49 matches found
CVE-2019-5165
An exploitable authentication bypass vulnerability exists in the hostname processing of the Moxa AWK-3131A firmware version 1.13. A specially configured device hostname can cause the device to interpret select remote traffic as local traffic, resulting in a bypass of web authentication. An attack...
CVE-2019-5165
CVE-2019-5165 affects the Moxa AWK-3131A (firmware 1.13). Authentication bypass is caused by hostname processing that lets an attacker send authenticated SNMP requests to trigger a web-auth bypass, effectively treating remote traffic as local. Talos reports an 8.0 CVSSv3 (CR: C/H, PR: H, UI: N, S...
The vulnerability of the DNS Global Blocklist mechanism in the Microsoft Windows operating system allows a hacker to redirect traffic to a malicious destination.
The vulnerability of the DNS Global Blocklist mechanism in the Microsoft Windows operating system is related to access control errors. Exploiting this vulnerability allows a malicious actor to redirect traffic to a malicious destination remotely...
CVE-2016-3299
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow remote attackers to hijack network traffic or bypass intended Enhanced Protected Mode EPM or application container...
The vulnerability of the Windows operating system, which allows a hacker to redirect network traffic
The vulnerability of the Web Proxy Auto Discovery protocol in the Windows operating system is related to incorrect data processing. Exploiting this vulnerability allows a malicious actor to redirect network traffic remotely...
PT-2016-2168
Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version Description The issue is related to the Web Proxy Auto Discovery WPAD protocol implementation, which mishandles proxy discovery. This allows remote attackers to redirect network traffic via...
Network Traffic Interception: Intercepter-NG
With great power comes great responsibility. New release for Intercepter-NG have been announced, this tool can be used for MITM attack on network during penetration test. the tool is very solid in sniffing passwords ,encrypted traffic , pictures transmitted over messengers and more. Intercepter i...
VMSA-2013-0005:VMware vFabric Postgres security updates
VMSA-2013-0005 VMware vFabric Postgres security updates VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2013-0005 VMware Security Advisory Synopsis: VMware vFabric Postgres security updates VMware Security Advisory Issue date: 2013-04-04 VMware Security Advisory Updated on:...
PT-2011-1633 · Cisco · Cisco Asa
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions prior to 8.23 Description: The issue allows remote attackers to bypass intended access restrictions by sending network traffic during device startup, as the device permits...