CVE-2012-6708

jQuery before 1.9.0 is vulnerable to Cross-site Scripting XSS attacks. The jQuerystrInput function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '' character anywhere in the string, giving...

openSUSE Security Update : haproxy (openSUSE-2020-444)

This update for haproxy fixes the following issues : - CVE-2020-11100: Fixed an H2/HPAC vulnerability ch might have allowed arbitrary writes into a 32-bit relative address space bsc1168023. This update was imported from the SUSE:SLE-15-SP1:Update update project. C Tenable Network Security, Inc. T...

F5 Networks BIG-IP : BIG-IP HTTP profile vulnerability (K70275209)

Undisclosed HTTP behavior may lead to a denial of service. CVE-2020-5857 Impact This vulnerability impacts the BIG-IP data plane virtual servers with HTTP profiles. A BIG-IP module that has a virtual server with an associated HTTP profile and is processing traffic is impacted. C Tenable Network...

Detect Apache Tomcat AJP File Inclusion Vulnerability (CVE-2020-1938) using Qualys WAS

As previously reported, a severe vulnerability exists in Apache Tomcat’s Apache JServ Protocol. The Chinese cyber security company Chaitin Tech discovered the vulnerability, named “Ghostcat”, which is tracked using CVE-2020-1938 and rated critical severity with a CVSS v3 score of 9.8. This blog...

Fedora 31 : python-waitress (2020-65a7744e38)

Update to 1.4.3, fixing CVE-2019-16786 CVE-2019-16785 CVE-2019-16789 and adding various other hardening features. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and forma...

Juniper JSA10979

The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the JSA10979 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self- reported version numbe...

Memory corruption vulnerability exists in WPS Office of Zhuhai Kingsoft Office Software Co. Ltd (CNVD-2020-18694)

Kingsoft WPS is Kingsoft Office Software office software, you can realize the office software commonly used text, forms, presentations and other functions. Zhuhai Kingsoft Office Software Co., Ltd WPS Office memory corruption vulnerability, an attacker can exploit the vulnerability caused by buff...

Solaris 10 (sparc) : 125279-07

CDE 1.6: dtsession patch. Date this patch was last updated by Sun : Jan/13/20 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid132891; scriptversion"1.2"; scriptcvsdate"Date:...

JetBrains TeamCity 2018.2.4 - Remote Code Execution

Exploit Title: JetBrains TeamCity 2018.2.4 - Remote Code Execution Date: 2020-01-07 Exploit Author: Harrison Neal Vendor Homepage: https://www.jetbrains.com/ Software Link: https://confluence.jetbrains.com/display/TW/Previous+Releases+Downloads Version: 2018.2.4 for Windows CVE: CVE-2019-15039...

RHEL 8 : nss (RHSA-2019:4114)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:4114 advisory. Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server...

Google Chrome < 78.0.3904.108 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 78.0.3904.108. It is, therefore, affected by multiple vulnerabilities as referenced in the 201911stable-channel-update-for-desktop18 advisory. - Out of bounds memory access in WebBluetooth in Google Chrome prior to...

The cybercrime ecosystem: attacking blogs

Executive summary The Cybercrime Ecosystem is a series of articles explaining how cybercriminals operate, what drives them, what techniques they use and how we, regular Internet users, are part of that ecosystem. The articles will also cover technical details and up-to-date research on the threat...

RHEL 7 : OpenShift Container Platform 4.1 (RHSA-2019:3265)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3265 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

Critical Microsoft Remote Desktop Flaw Fixed in Security Update

Microsoft released patches for nine critical vulnerabilities as part of its October Patch Tuesday security update, including one for a Remote Desktop bug that could allow a remote attacker to execute code on victims’ machines. Overall, Microsoft issued fixes for 59 vulnerabilities – including nin...

Photon OS 2.0: Binutils PHSA-2019-2.0-0173

An update of the binutils package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0173. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Google Chrome < 76.0.3809.132 Vulnerability

The version of Google Chrome installed on the remote Windows host is prior to 76.0.3809.132. It is, therefore, affected by a vulnerability as referenced in the 201908stable-channel-update-for-desktop26 advisory. - Use after free in Blink in Google Chrome prior to 76.0.3809.132 allowed a remote...

RHEL 7 : ghostscript (RHSA-2019:2462)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:2462 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

Slackware 14.2 : Slackware 14.2 kernel (SSA:2019-202-01)

New kernel packages are available for Slackware 14.2 to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2019-202-01. The text itself is copyright C Slackware Linux, Inc. include'compat.inc...

Fedora 29 : kernel / kernel-headers (2019-69c132b061)

Update to v5.1.15 ---- Update to v5.1.14 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable...

PHDays 9: new methods of Vulnerability Prioritization in Vulnerability Management products

On May 21, I spoke at the PHDays 9 conference. I talked about new methods of Vulnerability Prioritization in the products of Vulnerability Management vendors. During my 15 minutes time slot I defined the problems that this new technology has to solve, showed why these problems could NOT be solved...