CVE-2023-30690

Improper input validation vulnerability in Duo prior to SMR Oct-2023 Release 1 allows local attackers to launch privileged activities...

LogonUI.exe process hanging after logoff from multi-session VDA

When utilizing multi-session VDA with the Duo Security agent installed, users may close out the applications in an attempt to log off of the VDA but the LogonUI.exe process will hang. This will result in multiple Terminal Services sessions showing active with the same session number, but no user...

Ankitects Anki LaTeX Blocklist Bypass vulnerability

Talos Vulnerability Report TALOS-2024-1994 Ankitects Anki LaTeX Blocklist Bypass vulnerability July 22, 2024 CVE Number CVE-2024-32152 SUMMARY A blocklist bypass vulnerability exists in the LaTeX functionality of Ankitects Anki 24.04. A specially crafted malicious flashcard can lead to an arbitra...

Ankitects Anki Latex Incomplete Blocklist Vulnerability

Talos Vulnerability Report TALOS-2024-1992 Ankitects Anki Latex Incomplete Blocklist Vulnerability July 22, 2024 CVE Number CVE-2024-29073 SUMMARY An vulnerability in the handling of Latex exists in Ankitects Anki 24.04. When Latex is sanitized to prevent unsafe commands, the verbatim package,...

Cisco Duo 授权问题漏洞

Cisco Duo is a fully managed solution from Cisco, Inc. Provides secure access to your applications and data. Cisco Duo suffers from an authorization issue vulnerability that stems from a failure to properly match the smart card's designated user to an authenticated user, which can be exploited by...

500 Chrome Extensions Caught Stealing Private Data of 1.7 Million Users

Google removed 500 malicious Chrome extensions from its Web Store after they found to inject malicious ads and siphon off user browsing data to servers under the control of attackers. These extensions were part of a malvertising and ad-fraud campaign that's been operating at least since January...

Unpatched Bug Let Attackers Bypass Windows Lock Screen On RDP Sessions

A security researcher today revealed details of a newly unpatched vulnerability in Microsoft Windows Remote Desktop Protocol RDP. Tracked as CVE-2019-9510, the reported vulnerability could allow client-side attackers to bypass the lock screen on remote desktop RD sessions. Discovered by Joe...

Microsoft Intelligent Security Association expands with new members and products

Last April, we introduced theMicrosoft Intelligent Security Associationa group of 19 security technology providers who have integrated their solutions with a select set of Microsoft products to provide customers better protection, detection, and response. Today, we are pleased to announce five ne...

FreeBSD : duo -- Two-factor authentication bypass (738e8ae1-46dd-11e7-a539-0050569f7e80)

The duo security team reports : An untrusted user may be able to set the httpproxy variable to an invalid address. If this happens, this will trigger the configured 'failmode' behavior, which defaults to safe. Safe mode causes the authentication to report a success. %NASLMINLEVEL 70300 C Tenable...

duo -- Two-factor authentication bypass

The duo security team reports: An untrusted user may be able to set the httpproxy variable to an invalid address. If this happens, this will trigger the configured 'failmode' behavior, which defaults to safe. Safe mode causes the authentication to report a success...

OWA and Offic365 two-factor authentication bypass-vulnerability warning-the black bar safety net

Foreword Full disclosure: the BLACK HILLS information security very much in favor of responsible disclosure of vulnerabilities. 2 0 1 6 9 2 8, I to Microsoft reported this vulnerability, may have been to this article publishing 2016.11.2, Microsoft for this vulnerability is always without any...

Two More Self-Signed Certs, Private Keys Found on Dell Machines

eDellroot is not the only self-signed trusted root certificate on Dell computers. Researchers at Duo Security found two more on a Dell Inspiron 14-inch laptop purchased by Darren Kemp, one of its researchers who is based in Calgary, Canada, including one cert related to eDellroot that also ships...

Latest EMET Bypass Targets WoW64 Windows Subsystem

Backwards compatibility, a necessary evil for Microsoft in its need to support so many legacy applications on Windows, may be its undoing as researchers have found a way to exploit this layer in the operating system to bypass existing mitigations against memory-based exploits. Specifically in thi...

FreeBSD : mysql -- SSL Downgrade (36bd352d-299b-11e5-86ff-14dae9d210b8) (BACKRONYM)

Duo Security reports : Researchers have identified a serious vulnerability in some versions of Oracle's MySQL database product that allows an attacker to strip SSL/TLS connections of their security wrapping transparently. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

New MySQL Bug Can Strip SSL Protection From Connections

Researchers have identified a serious vulnerability in some versions of Oracle’s MySQL database product that allows an attacker to strip SSL/TLS connections of their security wrapping transparently. The vulnerability is the result of the way that an option in MySQL handles requests for secure...

DUO-PSA-2014-007: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2014-007 Publication Date: 2014-10-15 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified an issue that may allow local users to bypass second factor authentication when using the pamduo component of duounix in...

DUO-PSA-2014-007: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2014-007 Publication Date: 2014-10-15 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified an issue that may allow local users to bypass second factor authentication when using the pamduo component of duounix in...

DUO-PSA-2014-006: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2014-006 Publication Date: 2014-10-09 Revision Date: 2014-10-16 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in which it may be possible for users to perform certain actions without completing...

DUO-PSA-2014-006: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2014-006 Publication Date: 2014-10-09 Revision Date: 2014-10-16 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in which it may be possible for users to perform certain actions without completing...

Flaw Lets Attackers Bypass PayPal Two-Factor Authentication

There’s a vulnerability in the way that PayPal handles certain requests from mobile clients that can allow an attacker to bypass the two-factor authentication mechanism for the service and transfer money from a victim’s account to any recipient he chooses. The flaw lies in the way that the PayPal...