52 matches found
Cisco Umbrella Secure Web Gateway文件解密绕过漏洞
Cisco Umbrella is a cloud security platform from the U.S. company Cisco Cisco. The platform prevents cyber threats such as phishing, malware and ransomware.Cisco Umbrella Secure Web Gateway has a file decryption bypass vulnerability that can be exploited by authenticated attackers to bypass the...
Baphomet - Basic Concept Of How A Ransomware Works
This is a proof of concept of how a ransomware works, and some techniques that we usually use to hijack our files. This project is written in C using the net-core application framework 3.1.The main idea of the code is to make it as readable as possible so that people have an idea of how this type...
Cryptr - A Simple Shell Utility For Encrypting And Decrypting Files Using OpenSSL
A simple shell utility for encrypting and decrypting files using OpenSSL. Installation git clone https://github.com/nodesocket/cryptr.git ln -s "$PWD"/cryptr/cryptr.bash /usr/local/bin/cryptr Bash tab completion Add tools/cryptr-bash-completion.bash to your tab completion file directory...
Encryption 101: decryption tool code walkthrough
We have reached the final installment of our Encryption 101 series. In the prior post, we walked through, in detail, the thought process while looking at the Princess Locker ransomware. We talked about the specific ways to narrow down the analysis toward the encryption portions, the weaknesses in...
iSmartAlarm CubeOne Log File Decryption Vulnerability
The iSmartAlarm CubeOne is a smart home center control device from iSmartAlarm USA. A security vulnerability exists in the firmware of iSmartAlarm CubeOne 2.2.4.8 and earlier versions. An attacker can exploit the vulnerability to decrypt log files...
Code injection
Encryption key exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to decrypt log files via an exposed key...
CVE-2017-13663
Encryption key exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to decrypt log files via an exposed key...
CVE-2017-13663
CVE-2017-13663 affects iSmartAlarm CubeOne firmware (2.2.4.8 and earlier). The vulnerability stems from an exposed encryption key in the device firmware, enabling an attacker to decrypt log files. Documented impact: confidentiality of log data compromised; no explicit remediation details or patch...
CVE-2017-16560
SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where they can remain indefinitely in certain situations, such as if the file is being edited when the user exits the application or if the application crashes...
CVE-2017-16560
SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where they can remain indefinitely in certain situations, such as if the file is being edited when the user exits the application or if the application crashes...
Hitachi HIBUN Confidential File Decryption Program Untrustworthy Search Path Vulnerability (CNVD-2017-30835)
Hitachi HIBUN Confidential File Decryption program is a set of confidential file confidentiality program from Hitachi Solutions Japan. An untrustworthy search path vulnerability exists in Hitachi HIBUN Confidential File Decryption program versions prior to 10.50.0.5. The vulnerability can be...
Design/Logic Flaw
Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10863...
CVE-2017-10863
Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10865...
Design/Logic Flaw
Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10865...
CVE-2017-10865
Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10863...
CVE-2017-10865
Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10863...
CVE-2017-10863
Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10865...
CVE-2017-10865
Hitachi HIBUN Confidential File Decryption Program (pre-10.50.0.5) is affected by an untrusted search path vulnerability that can allow a local attacker to escalate privileges by placing a Trojan DLL in an unsecured directory. The root cause is an untrusted search path during DL loading. The asso...
CVE-2017-10863
Hitachi HIBUN Confidential File Decryption Program is affected by an untrusted search path vulnerability in versions prior to 10.50.0.5. The underlying issue allows a local attacker to gain privileges by placing a Trojan horse DLL in an exploitable directory, leveraged via a malicious DLL search ...
HIBUN Confidential File Decryption program may insecurely load Dynamic Link Libraries
Overview HIBUN Confidential File Decryption program provided by Hitachi Solutions, Ltd. contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Note that this vulnerability is different from JVN55516206. Yuji Tounai of NTT Communications...