TIBCO Messaging - Eclipse Mosquitto Distribution - Core - Enterprise Edition contains a vulnerability that theoretically allows a low privileged attacker wit...

IcedID Banking Trojan Surges: The New Emotet?

The banking trojan known as IcedID appears to be taking the place of the recently disrupted Emotet trojan, according to researchers. IcedID a.k.a. BokBot, bears similarities to Emotet in that it’s a modular malware that started life as a banking trojan used to steal financial information...

com.github.adrmal:peka-vm-client (=1.0.0), com.github.fmcejudo:quarkus-eureka (>=0.0.1 <=0.0.5) +269 more potentially affected by CVE-2021-20289 via org.jboss.resteasy:resteasy-core (>=4.0.0.Beta6 <=4.5.0.Final)

org.jboss.resteasy:resteasy-core MAVEN version =4.0.0.Beta6, =0.0.1, =0.0.1, =5.6.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.7.4 and more Source cves: CVE-2021-20289 Source advisory: OSV:GHSA-244R-FCJ3-GHJQ...

A deep dive into Saint Bot, a new downloader

This post was authored by Hasherezade with contributions from Hossein Jazi and Erika Noerenberg In late March 2021, Malwarebytes analysts discovered a phishing email with an attached zip file containing unfamiliar malware. Contained within the zip file was a PowerShell script masquerading as a li...

Jetty vulnerable to incorrect handling of invalid large TLS frame, exhausting CPU resources

Impact When using SSL/TLS with Jetty, either with HTTP/1.1, HTTP/2, or WebSocket, the server may receive an invalid large greater than 17408 TLS frame that is incorrectly handled, causing CPU resources to eventually reach 100% usage. Workarounds The problem can be worked around by compiling the...

Debian DSA-4885-1 : netty - security update

Multiple security issues were discovered in Netty, a Java NIO client/server framework, which could result in HTTP request smuggling, denial of service or information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

lastUpdatedDay not initialized

Email address [email protected] Handle gpersoon Eth address gpersoon.eth Vulnerability details The variable lastUpdatedDay in IncentiveDistribution.sol is not properly initialized. This means the function updateDayTotals will end up in a very large loop which will lead to an out of gas error. Eve...

Linux Distribution Coverage Extended Across the VMware Carbon Black Cloud

In 2020, a record 56 new Linux malware families were discovered. We are now seeing this trend continue into the new year with the latest discovery of RedXOR, believed to be formulated by Chinese nation-state actors targeting RedHat Enterprise Linux RHEL. With organizations hyper-accelerating thei...

Debian DSA-4876-1 : thunderbird - security update

Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4876. The text itself ...

EulerOS 2.0 SP5 : openssl111d (EulerOS-SA-2021-1696)

According to the version of the openssl111d packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName...

KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Hard-Coded Credentails / Shell Access

KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Hard-coded Credentials Shell Access Vendor: KZ Broadband Technologies, Ltd. | Jaton Technology, Ltd. Product web page: http://www.kzbtech.com | http://www.jatontec.com | https://www.neotel.mk http://www.jatontec.com/products/show.php?itemid=258...

KZTech / JatonTec / Neotel JT3500V 4G LTE CPE 2.0.1 - Hard coded Credentials Shell Access

Exploit Title: KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Hard coded Credentials Shell Access Exploit Author: LiquidWorm Vendor Homepage: http://www.kzbtech.com http://www.jatontec.com https://www.neotel.mk Vendor: KZ Broadband Technologies, Ltd. | Jaton Technology, Ltd. Product web page:...

KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Hard coded Credentials Shell Access

Exploit Title: KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 - Hard coded Credentials Shell Access Date: 03.02.2021 Exploit Author: LiquidWorm Vendor Homepage: http://www.kzbtech.com http://www.jatontec.com https://www.neotel.mk Vendor: KZ Broadband Technologies, Ltd. | Jaton Technology, Ltd...

[SECURITY] [DSA 4872-1] shibboleth-sp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4872-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 18, 2021 https://www.debian.org/security/faq -...

KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Hard-coded Credentials Shell Access

Summary JT3500V is a most advanced LTE-A Pro CAT12 indoor Wi-Fi & VoIP CPE product specially designed to enable quick and easy LTE fixed data service deployment for residential and SOHO customers. It provides high speed LAN, Wi-Fi and VoIP integrated services to end users who need both bandwidth...

SYS.2.3.A2

Auf Grundlage der Sicherheitsanforderungen und des Einsatzzwecks MUSS ein geeignetes Unix-Derivat bzw. eine geeignete Linux-Distribution ausgewaehlt werden. Es MUSS fuer die geplante Einsatzdauer des Betriebssystems Support verfuegbar sein. Alle benoetigten Anwendungsprogramme SOLLTEN als Teil de...

SYS.2.3.A8

Zur Beschraenkung der Zugriffsrechte von Anwendungen auf Dateien, Geraete und Netze SOLLTE App-Armor oder SELinux eingesetzt werden. Es SOLLTEN die von dem jeweiligen Unix-Derivat bzw. der Linux-Distribution am besten unterstuetzten Loesungen eingesetzt werden. Die notwendigen Anwendungen SOLLTEN...

The vulnerability of the Snort intrusion detection system, related to the unlimited distribution of resources, allows a perpetrator to trigger a service failure.

The vulnerability of the Snort intrusion detection system is related to the unlimited distribution of resources. Exploiting this vulnerability allows a malicious actor to cause service interruptions from a remote location...

SQL Injection Vulnerability in Pinto Distribution Platform of Guangzhou Pinto Internet Co.

Guangzhou Pinto Internet Co., Ltd. is an Internet company invested and held by Pearl River Shipping Enterprises Co. Ltd. A SQL injection vulnerability exists in the Pinto Distribution Platform of Guangzhou Pinto Internet Limited, which can be exploited by attackers to obtain sensitive information...