CVE-2005-0620

Einstein 1.0 stores credit card information in plaintext in the world-readable wallets.dat file, which allows local users to steal the information...

Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester

Summary From mid-June through mid-July 2022, CISA conducted an incident response engagement at a Federal Civilian Executive Branch FCEB organization where CISA observed suspected advanced persistent threat APT activity. In the course of incident response activities, CISA determined that cyber...

einstein-audio.de Cross Site Scripting vulnerability OBB-3031661

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

einstein-audio.de Cross Site Scripting vulnerability OBB-2793510

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Emotet Malware

Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge ATT &CK® framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. This product was written by the Cybersecurity and Infrastructure Security Agency CISA and the Multi-State...

Feds Sound Alarm Over Emotet Attacks on State, Local Govs

A dramatic uptick in Emotet phishing attacks since July has led the U.S. Cybersecurity and Infrastructure Security Agency CISA to issue a warning that state and local governments need to fortify their systems against the trojan. “This increase has rendered Emotet one of the most prevalent ongoing...

EINSTEIN Data Trends – 30-day Lookback

Summary Cybersecurity and Infrastructure Security Agency CISA analysts have compiled the top detection signatures that have been the most active over the month of May in our national Intrusion Detection System IDS, known as EINSTEIN. This information is meant to give the reader a closer look into...

aplicacoes.einstein.br XSS vulnerability

Open Bug Bounty ID: OBB-661663 Description| Value ---|--- Affected Website:| aplicacoes.einstein.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Einstein™ Brain Trainer Free - Base64 encoded String, Customized SSL, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Einstein™ Brain Trainer Free published at the 'play' market has multiple vulnerabilities...

They Named it — Einstein, But $6 Billion Firewall Fails to Detect 94% of Latest Threats

The US government's $6 Billion firewall is nothing but a big blunder. Dubbed EINSTEIN, the nationwide firewall run by the US Department of Homeland Security DHS is not as smart as its name suggests. An audit conducted by the United States Government Accountability Office GAO has claimed that the...

Einstein <= 1.01 Local Password Disclosure Exploit (asm)

No description provided by source. ; Nothing Special other than the program doesnt encode the user/pass in the registry. ; Einstein v1.01 - http://www.Bfriendly.com some crappy file school sharing program ; made because i think C is overkill for these types of local exploits, ; shit we can does...

Einstein <= 1.01 Local Password Disclosure Exploit

No description provided by source. / Einstein v1.01 Local Password Disclosure Exploit by Kozan Application: Einstein v1.01 and previous versions Procuder: Bfriendly.com Vulnerable Description: Einstein v1.01 discloses passwords to local users. Discovered & Coded by: Kozan Credits to ATmaCA Web:...

[SECURITY] Fedora 19 Update: boinc-client-7.2.33-2.git1994cc8.fc19

The Berkeley Open Infrastructure for Network Computing BOINC is an open- source software platform which supports distributed computing, primarily in the form of "volunteer" computing and "desktop Grid" computing. It is well suited for problems which are often described as "trivially parallel". BO...

Firstload.com Cross Site Scripting

Exploit Title: Firstload.com usenet Provider Cross Site Scripting Google Dork: - Date: 30/3/2012 Author: Crim3R contact : [email protected] Tested on: ALL CVE : XSS Vulnerable searching for filenames is Vulnerable to Cross Site Scripting http://www.firstload.com/?uniq=1364f75a67db1bc2&log=47382&fn=...

Einstein, Feynman and Hopper Talk Cloud Security and Hacking

Today’s modern security problems hadn’t yet emerged when pioneers Richard Feynman, Grace Hopper and Albert Einstein were in their primes, but that doesn’t mean that they don’t have strong opinions on the topics of hacking, cloud security and network security. In this video from the AT&T...

GWScript2.50.txt

http://sx02.coresec.de/advisories/153.txt GW Script 2.50 Homepage: http://sentinel.rdw-allianz.de/downloads.php Affected Version: = 2.1.4 Patched Version: / Date: 23.09.2006 Application Risk: High Vendor notified : 23.09.2006 Vulnerable found : Sx02 http://sx02.coresec.de Vulnerable code in...

[SA14455] Einstein Sensitive Information Disclosure

---------------------------------------------------------------------- Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l...

CVE-2005-0619

The CVE-2005-0619 entry describes Einstein 1.0.1 storing usernames and passwords in plaintext in the Windows registry, enabling local privilege escalation. Affected component: registry-stored credentials within Einstein 1.0.1. Root cause: insecure plaintext storage of sensitive data in the regist...

CVE-2005-0620

The CVE-2005-0620 entry concerns Einstein 1.0, where credit card information is stored in plaintext within the world-readable wallets.dat. This plaintext storage enables local users to access sensitive data. The description confirms the affected component (wallets.dat containing credentials) and ...

CVE-2005-0619

Einstein 1.0.1 stores sensitive information such as usernames and passwords in plaintext in the registry, which allows local users to gain privileges...