The vulnerability of the “scripts/license.pl” script in the Veritas NetBackup Appliance backup solution allows a perpetrator to execute arbitrary commands.

The vulnerability of the “scripts/license.pl” script in the Veritas NetBackup Appliance backup solution is related to the lack of measures taken at the control level to clean data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using the “hostName” parameter ...

Q3 2017 Global DDoS Threat Landscape Report

Today we are releasing our latest Global DDoS Threat Landscape Report, a statistical analysis of 5,765 network and application layer DDoS attacks mitigated by Imperva Incapsula services during Q3 2017. Before diving into the report’s highlights, it should be mentioned that this quarter was marked...

tls-alpn NSE Script

Enumerates a TLS server's supported application-layer protocols using the ALPN protocol. Repeated queries are sent to determine which of the registered protocols are supported. For more information, see: Script Arguments mssql.domain, mssql.instance-all, mssql.instance-name, mssql.instance-port,...

The vulnerability of the Network Address Translation (NAT) mechanism implemented in the Cisco IOS operating system allows a hacker to cause a service failure and restart the device.

The vulnerability of the Network Address Translation NAT mechanism implemented by the Cisco IOS operating system is related to resource management errors incorrect translation of H.323 messages through the application-level gateway, using the Registration, Admission, and Status RAS protocol...

Q2 2017 Global DDoS Threat Landscape Report

This week we released our latest Global DDoS Threat Landscape Report, a statistical analysis of more than 15,000 network and application layer DDoS attacks mitigated by Imperva Incapsula services during Q2 2017. This quarter, for the fifth one in a row, we saw a decrease in the number of network...

Juniper MX Series Appliance Junos OS ALG Denial of Service Vulnerability

Juniper MX Series is an MX Series router from Juniper Networks, Inc.Junos OS is the operating system used in the Juniper MX Series. A security vulnerability exists in the Junos OS in Juniper MX Series devices. A remote attacker could send packet fragments through the Application Layer Gateway ALG...

CVE-2017-2346

An MS-MPC or MS-MIC Service PIC may crash when large fragmented packets are passed through an Application Layer Gateway ALG. Repeated crashes of the Service PC can result in an extended denial of service condition. The issue can be seen only if NAT or stateful-firewall rules are configured with...

Design/Logic Flaw

An MS-MPC or MS-MIC Service PIC may crash when large fragmented packets are passed through an Application Layer Gateway ALG. Repeated crashes of the Service PC can result in an extended denial of service condition. The issue can be seen only if NAT or stateful-firewall rules are configured with...

[SECURITY] Fedora 25 Update: jetty-alpn-8.1.11-2.v20170118.fc25

A pure JavaTM implementation of the Application Layer Protocol Negotiation TLS Extension...

Move Securely to the Cloud: WAF Requirements and Deployment Options

Moving to the cloud has become an overwhelmingly popular trend even among organizations that were at first reluctant to make the move. Wherever you are in your cloud migration plan, it can take time, sometimes years, and often starts with first moving peripheral workloads to the cloud while leavi...

Balance traffic intelligently by leveraging Application Layer (Layer 7) and DNS Layer (Layer 3) logic

Gaining new customers and retaining existing ones is at the core of every business. In the past few years, two major trends have emerged in this drive towards customer centricity To meet the ever increasing customer demands, most modern digital applications leverage microservice architecture to...

How to install applications that require joining the domain with Citrix App Layering

Question: During new layer creation, we need to join the domain to successfully install our applications. However, we read that only the platform layer should be joined to the domain - can we join the domain while creating an application layer? Answer: You can temporarily join a packaging machine...

Adobe Reader Recipe

Adobe Reader is used to open and read PDF’s. It is distributed by Adobe. It is easy to install into an application layer...

Firefox Recipe

Firefox is a web browser distributed by Mozilla. This article includes information on installing Firefox to an application layer...

Google’s lessons in security: bring together security engineering and incident response

Last week during Google Next conference, we have heard an interesting talk where a google security PM, Andy Chang, explained what Google has learned from preventing, detecting and responding to cyber attacks over the years. Not surprisingly, Google is paying a lot of attention to securing the...

Google’s lessons in security: bring together security engineering and incident response

Last week during Google Next conference, we have heard an interesting talk where a google security PM, Andy Chang, explained what Google has learned from preventing, detecting and responding to cyber attacks over the years. Not surprisingly, Google is paying a lot of attention to securing the...

MGASA-2017-0081 Updated firefox packages fix security vulnerability

Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox CVE-2017-5398, CVE-2017-5400, CVE-2017-5401, CVE-2017-5402,...

Managing Printer Deployment Using Layers in the Unidesk Environment

While many brokering and persona management solutions provide mechanisms to manage printer deployment, you might find it easier to use Unidesk layers. Unidesk layers provide a flexible mechanism for managing printer deployments for different groups of users. When you use Unidesk layers to deploy...

Visual Studio crashing desktop after last OS update

When you install Visual Studio 2010 or 2012, Visual Studio also installs the .NET 4 components it needs in the Application layer. If you update the .NET 4 components in the Visual Studio layer and do not also update them in the Operating System layer, there is a mismatch in the .NET files, which...

CVE-2016-1276

Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D23, 12.3X48 before 12.3X48-D25, and 15.1X49 before 15.1X49-D40 on a High-End SRX-Series chassis system with one or more Application Layer Gateways ALGs enabled allow remote attackers to cause a denial of service CPU consumption, fab lin...