Meet Andy Zollo, SVP of APJ Sales

Andy Zollo, who led the Imperva business in EMEA, relocated to Singapore in October to be Senior Vice President of Sales for the combined Imperva and Thales CPL businesses in the APJ region. With a wealth of experience in sales leadership and business transformation, Andy is set to play a vital...

CBL Mariner 2.0 Security Update: kernel (CVE-2010-0298)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2010-0298 advisory. - The x86 emulator in KVM 83 does not use the Current Privilege Level CPL and I/O Privilege Level IOPL in...

SUSE CVE-2018-12904

In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL...

Design/Logic Flaw

ToaruOS 1.99.2 is affected by incorrect access control via the kernel. Improper MMU management and having a low GDT address allows it to be mapped in userland. A call gate can then be written to escalate to CPL 0...

CVE-2021-36710

ToaruOS 1.99.2 is affected by incorrect access control via the kernel. Improper MMU management and having a low GDT address allows it to be mapped in userland. A call gate can then be written to escalate to CPL 0...

CVE-2021-36710

CVE-2021-36710 affects ToaruOS 1.99.2, with incorrect kernel access control due to improper MMU management and a low GDT address that allows userland mapping. This enables writing a call gate to escalate to CPL 0, per multiple connected sources (Red Hat, NVD, PRION/PT-PT, CNNVD, etc.). No public ...

penigun-cpl-cz.adsssite.com Cross Site Scripting vulnerability OBB-2387060

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2019-9697

An information disclosure vulnerability in the Management Center MC REST API 2.0, 2.1, and 2.2 prior to 2.2.2.1 allows a malicious authenticated user to obtain passwords for external backup and CPL policy import servers that they might not otherwise be authorized to access...

Code injection

In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL...

CVE-2018-12904

In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL...

CVE-2018-8897

A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software Developer's Manual SDM was mishandled in the development of some or all operating-system kernels, resulting in unexpected behavior for DB exceptions that are deferred by MOV SS or POP SS, as demonstrated ...

Microsoft Windows LNK File Code Execution Exploit

This Metasploit module exploits a vulnerability in the handling of Windows Shortcut files .LNK that contain a dynamic icon, loaded from a malicious DLL. This vulnerability is a variant of MS15-020 CVE-2015-0096. The created LNK file is similar except an additional SpecialFolderDataBlock is...

LNK Code Execution Vulnerability

This module exploits a vulnerability in the handling of Windows Shortcut files .LNK that contain a dynamic icon, loaded from a malicious DLL. This vulnerability is a variant of MS15-020 CVE-2015-0096. The created LNK file is similar except an additional SpecialFolderDataBlock is included. The...

LNK Code Execution Vulnerability

This module exploits a vulnerability in the handling of Windows Shortcut files .LNK that contain a dynamic icon, loaded from a malicious DLL. This vulnerability is a variant of MS15-020 CVE-2015-0096. The created LNK file is similar except an additional SpecialFolderDataBlock is included. The...

Microsoft Windows - .LNK Shortcut File Code Execution (Metasploit)

Microsoft Windows - .LNK Shortcut File Code Execution Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LNK Remote Code Execution Vulnerability', 'Description' = %q This module exploits...

Threat Outbreak Alert: Email Messages Distributing Malicious Software on May 22, 2014

Medium Alert ID: 34326 First Published: 2014 May 22 12:07 GMT Last Updated: 2014 May 23 12:25 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages that contain a blank message body with an attached document for the recipient. The email message...

Threat Outbreak Alert: Fake Financial Documents Email Messages on April 9, 2014

Medium Alert ID: 33737 First Published: 2014 April 10 13:31 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claims to contain financial documents email messages for the recipient. The text in the email message attempt...

Threat Outbreak Alert: Fake Explicit Content Email Messages on December 16, 2013

Medium Alert ID: 32189 First Published: 2013 December 17 15:07 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that contain an explicit message for the recipient. The text in the email message attempts to convince the...

Threat Outbreak Alert: Fake Fund Transfer Notification Email Messages on December 5, 2013

Medium Alert ID: 32058 First Published: 2013 December 6 15:33 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain payment transfer details for the recipient. The text in the e-mail message attempts to...

Threat Outbreak Alert: Fake Contract Document Delivery Email Messages on November 25, 2013

Medium Alert ID: 31903 First Published: 2013 November 26 20:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain a contract document for the recipient. The text in the email message attempts to convince...