Trend Micro Apex One 缓冲区错误漏洞

Trend Micro Apex One is an endpoint protection software from Trend Micro. Trend Micro Apex One suffers from a buffer error vulnerability that stems from its Apex One service that allows a local attacker to disclose sensitive information about the installed program via out-of-bounds reads...

The vulnerability of the backup and recovery functions of Microsoft File Systems for the IBM Spectrum Protect Plus data protection software allows a perpetrator to disclose protected information.

The vulnerability of the backup and recovery functions of Microsoft’s file systems in the IBM Spectrum Protect Plus data protection platform is related to an incorrect limitation on the path name to the restricted-access directory. Exploiting this vulnerability could allow a malicious actor to...

Veeam Backup&Replication Path Traversal Vulnerability

Veeam Backup & Replication is a suite of data protection software from the Swiss company Veeam. The software provides backup, replication and recovery for VMware and Hyper-V VMs, physical and cloud environments. A path traversal vulnerability exists in Veeam Backup & Replication 9.5U3, 9.5U4, 10....

Unitrends Backup Elevation of Privilege Vulnerability

Unitrends Backup is a set of data protection software from Unitrends, Inc. in the United States. The software provides data backup, data recovery and deduplication features. An elevation of privilege vulnerability exists in versions prior to Unitrends Backup 10.5.5-2, which can be exploited by an...

Unitrends Backup Remote Code Execution Vulnerability (CNVD-2021-95950)

Unitrends Backup is a set of data protection software from Unitrends, Inc. in the United States. The software provides data backup, data recovery and deduplication features. A remote code execution vulnerability exists in Unitrends Backup versions prior to 10.5.5-2, which can be exploited by an...

The vulnerability of the operating environment of the information protection software “Blockhost-Net” and “Blockhost-Net K” allows attackers to obtain information about user accounts.

The vulnerability of the operating environments of the information protection software “Blockhost-Net” and “Blockhost-Net K” is related to the use of insecure mechanisms for processing authentication data in the memory of the operating system. Exploiting this vulnerability can allow an attacker...

Rising Demand for DDoS Protection Software Market By 2020-2028

Distributed Denial of Service DDoS attack is a malicious form of attack that disrupts the regular network traffic by overwhelming the website with more traffic than the server can handle. The main aim of this kind of cyberattack is to render the website inoperable. Over recent years, these kinds ...

Trend Micro Security 2019 Incomplete SSL Server Authentication Validation Vulnerability

Trend Micro Security 2019 is a suite of computer security protection software from Trend Micro. A security vulnerability exists in the version of Trend Micro Security 2019 v15.0 that can be exploited by an attacker in conjunction with another attack to trick affected clients into downloading a...

IBM Spectrum Protect Input Validation Error Vulnerability

IBM Spectrum Protect formerly known as Tivoli Storage Manager is a suite of data protection platforms from IBM in the United States. The platform provides organizations with a single point of control and management, and supports backup and recovery for virtual, physical and cloud environments of...

D Shield suffers from a webshell bypass vulnerability (CNVD-2020-01624)

D Shield is a proactive defense protection software designed specifically for IIS. D Shield suffers from a webshell bypass vulnerability that can be exploited by attackers to bypass the interception of submission data...

D Shield suffers from a webshell bypass vulnerability (CNVD-2019-47653)

D-Shield is a proactive defense software designed specifically for IIS to prevent websites and servers from being compromised by internal and external protection. D-Shield suffers from a webshell bypass vulnerability. An attacker can bypass the D-Shield one-sentence Trojan horse and execute...

Palo Alto Networks Traps Code Injection Vulnerability

Palo Alto Networks Traps is a suite of endpoint security protection software from Palo Alto Networks, USA. A code injection vulnerability exists in Palo Alto Networks Traps 5.0.5 and prior versions. The vulnerability stems from a network system or product not properly filtering specific elements ...

EMC AppSync Server Hardcoded Password Vulnerability

EMC AppSync is a suite of data protection software from EMC Corporation. The software provides simple, self-service, service-level agreement SLA-driven data protection and storage management for EMC VNX and EMC VMAX storage.EMC AppSync Server is its server version. A hard-coded password...

CVE-2017-12821

Memory corruption in Gemalto's HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE version 7.55 might cause remote code execution...

Microsoft Office CVE-2017-8631 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...

[SYSS-2015-014] Panda Global Protection 2015 - Authentication Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-014 Product: Panda Global Protection 2015 Vendor: Panda Security Affected Versions: 15.1.0 Tested Versions: 15.1.0 Vulnerability Type: Authentication Bypass Using an Alternate Path or Channel CWE-288 Risk Level: Medium Solutio...

AppArmor protection bypass

It's possible to bypass protection...

EMC NetWorker Installed

EMC NetWorker formerly Legato NetWorker, a suite of enterprise level data protection software, is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62945; scriptversion"1.14"; scriptsetattributeattribute:"pluginmodificationdate",...

Microsoft Excel Workspace Designation Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file .xls. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...

Symantec On-Demand Agent / Symantec On-Demand Protection protection bypass

It's possible to access encrypted data...