Microsoft Windows: Basic authentication (RM Service)

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winrmservbasicauth.nasl 11363 2018-09-12 13:46:05Z emoss $ Check value for Allow Basic authentication Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

TFA Basic plugins - Less critical - Insecure Randomness - SA-CONTRIB-2018-044

The TFA Basic module enables you to use Two Factor Authentication via a variety of plugins including TOTP and one-time codes delivered via email or sms. The module doesn't use a strong source of randomness, creating weak and predictable one-time login codes that are then delivered using SMS. This...

Digisol DG-BR4000NG Buffer Overflow

Exploit Title: DIGISOL DG-BR4000NG - Buffer Overflow PoC Date 2018-06-24 Vendor Homepagea http://www.digisol.com Hardware Link httpswww.amazon.inDigisol-DG-BR4000NG-Wireless-Broadband-802-11ndpB00A19EHYK Version: DIGISOL DG-BR4000NG Wireless Router Category Hardware Exploit Author Adipta Basu...

When It Comes To IoT Security, Liability Is Muddled

BOSTON—From hacked connected cars to power grids, the implications of IoT security issues seem to be getting graver – yet when it comes to pointing fingers for security troubles, many times victims don’t even know where to start. IoT experts said at the Security of Things Forum today said that a...

Insteon Hub HTTPExecuteGet Firmware Update Information Leak Vulnerability

Summary An exploitable information leak vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly checks the number of GET parameters supplied, leading to an arbitrarily controlled information leak on the whole device memory. An attacker can sen...

Security Bulletin: Multiple vulnerabilities have been identified in IBM Tivoli Monitoring shipped with IBM Cloud Orchestrator Enterprise

Summary IBM Tivoli Monitoring is shipped as a component of IBM Cloud Orchestrator Enterprise. Information about security vulnerabilities affecting IBM Tivoli Monitoring has been published in the security bulletins below. Vulnerability Details Consult the following security bulletins for IBM Tivol...

Reverb.com: Basic auth details is still work on report ( 351555 )

Hi , Seem report 351555 is not full fixed where 434762629765715:PQlkrSHPqqjhIBc0MmUkdjcqpps basic auth details are Still work on login Poc : https://api.cloudinary.com/v11/reverb/usage F309894 Impact information Disclose...

Security Bulletin: IBM Tivoli Monitoring Basic Services component. (CVE-2016-2183)

Summary Vulnerability in GSKit component of IBM Tivoli Monitoring has been addressed. Vulnerability Details CVEID: CVE-2016-2183 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the DES/3DES cipher, used as a part of the SSL/TLS protocol. B...

Security Bulletin: IBM Tivoli Monitoring Basic Services Vulnerability (CVE-2016-5933)

Summary A vulnerability has been resolved in the Basic Services component of IBM Tivoli Monitoring in which the Firewall Proxy Gateway was vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. Vulnerability Details CVEID: CVE-2016-5933...

Soroush IM Desktop app 0.15 - Authentication Bypass Vulnerability

Exploit for linux platform in category local exploits Exploit Title: Soroush IM Desktop app 0.15 - Authentication Bypass Exploit Author: VortexNeoX64 Vendor Homepage: https://soroush-app.ir Software Link: https://soroush-app.ir/UploadedData/Soroush.exe Version: 0.15 BETA Tested on: Windows 10 180...

UBUNTU-CVE-2018-12249

An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrbclassreal because "class BasicObject" is not properly supported in class.c...

S3QL Replay Attack Vulnerability

S3QL is a file system for storing online data. The system supports Amazon S3, SFTP servers, and more. A security vulnerability exists in the 'checksumbasicmapping' function in S3QL versions prior to 2.27. An attacker can exploit the vulnerability to display an old version of the metadata database...

Schneider Electric Patches XML Vulnerability In Software

Schneider Electric on Tuesday issued fixes for a vulnerability in its SoMachine Basic software, which could result in the disclosure and retrieval of arbitrary data. The software in question is used to develop code for programmable logic controllers. Attackers can leverage a vulnerability within...

CVE-2018-11094

An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, password, and...

Lateral Movement – WinRM

WinRM stands for Windows Remote Management and is a service that allows administrators to perform management tasks on systems remotely. Communication is performed via HTTP 5985 or HTTPS SOAP 5986 and support Kerberos and NTLM authentication by default and Basic authentication. Usage of this servi...

Absolute Computrace Agent stub component code execution vulnerability

Absolute Computrace Agent is an agent program for monitoring computer systems. A security vulnerability exists in the stub component of Absolute Computrace Agent version 70.785, which can be exploited to allow the program to execute certain code without a digital signature. A remote attacker can...

Oracle Financial Services Applications Financial Services Basel Regulatory Capital Basic Component Unauthorized Operation Vulnerability (CNVD-2018-10744)

Oracle Financial Services Applications is a suite of financial services software from Oracle Corporation that combines core banking, online banking, and estate management.Financial Services Basel Regulatory Capital Basic is one of the Basel-based capital adequacy management component. A security...

Yamot - Yet Another MOnitoring Tool

yamot is a web-based server-monitoring tool built for small environments with just a handful servers. It takes a minimum of resources which allows the execution on almost every machine, also very old ones. It works best with Linux or BSD. Windows is not part of the server scope. You could use it...

MS08-070: Vulnerabilities in Visual Basic 6.0 Runtime Extended Files (ActiveX Controls) could allow remote code execution

Resolves vulnerabilities in Visual Basic 6.0 Runtime Extended Files ActiveX Controls that could allow remote code execution.INTRODUCTIONMicrosoft has released security bulletin MS08-070. To view the complete security bulletin, visit one of the following Microsoft Web sites:Home users:...

CVE-2018-2855

Vulnerability in the Oracle Financial Services Basel Regulatory Capital Basic component of Oracle Financial Services Applications subcomponent: Portfolio, Attribution. The supported version that is affected is 8.0.x. Easily exploitable vulnerability allows low privileged attacker with network...