WeChat has an arbitrary code execution vulnerability (badkernel)

WeChat is a free application from Tencent that provides instant messaging services for smart terminals. WeChat suffers from a remote arbitrary code execution vulnerability badkernel. Attackers using the vulnerability can carry out quasi-worm spread, and can be sent through the circle of friends a...

MS16-098: Description of the security update for Windows kernel-mode drivers: August 9, 2016

MS16-098: Description of the security update for Windows kernel-mode drivers: August 9, 2016 Summary This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted...

NUUO NVRmini 2 3.0.8 - Remote Code Execution

NUUO NVRmini 2 3.0.8 - Remote Code Execution !/usr/bin/env python NUUO Remote Root Exploit Vendor: NUUO Inc. Product web page: http://www.nuuo.com Affected version: =3.0.8 Summary: NUUO NVRmini 2 is the lightweight, portable NVR solution with NAS functionality. Setup is simple and easy, with...

Cross-Site Scripting

Overview Affected versions of swagger-ui are vulnerable to cross-site scripting. This vulnerability exists because swagger-ui automatically executes external Javascript that is loaded in via the url query string parameter when a Content-Type: application/javascript header is included. An attacker...

MS16-082: Description of the security update for Windows Structured Query: June 14, 2016

MS16-082: Description of the security update for Windows Structured Query: June 14, 2016 Summary This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker logs on to a target system and runs a specially crafted application. ...

Windows WPAD Proxy Discovery Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Microsoft Windows improperly handles certain proxy discovery scenarios using the Web Proxy Auto Discovery WPAD protocol method. An attacker who successfully exploited the vulnerability could potentially access and control network traffic for whi...

MS16-070: Description of the security update for Word 2010: June 14, 2016

MS16-070: Description of the security update for Word 2010: June 14, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...

Debian DLA-484-1 : graphicsmagick security update (ImageTragick)

Several security vulnerabilities were discovered in graphicsmagick a tool to manipulate image files. GraphicsMagick is a fork of ImageMagick and also affected by vulnerabilities collectively known as ImageTragick, that are the consequence of lack of sanitization of untrusted input. An attacker wi...

FAQ: Apple's Device Enrollment Program and Citrix Secure Hub Auto Install

Q: How to download and install Citrix Secure Hub automatically during DEP initial setup without the user searching the AppStore? A : The capability to install Secure Hub during DEP initial setup of a device is supported with XenMobile 10.3.x Server and later: All you need to do is to push the...

MS16-061: Description of the security update for RPC: May 10, 2016

MS16-061: Description of the security update for RPC: May 10, 2016 Summary This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an authenticated attacker makes malformed Remote Procedure Call RPC requests to an affected host. T...

Network Time Protocol Crypto-NAK Preemptible Association Denial of Service Vulnerability

SUMMARY An off-path attacker can cause a preemptible client association to be demobilized by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if authentication is enabled. Furthermore, if the attacker keeps sending cryp...

Ransomware attacks on Hospitals put Patients at Risk

Just last week, the Federal Bureau of Investigation FBI issued an urgent "Flash" message to the businesses and organisations about the threat of Samsam Ransomware, but the ransomware has already wreaked havoc on some critical infrastructure. MedStar, a non-profit group that runs 10 hospitals in t...

Automatic Call Recorder Pro - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Automatic Call Recorder Pro published at the 'play' market has multiple vulnerabilities...

MOBOTIX Video Security Cameras CSRF Add Admin Exploit

Summary MOBOTIX is a German System Manufacturer of Professional Video Management VMS and Smart IP Cameras. These cameras support all standard features of MOBOTIX IP cameras like automatic object detection, messaging via network and onboard or network recording. The dual lens thermal system suppor...

[SECURITY] Fedora 23 Update: torbrowser-launcher-0.2.4-1.fc23

Tor Browser Launcher is intended to make Tor Browser easier to install and use for GNU/Linux users. You install torbrowser-launcher from your distribution's package manager and it handles everything else: Downloads and installs the most recent version of Tor Browser in your lan guage and for your...

Oracle Linux 6 : krb5 (ELSA-2016-0493)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-0493 advisory. - Fix CVE-2015-8629 and CVE-2015-8631 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Scientific Linux Security Update : openssh on SL7.x x86_64 (20160321)

It was discovered that the OpenSSH server did not sanitize data received in requests to enable X11 forwarding. An authenticated client with restricted SSH access could possibly use this flaw to bypass intended restrictions. CVE-2016-3115 An access flaw was discovered in OpenSSH; the OpenSSH clien...

Threat Outbreak Alert RuleID21703: Email Messages Distributing Malicious Software on March 14, 2016

Medium Alert ID: 44121 First Published: 2016 March 14 19:41 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID21703 may contain the following files: Name | Si...

CentOS 7 : postgresql (CESA-2016:0346)

Updated postgresql packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

ATutor 2.2.1 - SQL Injection / Remote Code Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ATutor 2.2.1 SQL Injection / Remote Code Execution', 'Description' = %q This module exploits a SQL Injection vulnerability and an...