7991 matches found
Press Shift + F10 during Windows 10 Upgrade to Launch Root CLI & bypass BitLocker
If your computer's security relies on Windows BitLocker Hard Drive Encryption software, then Beware! Because anyone with physical access to your PC can still access your files within few seconds. All an attacker need to do is hold SHIFT+F10 during Windows 10 update procedure. Security researcher...
[ASA-201611-25] wireshark-cli: multiple issues
Arch Linux Security Advisory ASA-201611-25 ========================================== Severity: High Date : 2016-11-24 CVE-ID : CVE-2016-9373 CVE-2016-9374 CVE-2016-9375 CVE-2016-9376 Package : wireshark-cli Type : multiple issues Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summa...
Varnish Cache CLI Login Utility
This module attempts to login to the Varnish Cache varnishd CLI instance using a bruteforce list of passwords. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/credentialcollection' requir...
WAFNinja - Penetration testers favorite for WAF Bypassing
WAFNinja is a CLI tool written in Python. It shall help penetration testers to bypass a WAF by automating steps necessary for bypassing input validation. The tool was created with the objective to be easily extendible, simple to use and usable in a team environment. Many payloads and fuzzing...
CVE-2016-6430
CVE-2016-6430 affects Cisco IP Interoperability and Collaboration System (IPICS) CLI. The vulnerability arises from insufficient input validation in the command-line interface, allowing an authenticated, local attacker to elevate session privileges. Known affected release: IPICS 4.10(1); fixed in...
Juniper Junos Multiple CLI Command Handling Local Privilege Escalations (JSA10763)
According to its self-reported version number, the remote Juniper Junos device is affected by multiple privilege escalation vulnerabilities in the Junos CLI. A local attacker can exploit these, via specially crafted CLI commands and arguments, to gain elevated privileges. C Tenable Network...
DracOS - Lightweight and Powerful Penetration Testing OS
Dracos Linux www.dracos-linux.org is the Linux operating system from Indonesian , open source is built based on the Linux From Scratch under the protection of the GNU General Public License v3.0. This operating system is one variant of Linux distributions, which is used to perform security testin...
Juniper Networks Junos OS Multiple Privilege Escalation Vulnerabilities
Junos OS is prone to multiple privilege escalation vulnerabilities in JunOS CLI. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
openSUSE Security Update : kde-cli-tools5 (openSUSE-2016-1171)
This update for kde-cli-tools5 fixes the following vulnerability : - CVE-2016-7787: user could sneak an unicode string terminator in the kdesu invocation boo1001916 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
OPENSUSE-SU-2016:2498-1 Security update for kde-cli-tools5
This update for kde-cli-tools5 fixes the following vulnerability: CVE-2016-7787: user could sneak an unicode string terminator in the kdesu invocation boo1001916...
OPENSUSE-SU-2016:2495-1 Security update for kde-cli-tools5
This update for kde-cli-tools5 fixes the following vulnerability: CVE-2016-7787: user could sneak an unicode string terminator in the kdesu invocation boo1001916...
CVE-2016-6434
Cisco Firepower Management Center 6.0.1 has hardcoded database credentials, which allows local users to obtain sensitive information by leveraging CLI access, aka Bug ID CSCva30370...
Hardcoded credentials
Cisco Firepower Management Center 6.0.1 has hardcoded database credentials, which allows local users to obtain sensitive information by leveraging CLI access, aka Bug ID CSCva30370...
Code injection
Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended AAA restrictions and obtain privileged CLI access via crafted parameters in an SSH connection...
CVE-2016-6434
Cisco Firepower Management Center 6.0.1 has hardcoded database credentials, which allows local users to obtain sensitive information by leveraging CLI access, aka Bug ID CSCva30370...
CVE-2015-0721
Cisco NX-OS 4.0–7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices is affected by CVE-2015-0721, where remote authenticated users can bypass AAA restrictions and obtain privileged CLI access through crafted parameters during SS...
CVE-2016-6434
Cisco Firepower Management Center 6.0.1 is affected by CVE-2016-6434 due to hard-coded MySQL credentials in the local database. The vulnerability enables an authenticated, local attacker with CLI access to obtain sensitive information, effectively bypassing authentication through a root MySQL acc...
Cisco Firepower Management Center Console Authentication Bypass Vulnerability
A vulnerability in the web console of Cisco Firepower Management Center could allow an authenticated, local attacker to bypass authentication and access sensitive information. The vulnerability is due to the use of static credentials by the database on an affected system. An authenticated user wh...
Cisco IOS XR Software Command-Line Interface Privilege Escalation Vulnerability
A vulnerability in the command-line interface CLI of IOS-XR series software could allow an authenticated, local attacker to execute arbitrary code on a targeted system at the root privilege level. The vulnerability is due to incorrect permissions given to a set of users. An attacker could exploit...
How to find the disk associated to a VM from XenServer CLI
While troubleshooting storage issues, we might need to get the VM's disk and its associated Virtual block devices . This article will help to get the desired details from the VM...