Bettercap - New MITM Framework

Document Title: =============== Bettercap - New MITM Framework References: =========== https://www.vulnerability-lab.com/getcontent.php?id=1565 Download: https://www.vulnerability-lab.com/resources/documents/1565.pdf Release Date: ============= 2015-08-09 Vulnerability Laboratory ID VL-ID:...

Bettercap - New MITM Framework

Document Title: =============== Bettercap - New MITM Framework References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1565 Download: http://www.vulnerability-lab.com/resources/documents/1565.pdf Release Date: ============= 2015-08-09 Vulnerability Laboratory ID VL-ID:...

kernel: execution in the early microcode loader

A stack-based buffer overflow flaw was found in the Linux kernel's early load microcode functionality. On a system with UEFI Secure Boot enabled, a local, privileged user could use this flaw to increase their privileges to the kernel ring0 level, bypassing intended restrictions in place...

Multiple Dell devices vulnerable

Dell Latitude, etc. are the products of the United States Dell Dell company.Dell Latitude and OptiPlex are notebook product models; Precision Mobile Workstation is a precision mobile workstation; Precision Workstation CS is a set of mobile workstation Client; BIOS Basic Input-Output System is a s...

Cisco Firepower 9000 Series Device Information Disclosure Vulnerability

Cisco Firepower Extensible Operating System on Firepower 9000 device is a set of operating systems from Cisco that run on 9000 series firewall devices. A security vulnerability exists in the Cisco Firepower Extensible Operating System version 1.1 1.86 on the Cisco Firepower 9000 device, which...

CVE-2015-4287

CVE-2015-4287 affects Cisco Firepower Extensible Operating System 1.1(1.86) on Firepower 9000 devices. The issue arises from improper authentication validation in the device’s web interface, allowing remote attackers to bypass access restrictions and obtain sensitive device information by visitin...

DEBIAN-CVE-2015-1283

Multiple integer overflows in the XMLGetBuffer function in Expat through 2.1.0, as used in Google Chrome before 44.0.2403.89 and other products, allow remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted XML data, a related...

BetterCap - A complete, modular, portable and easily extensible MITM framework

BetterCap is an attempt to create a complete, modular, portable and easily extensible MITM framework with every kind of features could be needed while performing a man in the middle attack. It's currently able to sniff and print from the network the following informations: URLs being visited. HTT...

Z-BLOG Blind-XXE Arbitrary File Read Vulnerability

Z-Blog is developed by RainbowSoft Studio a Blog program based on the Asp platform . Z-Blog has an arbitrary file read vulnerability. /zbsystem/xml-rpc/index.php directly call simpleloadstring parsing XML, resulting in XML entity injection, an attacker can read system files using the vulnerabilit...

SAP Mobile Platform XML External Entity Information Disclosure Vulnerability

SAP Mobile Platform SMP is a mobile application development platform from SAP. The platform is used to build packaged and customized development applications for any device. A security vulnerability exists in the SAP Mobile Platform XML external entity. This vulnerability could be exploited by an...

IBM Unified Extensible Firmware Interface Denial of Service Vulnerability

The IBM Unified Extensible Firmware Interface is a standard detailing type interfaces for operating systems to automatically load from a pre-booted operating environment, to an operating system that simplifies the boot process and saves time. A security vulnerability exists in IBM Unified...

Drupal eXtensible Catalog Drupal Toolkit Module Cross-Site Request Forgery Vulnerability

Drupal is a free, open source content management system developed in PHP. eXtensible Catalog XC Drupal Toolkit is a new generation of discovery services XC Drupal Toolkit module . A cross-site request forgery vulnerability exists in the Drupal eXtensible Catalog Drupal Toolkit module that allows...

DEBIAN-CVE-2015-4143

The EAP-pwd server and peer implementation in hostapd and wpasupplicant 1.0 through 2.4 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 Commit or 2 Confirm message payload...

UBUNTU-CVE-2015-4171

strongSwan 4.3.0 through 5.x before 5.3.2 and strongSwan VPN Client before 1.4.6, when using EAP or pre-shared keys for authenticating an IKEv2 connection, does not enforce server authentication restrictions until the entire authentication process is complete, which allows remote servers to obtai...

Apple Mac computer firmware 0day EFI rootkit vulnerability

MAC is apple's self-developed operating system, now commonly used operating systems are windows, linux, mac. MacBook Pro Retina, MacBook Pro and MacBook Air computers may have a security vulnerability in the EFI firmware update, the attacker does not need to physically touch the target machine, c...

UBUNTU-CVE-2015-4145

The EAP-pwd server and peer implementation in hostapd and wpasupplicant 1.0 through 2.4 does not validate a fragment is already being processed, which allows remote attackers to cause a denial of service memory leak via a crafted message...

Apache Jackrabbit XML External Entity Input Vulnerability

Apache Jackrabbit is a full compliance with the Java API version of the content storage specification JCR implementation . An XML external entity injection vulnerability exists in Apache Jackrabbit, which allows remote attackers to exploit the vulnerability by submitting a special XML request to...

IBM License Metric Tool Directory Traversal Vulnerability

The IBM License Metric Tool is a free tool from IBM USA that helps IBM Passport Advantage Software Upgrade and Support Services customers determine their Processor Value Unit PVU license requirements. A directory traversal vulnerability exists in the IBM License Metric Tool and Tivoli Asset...

XStream: remote code execution due to insecure XML deserialization

It was found that XStream could deserialize arbitrary user-supplied XML content, representing objects of any type. A remote attacker able to pass XML to XStream could use this flaw to perform a variety of attacks, including remote code execution in the context of the server running the XStream...

Tomcat/JBossWeb: XML parser hijack by malicious web application

It was found that, in certain circumstances, it was possible for a malicious web application to replace the XML parsers used by JBoss Web / Apache Tomcat to process XSLTs for the default servlet, JSP documents, tag library descriptors TLDs, and tag plug-in configuration files. The injected XML...