Lucene search
K

90 matches found

Tenable Nessus
Tenable Nessus
added 2020/07/02 12:0 a.m.26 views

F5 Networks BIG-IP : BIG-IP APM Edge Client vulnerability (K97733133)

When a user connects to a VPN using BIG-IP Edge Client over an unsecure network, BIG-IP Edge Client responds to authentication requests over HTTP while sending probes for captive portal detection. CVE-2020-5893 Impact An attacker can use a man-in-the-middle MITM attack by deploying a...

4.3CVSS5.2AI score0.00561EPSS
Exploits0References2
0day.today
0day.today
added 2020/05/16 12:0 a.m.81 views

Microsoft Windows Task Scheduler Security Feature Bypass Vulnerability

Compass Security identified a security feature bypass vulnerability in Microsoft Windows. Due to the absence of integrity verification requirements for the RPC protocol and in particular the Task Scheduler, a man-in-the-middle attacker can relay his victim's NTLM authentication to a target of his...

9.3CVSS7.9AI score0.07277EPSS
Exploits2
Packet Storm
Packet Storm
added 2020/05/15 12:0 a.m.212 views

Microsoft Windows Task Scheduler Security Feature Bypass

COMPASS SECURITY ADVISORY https://www.compass-security.com/research/advisories/ Product: Windows Task Scheduler Vendor: Microsoft CSNC ID: CSNC-2010-001 CVE ID: CVE-2020-1113 Subject: Security Feature Bypass Risk: High Effect: Remotely exploitable Authors: Sylvain Heiniger Date: 14.05.2020...

8.7AI score0.07277EPSS
Exploits2
OSV
OSV
added 2019/03/04 8:29 a.m.2 views

CVE-2019-9565

Druide Antidote RX, HD, 8 before 8.05.2287, 9 before 9.5.3937 and 10 before 10.1.2147 allows remote attackers to steal NTLM hashes or perform SMB relay attacks upon a direct launch of the product, or upon an indirect launch via an integration such as Chrome, Firefox, Word, Outlook, etc. This occu...

9.1CVSS7.3AI score0.02071EPSS
Exploits1References2
CISA
CISA
added 2019/01/28 12:0 a.m.10 views

CERT/CC Reports Microsoft Exchange 2013 and Newer are Vulnerable to NTLM Relay Attacks

The CERT Coordination Center CERT/CC has released information to address NTLM relay attacks affecting Microsoft Exchange 2013 and newer versions. A remote attacker could exploit this vulnerability to take control of an affected system. The National Cybersecurity and Communications Integration...

6.6AI score
Exploits0References1
Exploit DB
Exploit DB
added 2018/10/25 12:0 a.m.31 views

WebExec - (Authenticated) User Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Windows XP systems that are not part of a domain default to treating all network logons as if they were Guest. This prevents SMB relay attacks from gaining administrativ...

7.8CVSS8AI score0.1602EPSS
Exploits14
ICS
ICS
added 2018/03/28 12:0 a.m.58 views

ICSA-18-093-01 Siemens Building Technologies Products (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit. Vendor : Siemens Equipment : Building Technologies Products Vulnerabilities : Stack-based Buffer Overflows, Security Features, Improper Restriction of Operations within the Bounds of a Memory Buffer, NUL...

9.9CVSS10AI score0.04758EPSS
Exploits0References9
ThreatPost
ThreatPost
added 2017/07/11 1:43 p.m.89 views

Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks

NTLM has a long history of serious vulnerabilities and of causing anxiety for Windows and UNIX server admins. Their collective angst is unlikely to lessen today with the disclosure of a pair of new vulnerabilities in the protocol suite. Microsoft today patched one of the issues among its Patch...

9.3CVSS1.3AI score0.99945EPSS
Exploits33References2
ThreatPost
ThreatPost
added 2017/05/16 10:0 a.m.19 views

Chrome Browser Hack Opens Door to Credential Theft

A vulnerability in Google’s Chrome browser allows hackers to automatically download a malicious file onto a victim’s PC that could be used to steal credentials and launch SMB relay attacks. Bosko Stankovic, information security engineer at DefenseCode, found the flaw in the default configuration ...

2AI score
Exploits0References1
Kitploit
Kitploit
added 2017/05/01 2:18 p.m.779 views

EAPHammer - Targeted Evil Twin Attacks Against WPA2-Enterprise Networks [Indirect Wireless Pivots Using Hostile Portal Attacks]

EAPHammer is a toolkit for performing targeted evil twin attacks against WPA2-Enterprise networks. It is designed to be used in full scope wireless assessments and red team engagements. As such, focus is placed on providing an easy-to-use interface that can be leveraged to execute powerful wirele...

7.5AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2016/09/11 10:59 a.m.23 views

CVE-2016-5166

The download implementation in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly restrict saving a file:// URL that is referenced by an http:// URL, which makes it easier for user-assisted remote attackers to discover NetNTLM hashes and condu...

3.1CVSS6.8AI score0.0126EPSS
Exploits0References2
Prion
Prion
added 2016/09/11 10:59 a.m.22 views

Information disclosure

The download implementation in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly restrict saving a file:// URL that is referenced by an http:// URL, which makes it easier for user-assisted remote attackers to discover NetNTLM hashes and condu...

2.6CVSS6.3AI score0.0126EPSS
Exploits0References12Affected Software2
Debian CVE
Debian CVE
added 2016/09/11 10:0 a.m.25 views

CVE-2016-5166

Removed by vendor...

3.1CVSS7.4AI score0.0126EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2016/09/01 8:19 a.m.27 views

CVE-2016-5166

The download implementation in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly restrict saving a file:// URL that is referenced by an http:// URL, which makes it easier for user-assisted remote attackers to discover NetNTLM hashes and condu...

6.5CVSS3.2AI score0.0126EPSS
Exploits0References2
0day.today
0day.today
added 2016/06/21 12:0 a.m.70 views

SAP NetWeaver AS JAVA 7.1 < 7.5 - ctcprotocol Servlet XXE

Exploit for java platform in category web applications Application: SAP NetWeaver AS JAVA Versions Affected: SAP NetWeaver AS JAVA 7.1 - 7.5 Vendor URL: http://SAP.com Bug: XXE Sent: 20.10.2015 Reported: 21.10.2015 Vendor response: 21.10.2015 Date of Public Advisory: 08.03.2016 Reference: SAP...

7.5CVSS0.1AI score0.15058EPSS
Exploits5
NVD
NVD
added 2016/04/07 7:59 p.m.30 views

CVE-2016-3974

XML external entity XXE vulnerability in the Configuration Wizard in SAP NetWeaver Java AS 7.1 through 7.5 allows remote attackers to cause a denial of service, conduct SMB Relay attacks, or access arbitrary files via a crafted XML request to tcmonitoringwebserviceweb/ServerNodesWSService, aka SA...

9.1CVSS9AI score0.15058EPSS
Exploits5References5
CVE
CVE
added 2016/04/07 7:0 p.m.74 views

CVE-2016-3974

CVE-2016-3974 affects SAP NetWeaver AS JAVA 7.1–7.5. An XML External Entity (XXE) vulnerability in the Configuration Wizard/ctcprotocol servlet allows remote attackers to cause a denial of service, perform SMB relay actions, or read arbitrary files via a crafted XML to the ServerNodesWSService en...

9.1CVSS9AI score0.15058EPSS
Exploits5References5Affected Software1
Prion
Prion
added 2016/01/21 3:0 a.m.28 views

Server side request forgery (ssrf)

Unspecified vulnerability in the Application Mgmt Pack for E-Business Suite component in Oracle E-Business Suite 12.1 and 12.2 allows remote attackers to affect confidentiality via vectors related to REST Framework, a different vulnerability than CVE-2016-0457. NOTE: the previous information is...

5CVSS6.3AI score0.0392EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2015/10/21 11:59 p.m.22 views

CVE-2015-4851

Unspecified vulnerability in the Oracle iSupplier Portal component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to XML input. NOTE: the previous information is from the October 2015...

6.8CVSS6.1AI score0.03088EPSS
Exploits0References7
NVD
NVD
added 2015/10/21 11:59 p.m.23 views

CVE-2015-4849

Unspecified vulnerability in the Oracle Payments component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Punch-in. NOTE: the previous information is from the...

6.8CVSS5.9AI score0.03088EPSS
Exploits0References7
Rows per page
Query Builder