Lucene search
K

157 matches found

Carbon Black Blog
Carbon Black Blog
added 2020/06/04 1:46 a.m.92 views

TAU Threat Analysis: Medusa Locker Ransomware

In recent weeks Carbon Black’s Threat Analysis Unit TAU has seen an increase in the number of infections attributed to the Medusa Locker ransomware family. There were notable traits exhibited by Medusa Locker in these attacks that warranted further investigation to determine behavioral tactics th...

7.8AI score
Exploits0
Krebs on Security
Krebs on Security
added 2019/12/05 7:46 p.m.55 views

Apple Explains Mysterious iPhone 11 Location Requests

KrebsOnSecurity ran a story this week that puzzled over Apple's response to inquiries about a potential privacy leak in its new iPhone 11 line, in which the devices appear to intermittently seek the user's location even when all applications and system services are individually set never to reque...

6.6AI score
Exploits0
CVE
CVE
added 2019/08/28 11:1 p.m.167 views

CVE-2019-10724

The CVE-2019-10724 issue affects Dolby DAX2 API system services and allows a low-privileged user to terminate arbitrary higher-privilege processes. Affected products/versions include Lenovo laptops/desktops listed with Dolby driver 6.0.1.8642 (and related builds). CVSS data indicate NETWORK acces...

6.8CVSS6.5AI score0.01218EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/04/09 12:0 a.m.30 views

EulerOS Virtualization 2.5.3 : systemd (EulerOS-SA-2019-1180)

According to the versions of the systemd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way systemd handled empty notification messages. A local attacker could use this flaw to make systemd...

7.8CVSS6AI score0.01085EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2019/04/09 12:0 a.m.30 views

EulerOS Virtualization 2.5.4 : systemd (EulerOS-SA-2019-1217)

According to the versions of the systemd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way systemd handled empty notification messages. A local attacker could use this flaw to make systemd...

7.8CVSS6AI score0.01085EPSS
Exploits4References3
Prion
Prion
added 2019/01/03 8:29 p.m.16 views

Improper access control

Incorrect Access Control in modinetd.cgi in VIVOTEK Network Camera Series products with firmware before XXXXXX-VVTK-0X09a allows remote attackers to enable arbitrary system services via a URL parameter...

5CVSS5.4AI score0.0093EPSS
Exploits1References2
NVD
NVD
added 2019/01/03 8:29 p.m.15 views

CVE-2018-18004

Incorrect Access Control in modinetd.cgi in VIVOTEK Network Camera Series products with firmware before XXXXXX-VVTK-0X09a allows remote attackers to enable arbitrary system services via a URL parameter...

5.3CVSS5.4AI score0.0093EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/01/03 8:0 p.m.17 views

CVE-2018-18004

Incorrect Access Control in modinetd.cgi in VIVOTEK Network Camera Series products with firmware before XXXXXX-VVTK-0X09a allows remote attackers to enable arbitrary system services via a URL parameter...

5.4AI score0.0093EPSS
Exploits1References2
CVE
CVE
added 2019/01/03 8:0 p.m.50 views

CVE-2018-18004

CVE-2018-18004 affects VIVOTEK Network Camera Series via mod_inetd.cgi in firmware before XXXXXX-VVTK-0X09a. Root cause: incorrect access control that permits remote attackers to trigger arbitrary system services through a URL parameter. Impact: potential partial integrity impact by enabling unin...

5.3CVSS5.4AI score0.0093EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.17 views

Microsoft Windows: Service: Windows Media Player Network Sharing Service

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winmediaplayernetsharing.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Windows Media Player Network Sharing Service WMPNetworkSvc Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH,...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.118 views

Microsoft Windows 10: Service: Windows Mobile Hotspot Service

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winmobilehotspot.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Windows Mobile Hotspot Service icssvc Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program i...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.101 views

Microsoft Windows 10: Service: Downloaded Maps Manager

This test checks the setting for policy OpenVAS Vulnerability Test $Id: windownloadedmapsmanager.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Downloaded Maps Manager MapsBroker Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.20 views

Microsoft Windows: Service:World Wide Web Publishing Service

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winwwwpublishing.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for World Wide Web Publishing Service W3SVC Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.9 views

Microsoft Windows: Service: Remote Access Auto Connection Manager

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winrasauto.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Remote Access Auto Connection Manager RasAuto Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program...

Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.25 views

Microsoft Windows: Service: HomeGroup Listener

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winhomegroupprovider.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for HomeGroup Provider HomeGroupProvider Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This progra...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.12 views

Microsoft Windows: Service: Microsoft FTP Service

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winftpservice.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Microsoft FTP Service FTPSVC Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.59 views

Microsoft Windows: Service: IIS Admin Service

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winiisadminservice.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for IIS Admin Service IISADMIN Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.11 views

Microsoft Windows: Service: Remote Registry

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winremoteregistry.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Remote Registry RemoteRegistry Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/13 12:0 a.m.55 views

Microsoft Windows: Service: PNRP Machine Name Publication Service

The service SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.109267";...

7.3AI score
Exploits0References1
OSV
OSV
added 2018/05/29 7:41 p.m.11 views

MGASA-2018-0257 Updated virtualbox packages fix security vulnerabilities

This update provides virtualbox 5.2.12 and fixes the following security issues: Unauthorized remote attacker may have caused a hang or frequently repeatable crash complete DOS CVE-2018-0739. Attacker with host login may have compromised Virtualbox or further system services after interaction with...

8.8CVSS6.7AI score0.19295EPSS
Exploits4References4
Rows per page
Query Builder