Lucene search
K

67 matches found

Trellix
Trellix
added 2020/02/12 12:0 a.m.14 views

CSI Evidence Indicators for Targeted Ransomware Attacks

ARCHIVED STORY CSI: Evidence Indicators for Targeted Ransomware Attacks – Part I By Trellix · Febraury 12, 2020 For many years now I have been working and teaching in the field of digital forensics, malware analysis and threat intelligence. During one of the classes we always talk about Lockard’s...

0.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2020/02/11 12:0 a.m.42 views

CVE-2020-0655

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an authenticated attacker abuses clipboard redirection, aka ‘Remote Desktop Services Remote Code Execution Vulnerability’. Recent assessments: zeroSteiner at May 14, 2020 3:27...

8.5CVSS8.8AI score0.70966EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for freerdp (EulerOS-SA-2019-2455)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.7AI score0.04327EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2019/12/19 12:0 a.m.35 views

EulerOS 2.0 SP3 : freerdp (EulerOS-SA-2019-2580)

According to the versions of the freerdp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An exploitable code execution vulnerability exists in the RDP receive functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted serve...

8.8CVSS7.4AI score0.07531EPSS
Exploits7References9
Microsoft CVE
Microsoft CVE
added 2019/08/13 7:0 a.m.35 views

Remote Desktop Protocol Server Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the system. To exploit this vulnerability, an attacker would have to...

7.5CVSS3.6AI score0.07603EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/08/13 12:0 a.m.55 views

KB4512508: Windows 10 Version 1903 August 2019 Security Update

The remote Windows host is missing security update 4512508. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in the way that the Windows kernel image handles objects in memory. An attacker who successfully exploited the vulnerability could...

10CVSS8.3AI score0.83433EPSS
Exploits7References76
Veracode
Veracode
added 2019/08/08 12:7 a.m.26 views

Out-of-bounds Read

freerdp is vulnerable to out-of-bounds read. An unknown vulnerability allows the RDP server to read the client's memory and potentially execute arbitrary code on the victim's system...

6.5CVSS5AI score0.02666EPSS
Exploits1References12Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/06/27 12:0 a.m.43 views

EulerOS 2.0 SP8 : freerdp (EulerOS-SA-2019-1646)

According to the versions of the freerdp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfxdecompresssegment that results in a memory corruption...

9.8CVSS7AI score0.07293EPSS
Exploits4References5
GithubExploit
GithubExploit
added 2019/05/24 7:40 a.m.75 views

Exploit for Use After Free in Microsoft

CVE-2019-0708-POC cve-2019-0708 poc . Run Test Work well...

10CVSS0.6AI score0.99999EPSS
Exploits123
ThreatPost
ThreatPost
added 2019/03/27 12:48 p.m.93 views

Ransomware Behind Norsk Hydro Attack Takes On Wiper-Like Capabilities

LockerGoga, the malware that took down Norsk Hydro last week, has taken the industrial world by storm, as researchers race to uncover more about the mysterious ransomware that crippled several of the aluminum maker’s plants. Questions still remain about how the malware first infects the system it...

0.2AI score
Exploits0References10
NVD
NVD
added 2018/12/20 3:29 p.m.20 views

CVE-2018-1000852

FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvcmain.c, drdynvcprocesscapabilityrequest that can result in The RDP server can read the client's memory.. This attack appear to...

6.5CVSS6.6AI score0.02666EPSS
Exploits1References6
Prion
Prion
added 2018/12/20 3:29 p.m.21 views

Design/Logic Flaw

FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvcmain.c, drdynvcprocesscapabilityrequest that can result in The RDP server can read the client's memory.. This attack appear to...

6.4CVSS6.5AI score0.02666EPSS
Exploits1References6Affected Software3
UbuntuCve
UbuntuCve
added 2018/12/20 3:29 p.m.24 views

CVE-2018-1000852

FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvcmain.c, drdynvcprocesscapabilityrequest that can result in The RDP server can read the client's memory.. This attack appear to...

6.5CVSS6.7AI score0.02666EPSS
Exploits1References2
CVE
CVE
added 2018/12/20 3:0 p.m.253 views

CVE-2018-1000852

CVE-2018-1000852 affects FreeRDP 2.0.0-rc3 prior to commit 205c612820dac644d665b5bb1cdf437dc5ca01e3, where an issue in drdynvc_main.c (drdynvc_process_capability_request) allows the RDP server to read client memory. This is triggered when an RDP client connects with the echo option; exploitation ...

6.5CVSS7.6AI score0.02666EPSS
Exploits1References6Affected Software1
Debian CVE
Debian CVE
added 2018/12/20 3:0 p.m.19 views

CVE-2018-1000852

FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvcmain.c, drdynvcprocesscapabilityrequest that can result in The RDP server can read the client's memory.. This attack appear to...

6.5CVSS6.9AI score0.02666EPSS
Exploits1
Fedora
Fedora
added 2018/01/09 4:52 p.m.24 views

[SECURITY] Fedora 26 Update: xrdp-0.9.5-1.fc26

xrdp provides a fully functional RDP server compatible with a wide range of RDP clients, including FreeRDP and Microsoft RDP client...

8.4CVSS2AI score0.00408EPSS
Exploits0
Fedora
Fedora
added 2017/12/09 10:29 p.m.23 views

[SECURITY] Fedora 26 Update: xrdp-0.9.4-2.fc26

xrdp provides a fully functional RDP server compatible with a wide range of RDP clients, including FreeRDP and Microsoft RDP client...

8.4CVSS2AI score0.00408EPSS
Exploits0
Fedora
Fedora
added 2017/12/09 4:58 a.m.32 views

[SECURITY] Fedora 25 Update: xrdp-0.9.4-2.fc25

xrdp provides a fully functional RDP server compatible with a wide range of RDP clients, including FreeRDP and Microsoft RDP client...

8.4CVSS2AI score0.00408EPSS
Exploits0
Fedora
Fedora
added 2017/04/16 7:19 p.m.26 views

[SECURITY] Fedora 24 Update: xrdp-0.9.2-5.fc24

xrdp provides a fully functional RDP server compatible with a wide range of RDP clients, including FreeRDP and Microsoft RDP client...

7.5CVSS2AI score0.01177EPSS
Exploits0
Fedora
Fedora
added 2017/04/13 2:9 p.m.21 views

[SECURITY] Fedora 26 Update: xrdp-0.9.2-5.fc26

xrdp provides a fully functional RDP server compatible with a wide range of RDP clients, including FreeRDP and Microsoft RDP client...

7.5CVSS2AI score0.01177EPSS
Exploits0
Rows per page
Query Builder