2594 matches found
Siemens Automation License Manager Detection (Windows SMB Login)
SMB login-based detection of Siemens Automation License Manager. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Blockchain and Trust
In his 2008 white paper that first proposed bitcoin, the anonymous Satoshi Nakamoto concluded with: "We have proposed a system for electronic transactions without relying on trust." He was referring to blockchain, the system behind bitcoin cryptocurrency. The circumvention of trust is a great...
CVE-2018-6084
Insufficiently sanitized distributed objects in Updater in Google Chrome on macOS prior to 66.0.3359.117 allowed a local attacker to execute arbitrary code via an executable file...
CVE-2018-6084
Insufficiently sanitized distributed objects in Updater in Google Chrome on macOS prior to 66.0.3359.117 allowed a local attacker to execute arbitrary code via an executable file...
CVE-2018-6084
Removed by vendor...
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Security Key Lifecycle Manager (SKLM) (CVE-2018-1643)
Summary IBM WebSphere Application Server is shipped as a component of IBM Security Key Lifecycle Manager SKLM. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulleti...
Code Execution Vulnerability in HOLLiAS_MACS Distributed Control System by HOLLiAS
HOLLIS Group is a professional automation company integrating R&D, production, sales and technical service. A code execution vulnerability exists in the HOLLiASMACS distributed control system of HOLLiS, which can be exploited by attackers to execute arbitrary code...
Information Disclosure Vulnerability in HOLLiAS_MACS Distributed Control System by HOLLiAS
HOLLIS Group is a professional automation company integrating R&D, production, sales and technical service. An information leakage vulnerability exists in the HOLLiASMACS distributed control system of HOLLiS, which can be exploited by an attacker to obtain a login password...
Permission License Access Control Vulnerability in HOLLiAS_MACS Distributed Control System by HOLLiAS
HOLLIS Group is a professional automation company integrating R&D, production, sales and technical service. A privilege permission access control vulnerability exists in the HOLLiASMACS distributed control system of HOLLiS, which can be exploited by an attacker to overwrite the original password...
Erlang Port Mapper Daemon Cookie Remote Code Execution Exploit
The erlang port mapper daemon is used to coordinate distributed erlang instances. Should an attacker get the authentication cookie, remote code execution is trivial. Usually, this cookie is named ".erlang.cookie" and varies on location. This module requires Metasploit:...
Erlang - Port Mapper Daemon Cookie Remote Code Execution (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Erlang Port Mapper Daemon Cookie RCE', 'Description' = %q The erlang port mapper daemon is used to coordinate distributed erlang instances. Shoul...
My Takeaways from the Gartner I&O Conference
By Renata Budko, Wallarm Last week I spent a few days in Las Vegas with the great folks at the Gartner IT Infrastructure, Operations & Cloud Strategies Conference. Gathered for the conference there were experts around the world from analysts to VPs to infrastructure and operations leaders to...
The vulnerability of the distributed Git version control system, related to errors in the processing of specially crafted submodule names, allows a hacker to execute arbitrary code.
The vulnerability of the distributed Git version control system is related to errors in the processing of specially crafted module names in the .gitmodules file. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CentOS Update for emacs-git CESA-2018:3408 centos7
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CouchDB: Multiple vulnerabilities
Background Apache CouchDB is a distributed, fault-tolerant and schema-free document-oriented database. Description Multiple vulnerabilities have been discovered in CouchDB. Please review the CVE identifiers referenced below for details. Impact A remote attacker could execute arbitrary code or...
Crypto currency mining machine using Elasticsearch vulnerability propagation-vulnerability warning-the black bar safety net
ElasticSearch is based on Lucene search server. It provides a distributed multi-user capability of the full-text search engine, based on the RESTful web interface. Elasticsearch is developed in Java, and as the Apache license under the terms of the open source release, is the current popular...
[SECURITY] Fedora 29 Update: hadoop-2.7.7-1.fc29
Apache Hadoop is a framework that allows for the distributed processing of large data sets across clusters of computers using simple programming model s. It is designed to scale up from single servers to thousands of machines, ea ch offering local computation and storage...
[SECURITY] Fedora 28 Update: hadoop-2.7.7-1.fc28
Apache Hadoop is a framework that allows for the distributed processing of large data sets across clusters of computers using simple programming model s. It is designed to scale up from single servers to thousands of machines, ea ch offering local computation and storage...
Important: Red Hat Security Advisory: Red Hat Fuse 7.2 security update
An update is now available for Red Hat Fuse. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
[SECURITY] Fedora 28 Update: glusterfs-4.1.6-1.fc28
GlusterFS is a distributed file-system capable of scaling to several petabytes. It aggregates various storage bricks over Infiniband RDMA or TCP/IP interconnect into one large parallel network file system. GlusterFS is one of the most sophisticated file systems in terms of features and...