286 matches found
WPA2 Wireless Network GTK Group Key Reinstallation Vulnerability
WPA Wi-Fi Protected Access is a system for securing wireless computer networks Wi-Fi. WPA2 wireless networks suffer from a GTK group key reload vulnerability in the fourth handshake. The vulnerability is due to the fact that Wi-Fi Protected Access II WPA2 handshake traffic can be manipulated to...
WPA2 Wireless Network TPK Key Reinstallation Vulnerability
WPA Wi-Fi Protected Access is a system for securing wireless computer networks Wi-Fi. A TPK key vulnerability exists in WPA2 wireless networks when reinstalling a tunneled direct connection setting PeerKey in the TDLS handshake. The vulnerability is due to the fact that Wi-Fi Protected Access II...
WPA2 Wireless Network Hibernation Mode IGTK Key Reinstallation Vulnerability
WPA Wi-Fi Protected Access is a system for securing wireless computer networks Wi-Fi. An IGTK key integrity reload vulnerability exists in the WPA2 wireless network hibernation mode. The vulnerability is due to the fact that Wi-Fi Protected Access II WPA2 handshake traffic can be manipulated to...
October 2017 Preview of Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, and 4.7 updates for Windows Server 2012 (KB 4042077)
October 2017 Preview of Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, and 4.7 updates for Windows Server 2012 KB 4042077 View products that this article applies to. Summary This article lists the Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, and 4.7 for...
UBUNTU-CVE-2017-13079
Wi-Fi Protected Access WPA and WPA2 that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key IGTK during the four-way handshake, allowing an attacker within radio range to spoof frames from access points to clients...
CVE-2017-13676
Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a...
CVE-2017-13676
Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a...
Design/Logic Flaw
Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a...
CVE-2017-13676
The CVE-2017-13676 issue affects Norton Remove & Reinstall and is described as a DLL preloading/code execution vulnerability. The root cause involves the application loading a DLL from a search path which an attacker could control, allowing a malicious DLL to execute under the vulnerable process ...
CVE-2017-13676
Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a...
74cms content management system backend existence of arbitrary file deletion vulnerability
74cms is a free + open source professional recruitment system based on PHP + MYSQL as the core development. 74cms content management system backend there are arbitrary file deletion vulnerability, attackers use the vulnerability to delete the installation of the generated install.lock can be...
Description of the Security Only update for the .NET Framework 4.5.2 for Windows 7 SP1, Windows Server 2008 R2 SP1, and Windows Server 2008 SP2: September 12, 2017
Description of the Security Only update for the .NET Framework 4.5.2 for Windows 7 SP1, Windows Server 2008 R2 SP1, and Windows Server 2008 SP2: September 12, 2017 View products that this article applies to. Summary This security update resolves a vulnerability in the Microsoft .NET Framework...
After updating the app, receiving an error : Incompatible error
After updating the app Secure Mail, receiving an error when launching apps. Devices: iOS only ERROR: "Incompatible app, please try removing this app and then reinstalling it."...
Xen Hypervisor Multiple Vulnerabilities (XSA-226 - XSA-230)
According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by multiple vulnerabilities. Note that Nessus has checked the changeset versions based on the xen.git change log. Nessus did not check guest hardware configurations or if patches were applie...
Security update for the Windows Performance Monitor information disclosure vulnerability in Windows Server 2008: July 11, 2017
Security update for the Windows Performance Monitor information disclosure vulnerability in Windows Server 2008: July 11, 2017 Summary An information disclosure vulnerability exists in the Windows Performance Monitor Console when it improperly parses XML input containing a reference to an externa...
May 2017 Preview of the Quality Rollup for the .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, and 4.6.2 for Windows Server 2012 (KB4019289): May 16, 2017
May 2017 Preview of the Quality Rollup for the .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, and 4.6.2 for Windows Server 2012 KB4019289: May 16, 2017 Notice This release has been removed from Windows Update because of the issues that are described in the following .NET Blog article: .NET Framework May...
FengCms1. 32 System reinstall vulnerabilities to cause getshell
进入./install/index.php文件 alert"系统已安装,如需要重新安装,请手工删除upload目录下的INSTALL文件!";'; echo ''; switch'step' case '1': //安装许可协议 include ABSPATH."/step/step1.php"; break; case '2': //检查安装环境是否满足要求 = ''; ifextensionloaded'gd' iffunctionexists'imagepng' .= 'png'; iffunctionexists'imagejpeg' .= ' jpg';...
Vulnerability of NVIDIA GPU operating system drivers for Android, allowing attackers to execute arbitrary code
The vulnerability of NVIDIA GPU operating system drivers for Android is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “critical” due to the possibility of...
Reinstallation Logic Vulnerability in zzcmsV8.0
ZZCMS is a PHP-developed enterprise website builder. A reinstallation logic vulnerability exists in zzcmsV8.0. Due to a logic vulnerability in the judgment of the installation lock file install.lock, an attacker can exploit the vulnerability to reinstall the system and destroy the program...
Arbitrary file deletion vulnerability in SDCMS backend errorcontroller.php page
SDCMS is a website management system managed and developed by Suzhou Smoke & Fire Network Technology Co. SDCMS background errorcontroller.php page exists arbitrary file deletion vulnerability, allowing attackers to exploit the vulnerability to obtain, delete arbitrary files, can lead to system...