EUVD-2014-4783

Malware in sbrugna...

The vulnerability of the TFTP microprogramming software used in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 network devices allows a intruder to cause service interruptions.

The vulnerability of the TFTP microprogramming software used in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 network devices is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability of the DCHP server configuration of Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 network devices allows a hacker to cause a service failure.

The vulnerability of the DCHP configuration of Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 networking devices relates to insufficient cleaning of special elements in the output data used by the incoming component. Exploiting this vulnerability can allow a malicious actor to trigger...

The vulnerability of the implementation of the microprogramming software update mechanism for Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 devices allows a hacker to increase their privileges.

The vulnerability of the mechanism for updating microprogrammable software in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 devices is related to deficiencies in input data validation. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...

The vulnerability of the NSDP protocol implementation in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 network devices allows a hacker to bypass access controls and gain full control over the device.

The vulnerability of the NSDP protocol implementation in Netgear ProSafe Plus JGS516PE and ProSAFE Plus GS116Ev2 networking devices is related to authentication process errors. Exploiting this vulnerability allows an attacker to bypass access controls and gain full control over the device...

New Mirai Variant and ZHtrap Botnet Malware Emerge in the Wild

Cybersecurity researchers on Monday disclosed a new wave of ongoing attacks exploiting multiple vulnerabilities to deploy new Mirai variants on internet connected devices. "Upon successful exploitation, the attackers try to download a malicious shell script, which contains further infection...

NETGEAR ProSAFE Plus Configuration Utility vulnerable to improper access control

Overview ProSAFE Plus Configuration Utility provided by NETGEAR is a Windows application to configure and manage NETGEAR's ProSAFE Plus and Click Switches. An operator uses the utility to login and configure NETGEAR switches. When the utility is invoked, it starts listening on a certain port for...