EUVD-2018-8607

Malware in sbrugna...

EUVD-2018-8803

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-16807

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Bro through 2.5.5, there is a memory leak potentially leading to DoS in scripts/base/protocols/krb/main.bro in the Kerberos protocol parser. CVE-2018-16807...

Linux Distros Unpatched Vulnerability : CVE-2018-17019

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Bro through 2.5.5, there is a DoS in IRC protocol names command parsing in analyzer/protocol/irc/IRC.cc. CVE-2018-17019 Note that Nessus relies on the presen...

Linux Distros Unpatched Vulnerability : CVE-2017-1000458

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bro before Bro v2.5.2 is vulnerable to an out of bounds write in the ContentLine analyzer allowing remote attackers to cause a denial of service crash and...

CVE-2023-43955

The com.phlox.tvwebbrowser TV Bro application through 2.0.0 for Android mishandles external intents through WebView. This allows attackers to execute arbitrary code, create arbitrary files. and perform arbitrary downloads via JavaScript that uses takeBlobDownloadData...

CVE-2023-43955

The com.phlox.tvwebbrowser TV Bro application through 2.0.0 for Android mishandles external intents through WebView. This allows attackers to execute arbitrary code, create arbitrary files. and perform arbitrary downloads via JavaScript that uses takeBlobDownloadData...

CVE-2023-43955

CVE-2023-43955 affects the com.phlox.tvwebbrowser TV Bro Android app (version 2.0.0 and earlier). The root cause is mishandling of external intents via WebView, enabling an attacker to execute arbitrary code, create arbitrary files, and perform arbitrary downloads using JavaScript that calls take...

Malicious Package

Overview yandex-bro-embedded-site-api is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if...

Denial Of Service (DoS)

Bro is vulnerable to denial of service. The vulnerability exisit in IRC protocol names command parsing in analyzer/protocol/irc/IRC.cc...

Null Pointer Dereference

Bro is vulnerable to null pointer dereference. The vulnerability existed because a case-type index is mishandled...

RITA - Real Intelligence Threat Analytics

RITA is an open source framework for network traffic analysis. The framework ingests Bro/Zeek Logs in TSV format, and currently supports the following major features: Beaconing Detection : Search for signs of beaconing behavior in and out of your network DNS Tunneling Detection Search for signs o...

FreeBSD : bro -- invalid memory access or heap buffer over-read (55571619-454e-4769-b1e5-28354659e152)

Jon Siwek of Corelight reports : This is a security patch release to address a potential Denial of Service vulnerability : - The NTLM analyzer did not properly handle AV Pair sequences that were either empty or unterminated, resulting in invalid memory access or heap buffer over-read. The NTLM...

CVE-2019-12175

The CVE-2019-12175 entry concerns Zeek (Bro) Network Security Monitor prior to version 2.6.2, where a NULL pointer dereference in the Kerberos (KRB) protocol parser causes a denial of service due to mishandling of a case-type index. Public details from multiple connected sources confirm the affec...

Lynis 2.7.5 - Security Auditing Tool for Unix/Linux Systems

We are excited to announce this major release of auditing tool Lynis. Several big changes have been made to core functions of Lynis. These changes are the next of simplification improvements we made. There is a risk of breaking your existing configuration. Lynis is an open source security auditin...

FreeBSD : bro -- Unsafe integer conversions can cause unintentional code paths to be executed (177fa455-48fc-4ded-ba1b-9975caa7f62a)

Jon Siwek of Corelight reports : The following Denial of Service vulnerabilities are addressed : - Integer type mismatches in BinPAC-generated parser code and Bro analyzer code may allow for crafted packet data to cause unintentional code paths in the analysis logic to be taken due to unsafe...

FreeBSD : bro -- 'Magellan' remote code execution vulnerability in bundled sqlite (b80f039d-579e-4b82-95ad-b534a709f220)

Bro Network security Monitor reports : Bro 2.6.1 updates the embedded SQLite to version 3.26.0 to address the 'Magellan' remote code execution vulnerability. The stock Bro configuration/scripts don't use SQLite by default, but custom user scripts/packages may. C Tenable Network Security, Inc. The...

bro -- "Magellan" remote code execution vulnerability in bundled sqlite

Bro Network security Monitor reports: Bro 2.6.1 updates the embedded SQLite to version 3.26.0 to address the "Magellan" remote code execution vulnerability. The stock Bro configuration/scripts don't use SQLite by default, but custom user scripts/packages may...

Bro Denial of Service Vulnerability

Bro is an open source framework for network analysis and security monitoring . A denial of service vulnerability exists in the IRC protocol name command parsing process in the analyzer/protocol/irc/IRC.cc file in Bro 2.5.5 and earlier versions, which can be exploited by an attacker to cause a...

Command injection

In Bro through 2.5.5, there is a DoS in IRC protocol names command parsing in analyzer/protocol/irc/IRC.cc...