1156 matches found
Kernel-Mode Rootkit Hunter: Tyton
Loadable kernel modules, LKMs for short, are an integral companion to the Linux kernel. Typically, LKMs are used to add support for new hardware as device drivers or file systems or add additional system calls. Without LKMs, an operating system would have to include all possible anticipated...
The vulnerability of the WLS Core Components of the Oracle WebLogic Server application server allows a hacker to execute arbitrary code.
The vulnerability of the WLS Core Components component of the Oracle WebLogic Server application server is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using the T3 network protocol from a remote location...
[SECURITY] [DSA 4315-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4315-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 12, 2018 https://www.debian.org/security/faq -...
Samsung SCX-6545X Sensitive Authentication Credentials Disclosure Vulnerability
The Samsung SCX-6545X is a multifunctional printing device. A security vulnerability exists in the Samsung SCX-6545X, which allows remote attackers to exploit the vulnerability to submit a special SNMP request to obtain sensitive information...
PT-2018-2078 · Microsoft · Windows 10 Servers +6
Name of the Vulnerable Software and Affected Versions: Windows Server 2012 R2 Windows RT 8.1 Windows Server 2016 Windows 8.1 Windows 10 Windows 10 Servers Description: An information disclosure issue exists due to the improper handling of fragmented IP packets by the Windows TCP/IP stack. This ca...
CVE-2018-0455
A vulnerability in the Server Message Block Version 2 SMBv2 and Version 3 SMBv3 protocol implementation for the Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause the device to run low on system memory, possibly preventing the device from forwarding traffic. ...
Epee Levin Packet Deserialization Code Execution Vulnerability
Summary An exploitable code execution vulnerability exists in the Levin deserialization functionality of the epee library. A specially crafted network packet can cause a logic flaw, resulting in code execution. An attacker can send a packet to trigger this vulnerability. Tested Versions Monero...
SEIG SCADA System 9 - Remote Code Execution
SEIG SCADA System 9 - Remote Code Execution Title: SEIG SCADA SYSTEM 9 - Remote Code Execution Author: Alejandro Parodi Date: 2018-08-17 Vendor Homepage: https://www.schneider-electric.com Software Link:...
Polymorph - A Real-Time Network Packet Manipulation Framework With Support For Almost All Existing Protocols
Polymorph is a framework written in Python 3 that allows the modification of network packets in real time, providing maximum control to the user over the contents of the packet. This framework is intended to provide an effective solution for real-time modification of network packets that implemen...
The vulnerability of the InnoDB component of the MySQL database management system allows a hacker to gain unauthorized access to protected data or cause service failures.
The vulnerability of the InnoDB component of the MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected data and cause network protocol-related service failure...
A Totally Tubular Treatise on TRITON and TriStation
Introduction In December 2017, FireEye's Mandiant discussed an incident response involving the TRITON framework. The TRITON attack and many of the publicly discussed ICS intrusions involved routine techniques where the threat actors used only what is necessary to succeed in their mission. For bot...
The vulnerability of the Junos operating system, related to packet processing errors in CLNP, allows a attacker to execute arbitrary code or trigger a kernel error.
The vulnerability of the Junos operating system is related to errors in packet processing within the CLNP protocol. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or trigger a kernel error by using specially crafted CLNP packets...
CVE-2017-14480
In the MMM::Agent::Helpers::Network::clearip function in MySQL Multi-Master Replication Manager MMM mmmagentd 2.2.1 for FreeBSD, a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\agentd process. An...
CVE-2017-14479
In the MMM::Agent::Helpers::Network::clearip function in MySQL Multi-Master Replication Manager MMM mmmagentd 2.2.1 for Solaris, a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\agentd process. An...
Juniper Junos Connectionless Network Protocol (CLNP) Packet Handling Unspecified Remote Code Execution / DoS (JSA10844)
According to its self-reported version number, the remote Juniper Junos device is affected by an unspecified flaw that is triggered when handling Connectionless Network Protocol CLNP packets. This allows a remote attacker to crash a device or execute arbitrary code. Note: This issue is only...
[SECURITY] [DLA 1353-1] wireshark security update
Package : wireshark Version : 1.12.1+g01b65bf-4+deb8u6deb7u10 CVE ID : CVE-2018-7322 CVE-2018-7323 CVE-2018-7324 CVE-2018-7332 CVE-2018-7334 CVE-2018-7335 CVE-2018-7336 CVE-2018-7337 CVE-2018-7417 CVE-2018-7418 CVE-2018-7419 CVE-2018-7420 It was discovered that wireshark, a network protocol...
The vulnerability of the Kernel component of the Solaris operating system, which allows a hacker to trigger a service failure
The vulnerability of the Kernel component of the Solaris operating system is related to improperly implemented security checks for standard elements. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures using the ICMP protocol...
tcpdump: Buffer over-read in print-isoclns.c:isoclns_print() in ISO CLNS parser
The ISO CLNS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isoclnsprint...
CyberArk Password Vault < 9.7 / < 10 - Memory Disclosure
Advisory: CyberArk Password Vault Memory Disclosure Data in the CyberArk Password Vault may be accessed through a proprietary network protocol. While answering to a client's logon request, the vault discloses around 50 bytes of its memory to the client. Details ======= Product: CyberArk Password...
CyberArk Password Vault < 9.7 / < 10 - Memory Disclosure Vulnerability
Exploit for linux platform in category dos / poc Advisory: CyberArk Password Vault Memory Disclosure Data in the CyberArk Password Vault may be accessed through a proprietary network protocol. While answering to a client's logon request, the vault discloses around 50 bytes of its memory to the...