Mozilla Thunderbird 数据伪造问题漏洞

Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The program supports IMAP, POP mail protocols and HTML mail format. A denial of service vulnerability exists in Mozilla Thunderbird, which can be exploited b...

CVE-2020-7316

Unquoted service path vulnerability in McAfee File and Removable Media Protection FRP prior to 5.3.0 allows local users to execute arbitrary code, with higher privileges, via execution and from a compromised folder. This issue may result in files not being encrypted when a policy is triggered...

The vulnerability of the implementation of TLS and SSL software from Mbed TLS arises from the lack of encryption measures for protected data. This allows attackers to compromise the RSA private key.

The vulnerability of the implementation of TLS and SSL software developed by Mbed TLS is related to the failure to encrypt protected data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain the RSA secret key...

Fujitsu Wireless Keyboard Set LX390 Unauthorized Access Vulnerability

The Fujitsu Wireless Keyboard Set LX390 is a wireless keyboard from Fujitsu Japan. A security vulnerability exists in the Fujitsu Wireless Keyboard Set LX390, which is caused due to a failure of the program to properly encrypt 2.4 GHz communications. The vulnerability can be exploited by an...

Hardware encryption doesn't work on tape operations after update to 9.5 Patch 4b

Challenge After you update to patch 4b 9.5.4.2866, you may face the following encryption-related issues during the backup and restore procedures. Restore from tape backups made in the previous product versions with enabled hardware encryption may fail with the following error message: 11.07.2019...

CVE-2018-1683

IBM WebSphere Application Server Liberty could allow a remote attacker to obtain sensitive information, caused by the failure to encrypt ORB communication. IBM X-Force ID: 145455...

Samsung Display Solutions App for Android Man-in-the-Middle Attack Vulnerability

Samsung Display Solutions App for Android is an Android-based mobile application developed by Samsung South Korea for viewing Samsung display devices. A security vulnerability exists in versions of the Samsung Display Solutions App for Android prior to version 3.02, which arises from the program'...

CVE-2017-10856

SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device's encrypted communications via a specially crafted packet...

CVE-2017-9632

A Missing Encryption of Sensitive Data issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, LaserWash AutoXpress and AutoExpress Plus, all versions, LaserJet, all versions, ProTouch Tandem, all...

CVE-2017-7229

PGP/MIME encrypted messages injected into a Vaultive O365 before 4.5.21 frontend via IMAP or SMTP have their Content-Type changed from 'Content-Type: multipart/encrypted; protocol="application/pgp-encrypted"; boundary="abc123abc123"' to 'Content-Type: text/plain' - this results in the encrypted...

Attacking ICS Systems 'Like Hacking in the 1980s'

PUNTA CANA–Here’s how nuts the world of ICS security is: Jonathan Pollet, a security consultant who specializes in ICS systems, was at a Texas amusement park recently and the ride he was waiting for was malfunctioning. The operator told him the ride used a Siemens PLC as part of the control syste...

CVE-2002-1653

Farm9 Cryptcat, when started in server mode with the -e option, does not enable encryption, which allows clients to communicate without encryption despite intended configuration, and may allow remote attackers to sniff sensitive information...

[CryptNET Advisory] pgp4pine-1.75-6 - expired public keys

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------------ CryptNET Security Advisory http://www.cryptnet.net/ Advisory Type: Privacy - Programmatic Error Synopsis: pgp4pine may fail to identify expired public keys Issue Date:...

Exploit of encryption failure vulnerability

More info at https://medium.com/@taylorotwell/laravel-security-release-5-6-15-and-5-5-40-56f1257933a0...

Exploit of encryption failure vulnerability

More info at https://medium.com/@taylorotwell/laravel-security-release-5-6-15-and-5-5-40-56f1257933a0...