EUVD-2017-16430

Malware in sbrugna...

EUVD-2011-0216

Malware in sbrugna...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypto transactions. The injected malicious code activates a hook whenever a Web3 wallet is present...

CVE-2020-35584

In Solstice Pod before 3.0.3, the web services allow users to connect to them over unencrypted channels via the Browser Look-in feature. An attacker suitably positioned to view a legitimate user's network traffic could record and monitor their interactions with the web services and obtain any...

RLSA-2024:2211 Moderate: tcpdump security update

The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces. Security Fixes: tcpslice: use-after-free in extractslice CVE-2021-41043 For more details about th...

tcpdump security update

An update is available for tcpdump. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The tcpdump packages contain the tcpdump utility for monitoring network...

ntopng 安全漏洞

ntopng is a web-based network traffic monitoring application from ntop open source. A security vulnerability exists in ntopng version 6.2, which stems from a heap buffer overflow vulnerability in the Flow::dissectMDNS function...

TP-LINK Kasa KP125M和TP-LINK Tapo P125M 安全漏洞

TP-LINK Kasa KP125M and TP-LINK Tapo P125M are both a smart plug from China P&L TP-LINK. A security vulnerability exists in TP-LINK Kasa KP125M v1.0.0 and TP-LINK Tapo P125M v1.0.0, which stems from the presence of an information disclosure vulnerability that can be exploited by an attacker to...

Exploit for Command Injection in Dlink Dns-320L_Firmware

CVE-2024-3273 - D-Link Remote Code Execution RCE Exploit...

Moderate: Red Hat Security Advisory: tcpdump security update

An update for tcpdump is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

RCE to Sliver: IR Tales from the Field

Rapid7 Incident Response consultants Noah Hemker, Tyler Starks, and malware analyst Tom Elkins contributed analysis and insight to this blog. Rapid7 Incident Response was engaged to investigate an incident involving unauthorized access to two publicly-facing Confluence servers that were the sourc...

A proxyjacking campaign is looking for vulnerable SSH servers

A researcher at Akamai has posted a blog about a worrying new trend--proxyjacking--where criminals sell your bandwidth to a third-party proxy service. To understand how proxyjacking works, well need to explain a few things. There are several legitimate services that pay users to share their surpl...

CVE-2023-1899

Atlas Copco Power Focus 6000 web server is not a secure connection by default, which could allow an attacker to gain sensitive information by monitoring network traffic between user and controller...

Atlas Copco Power Focus 安全漏洞

Atlas Copco Power Focus is a universal tightening system from Atlas Copco Sweden that connects to a wide range of Atlas Copco assembly tools to provide you with a full platform assembly solution. A security vulnerability exists in the Atlas Copco Power Focus 6000 that stems from the server making...

Fedora: Security Advisory for tcpdump (FEDORA-2023-a66bd67e34)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Command Execution Vulnerability in Cacti

Cacti is a set of network traffic monitoring based on PHP, MySQL, SNMP and RRDTool development of graphical analysis tools . Cacti has a command execution vulnerability that can be exploited by an attacker to execute arbitrary commands...

CVE-2021-23985

If an attacker is able to alter specific about:config values for example malware running on the user's computer, the Devtools remote debugging feature could have been enabled in a way that was unnoticable to the user. This would have allowed a remote attacker able to make a direct network...

Moderate: Red Hat Security Advisory: tcpdump security, bug fix, and enhancement update

An update for tcpdump is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

RLSA-2020:4760 Moderate: tcpdump security, bug fix, and enhancement update

The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces. The following packages have been upgraded to a later upstream version: tcpdump 4.9.3. BZ1804063...

Microsoft Office CVE-2020-0652 Memory Corruption Vulnerability

Description Microsoft Office is prone to a memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...