Pinpointing Targets: Exploiting Web Analytics to Ensnare Victims

Over the past year, FireEye Threat Intelligence has identified suspected nation-state sponsored cyber-actors engaged in a large-scale reconnaissance effort. This effort makes use of web analytics—the technologies to collect, analyze, and report data The individuals behind this activity have amass...

CVE-2015-7394

CVE-2015-7394 affects the datastor kernel module across multiple F5 BIG-IP products (Analytics, APM, ASM, Link Controller, LTM, AAM, AFM, PEM, Edge Gateway, WebAccelerator, WOM, GTM, PSM, BIG-IQ suites, Enterprise Manager) with versions listed as vulnerable. The root cause is the ability for remo...

Piwik Analytics Detection

The script sends a HTTP request to the server and attempts to identify Piwik and its version from the reply. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Code injection

Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote attackers to obtain sensitive log information by visiting...

CVE-2015-5712

CVE-2015-5712 affects TIBCO Spotfire Server and Spotfire Analytics Platform for AWS Marketplace. It allows remote authenticated users to obtain sensitive system information by visiting an unspecified URL. Affected versions: Spotfire Server 5.5.x before 5.5.4; 6.0.x before 6.0.5; 6.5.x before 6.5....

CVE-2015-5713

Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote attackers to obtain sensitive log information by visiting...

Multiple Cross-Site Scripting Vulnerabilities in HP Smart Profile Server Data Analytics Layer

HP Smart Profile Server Data Analytics Layer is a product from Hewlett-Packard HP designed for communications service providers to manage and analyze customer data for telecom business needs. Multiple cross-site scripting vulnerabilities exist in HP Smart Profile Server Data Analytics Layer versi...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in HP Smart Profile Server Data Analytics Layer SPS DAL 2.3 before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-5444

Multiple cross-site scripting XSS vulnerabilities in HP Smart Profile Server Data Analytics Layer SPS DAL 2.3 before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-5444

Multiple cross-site scripting XSS vulnerabilities in HP Smart Profile Server Data Analytics Layer SPS DAL 2.3 before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Wordpress EZ Google Analytics Plugin 4.1.6 - Persistant XSS Vulnerability

Exploit for php platform in category web applications Title : Wordpress Plugin : EZ Google Analytics 4.1.6 - Persistant XSS vulnerability Author : ZwX Date : 15/02/2015 Downoload : https://downloads.wordpress.org/plugin/ez-google-analytics.4.1.06.zip Vendor : http://wordpress.ieonly.com Tested on...

Microsoft Chooses Ubuntu Linux for their Cloud-based Azure HDInsight Big Data Solution

Earlier this month, Microsoft surprised us all with the announcement that they built a Linux kernel-based operating system, Azure Cloud Switch ACS, for developing software products for Network Devices. Now, Microsoft just announced that they have selected Ubuntu as the operating system for their...

Lenovo Caught (3rd Time) Pre-Installing Spyware on its Laptops

Lenovo has once again been caught installing spyware on its laptops and workstations without the user's permission or knowledge. One of the most popular computer manufacturers is being criticized for selling some refurbished laptop models pre-installed with invasive marketing software that sends...

Information disclosure

The GetResource servlet in Pentaho Business Analytics BA Suite 4.5.x, 4.8.x, and 5.0.x through 5.2.x and Pentaho Data Integration PDI Suite 4.3.x, 4.4.x, and 5.0.x through 5.2.x does not restrict access to files in the pentaho-solutions/system folder, which allows remote attackers to obtain...

CVE-2015-6940

The GetResource servlet in Pentaho Business Analytics BA Suite 4.5.x, 4.8.x, and 5.0.x through 5.2.x and Pentaho Data Integration PDI Suite 4.3.x, 4.4.x, and 5.0.x through 5.2.x does not restrict access to files in the pentaho-solutions/system folder, which allows remote attackers to obtain...

CVE-2015-6940

The GetResource servlet in Pentaho Business Analytics BA Suite 4.5.x, 4.8.x, and 5.0.x through 5.2.x and Pentaho Data Integration PDI Suite 4.3.x, 4.4.x, and 5.0.x through 5.2.x does not restrict access to files in the pentaho-solutions/system folder, which allows remote attackers to obtain...

CVE-2015-6940

CVE-2015-6940 affects Pentaho BA Suite (4.5.x, 4.8.x, 5.0.x–5.2.x) and PDI Suite (4.3.x–5.2.x); the GetResource servlet does not restrict access to pentaho-solutions/system, enabling remote attackers to retrieve passwords and other sensitive info via a resource parameter. Impact is information di...

CVE-2015-4638

The CVE-2015-4638 issue affects F5 BIG-IP products using FastL4 virtual servers (across BIG-IP LTM/AAM/AFM/Analytics/APM/ASM/GTM/Link Controller/PEM, Edge Gateway, WebAccelerator, WOM, PSM). Root cause: processing of fragmented packets in the FastL4/TMM path can cause the Traffic Management Micro...

Pentaho GA PDI & Pentaho GA BA Authentication Bypass Vulnerability

Pentaho is a suite of open source business intelligence products. An authentication bypass vulnerability exists in Pentaho GA PDI & Pentaho GA BA, which can be exploited by an attacker to access sensitive files and obtain password information...

CVE-2 0 1 5-4 4 8 3: Use the feed Protocol to bypass the Firefox Mixed Content Blocker-bug warning-the black bar safety net

In Firefox 4 0. fixes a bug number for CVE-2 0 1 5-4 4 8 3 BUG. Usually Firefox can prevent the following Mixed Content mixed content: the https://mkpocapp.appspot.com/bug1148732/victim In short: the https site has a portion of the content is via the http transmission, such as resource files, etc...