Malicious code in android-mobile-agent (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 16297b3163e4c4992c5f935c4d595a2de48dfbe42ff4bb55fb7c15d1f7e6dd6b The OpenSSF Package Analysis project identified 'android-mobile-agent' @ 99.0.9 npm as malicious. It is considered malicious because: - The...

MAL-2025-41279 Malicious code in android-mobile-agent (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 16297b3163e4c4992c5f935c4d595a2de48dfbe42ff4bb55fb7c15d1f7e6dd6b The OpenSSF Package Analysis project identified 'android-mobile-agent' @ 99.0.9 npm as malicious. It is considered malicious because: - The...

Infoblox BloxOne 安全漏洞

Infoblox BloxOne is a lightweight mobile agent from Infoblox USA. redirects DNS traffic from remote devices to the BloxOne Threat Defense Cloud. A security vulnerability exists in Infoblox BloxOne version v2.4 that stems from flawed business logic...

Arbitrary File Read Vulnerability in MAS Mobile Proxy Server

Mobile Agent Server MAS is the abbreviation of Mobile Agent Server, is to assist the enterprise original business system to realize the wireless application of the access tool to achieve MAS access to the enterprise original business system can be convenient to realize the wireless application,...

SA165: NTP Vulnerabilities February 2018

SUMMARY Symantec Network Protection products using affected versions of the NTP reference implementation from ntp.org are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to execute arbitrary code, modify the target's system time, prevent the target fro...

SA163: OpenSSH Vulnerability October 2017

SUMMARY Symantec Network Protection products using affected versions of OpenSSH are susceptible to a security vulnerability. A remote attacker with read-only access to an SFTP server can create a large number of zero-length files and deplete the target's hard disk space. AFFECTED PRODUCTS The...

SA161: Local Information Disclosure Due to Meltdown and Spectre Attacks

SUMMARY Symantec Network Protection products, which run on an affected CPU chipset and execute arbitrary code from external sources, are susceptible to several information disclosure vulnerabilities aka Meltdown and Spectre attacks. A remote attacker, with the ability to execute arbitrary code...

SA157: OpenSSL Vulnerabilities 28-Aug-2017 and 2-Nov-2017

SUMMARY Symantec Network Protection products using affected versions of OpenSSL are susceptible to several vulnerabilities. A remote attacker can send a crafted X.509 certificate to cause unspecified impact. They can exploit, under certain circumstances, a computational flaw in the Montgomery...

SA141 : OpenSSL Vulnerabilities 26-Jan-2017

SUMMARY Symantec Network Protection products using affected versions of OpenSSL are susceptible to several vulnerabilities. A remote attacker can exploit these vulnerabilities to cause denial of service and obtain private key information. AFFECTED PRODUCTS The following products are vulnerable:...

SA123 : OpenSSL Vulnerabilities 3-May-2016

SUMMARY Blue Coat products using affected versions of OpenSSL are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to intercept and decrypt TLS sessions, obtain arbitrary data from the target's memory stack, or execute arbitrary code through buffer...

SA117 : OpenSSL Vulnerabilities 1-Mar-2016

SUMMARY Blue Coat products using affected versions of OpenSSL are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to decrypt live and recorded SSL sessions, cause denial of service through application crashes, and possibly execute arbitrary code. A...

SA111 : OpenSSL Vulnerabilities 28-Jan-2016

SUMMARY Blue Coat products using affected versions of OpenSSL 1.0.2, 1.0.1, and 0.9.8 are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to obtain ephemeral Diffie-Hellman DHE private key information and perform man-in-the-middle attacks on SSL/TLS...