126 matches found
DEBIAN-CVE-2018-16328
In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c...
Microsoft Windows: Audit Special Logon
Audit Special Logon determines whether the operating system generates audit events under special sign on or log on circumstances. This subcategory allows you to audit events generated by special logons such as the following: - The use of a special logon, which is a logon that has...
librelp security update
CentOS Errata and Security Advisory CESA-2018:1223 An update for librelp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Windows Packer Project for Defenders: DARKSURGEON
Darksurgeon is a Windows packer project to empower incident response, digital forensics, malware analysis, and network defense. Darksurgeon has three stated goals: Accelerate incident response, digital forensics, malware analysis, and network defense with a preconfigured Windows 10 environment...
Binary Whitelisting Blacklisting System for macOS: Santa
Santa is a binary whitelisting/blacklisting system for macOS. It consists of a kernel extension that monitors for executions, a userland daemon that makes execution decisions based on the contents of a SQLite database, a GUI agent that notifies the user in case of a block decision and a...
Microsoft Windows 10: Deny log on as a service
This policy setting determines which users are prevented from logging on to the service applications on a device. A service is an application type that runs in the system background without a user interface. It provides core operating system features, such as web serving, event logging, file...
[SECURITY] Fedora 27 Update: librelp-1.2.15-1.fc27
Librelp is an easy to use library for the RELP protocol. RELP stands for Reliable Event Logging Protocol is a general-purpose, extensible logging protocol...
[SECURITY] Fedora 26 Update: librelp-1.2.15-1.fc26
Librelp is an easy to use library for the RELP protocol. RELP stands for Reliable Event Logging Protocol is a general-purpose, extensible logging protocol...
CVE-2017-9278 Avoid password disclosure via EBS event logging in the iManager Oracle driver
The NetIQ Identity Manager Oracle EBS driver before 4.0.2.0 sent EBS logs containing the driver authentication password, potentially disclosing this to attackers able to read the EBS tables...
CVE-2017-1000157
Mahara 15.04 before 15.04.13 and 16.04 before 16.04.7 and 16.10 before 16.10.4 and 17.04 before 17.04.2 are vulnerable to recording plain text passwords in the eventlog table during the user creation process if full event logging was turned on...
Code injection
Mahara 15.04 before 15.04.13 and 16.04 before 16.04.7 and 16.10 before 16.10.4 and 17.04 before 17.04.2 are vulnerable to recording plain text passwords in the eventlog table during the user creation process if full event logging was turned on...
CVE-2017-1000157
Summary: Mahara is affected by a vulnerability where passwords could be recorded in plaintext in the event_log table during user creation if full event logging is enabled. Affected versions: 15.04 prior to 15.04.13, 16.04 prior to 16.04.7, 16.10 prior to 16.10.4, and 17.04 prior to 17.04.2. Root ...
August 16, 2017—KB4034661 (OS Build 14393.1613)
August 16, 2017—KB4034661 OS Build 14393.1613 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: This package contains d3dcompiler47.dll; for more information, read the blog post,HLSL, FXC, a...
How to enable Syslog over TCP in ADC
This article describes how to enable syslog over TCP in ADC. Background Syslog is the standard used for logging information. Syslog enables isolation of the system that generates information and the system that stores the information. Syslog usage is quite common in Network implementations today...
CVE-2013-6829
creationtimestamp| type| source ---|---|--- 2013-11-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/29734 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/pineapptestliconnexec.rb 2025-02-06 03:13:41+00:00|...
CVE-2001-0471
CVE-2001-0471 applies to SSH1 (SSH server 1.2.30 or earlier). The issue is that SSH1 SSH Daemon does not log repeated login attempts, which could allow remote attackers to carry out brute-force-style account compromises without detection. Multiple connected sources (NVD/Nessus/OpenVAS entries) co...
hpux.10.20.644.txt
Problem: on HP-UX 10.20 you can change any file on the root partition to mode 644: $ uname -sr HP-UX B.10.20 $ cd /etc/opt/resmon/log $ mv registrar.log registrar.log.orig $ ls -l /.shhistory -rw------- 1 root sys 3316 Sep 20 15:22 /.shhistory $ ln /.shhistory registrar.log $ nc hpux.example.com...
CVE-1999-0575
A Windows NT system's user audit policy does not log an event success or failure, e.g. for Logon and Logoff, File and Object Access, Use of User Rights, User and Group Management, Security Policy Changes, Restart, Shutdown, and System, and Process Tracking...
CVE-1999-0579
A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys...
CVE-1999-0577
The CVE-1999-0577 issue affects Windows NT with the file audit policy failing to log events for non-critical files/directories. Affected component: Windows NT file audit policy (logging of success/failure). Root cause: audit policy does not log certain accesses, per multiple sources (NVD/Red Hat/...