PT-2024-35411 · Sonos · Sonos Era 100

Name of the Vulnerable Software and Affected Versions: Sonos Era 100 affected versions not specified Description: This issue allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos Era 100 smart speakers. The specific flaw exists within the handling ...

kernel: use-after-free caused by invalid pointer hostname in fs/cifs/connect.c

A use-after-free flaw was found in reconnsetipaddrfromhostname in fs/cifs/connect.c in the Linux kernel. The issue occurs when it forgets to set the free pointer server-hostname to NULL, leading to an invalid pointer request...

OESA-2023-1889 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A use-after-free flaw was found in setupasyncwork in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. This issue could allow an attacker to crash the system by accessing freed work.CVE-2023-119...

Ubuntu: Security Advisory (USN-6502-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6461-1: Linux kernel (OEM) vulnerabilities

Yu Hao discovered that the UBI driver in the Linux kernel did not properly check for MTD with zero erasesize during device attachment. A local privileged attacker could use this to cause a denial of service system crash. CVE-2023-31085 Marek Marczykowski-Górecki discovered that the Xen event...

Microsoft Windows SMB Server 安全漏洞

Microsoft Windows SMB Server is a network file sharing protocol from Microsoft Corporation USA. It allows applications on a computer to read and write files and request services from server programs on the computer network.A remote code execution vulnerability exists in Microsoft Windows SMB, whi...

The vulnerability in the implementation of the Windows SMB network protocol of the Microsoft operating system allows a perpetrator to disclose protected information.

The vulnerability of the Windows SMB network protocol implementation in Microsoft Windows is related to information disclosure. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of the SMB protocol implementation within the in-core CIFS/SMB3-server ksmbd server for Linux operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the SMB protocol implementation within the in-core CIFS/SMB3 server ksmbd server for Linux operating systems is related to the transmission of data in an open manner when the SMB2GLOBALCAPENCRYPTION flag is used. Exploiting this vulnerability can allow a remote attacker to ga...

ksmbd 安全漏洞

ksmbd is an open source kernel CIFS/SMB3 server created by Namjae Jeon for the Linux kernel. It is an implementation of the SMB/CIFS protocol in kernel space for sharing files and IPC services over a network. A security vulnerability exists in ksmbd server 3.4.2 and earlier versions, which result...

Apple macOS SMB server lock request infinite loop

Summary A resource exhaustion vulnerability exists in the SMB Server on Apple macOS 11.2. A specially crafted SMB packet can trigger an infinite loop which leads to maximum CPU utilization and denial of service. This vulnerability can be triggered by sending a malicious packet to the vulnerable...

Microsoft Server Message Block RCE Vulnerability

Microsoft has released a security advisory to address a remote code execution vulnerability CVE-2020-0796 in Microsoft Server Message Block 3.1.1 SMBv3. A remote attacker can exploit this vulnerability to take control of an affected system. SMB is a network file-sharing protocol that allows clien...

kernel: use-after-free information leak in SMB2_read

An issue was discovered in the Linux kernel's implementation of the CIFS protocol. The SMB2read function has a possible use-after-free when CIFS function tracing is enabled. While data is used after being freed, it is has not been determined how it could be used for privilege escalation...

Protect

Server Message Block SMB 1.0 - a legacy file and print sharing protocol - has been deprecated by Microsoft due to multiple weaknesses remote code execution, downgrade, man-in-the-middle, collision and pre-image attack...

How to Exploit BitTorrent for Large-Scale DoS Attacks

A flaw discovered in several widely used BitTorrent applications, including uTorrent, Vuze and Mainline, could be used to carry out a devastating distributed denial of service DDoS attack that makes it very easy for a single undetectable hacker to bring down large sites. A new research by Florian...