58 matches found
CVE-2021-38396
The CVE-2021-38396 issue affects Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor Model 3120. The vulnerability is due to the programmer installation utility not performing cryptographic authenticity or integrity checks on software on the flash drive, enabling an attacker with physical...
PlayStation: size_t-to-int vulnerability in exFAT leads to memory corruption via malformed USB flash drives
Summary A heap-based buffer overflow can be triggered by a malformed exFAT USB flash drive. Vulnerability The vulnerability is in Sony's exFAT implementation where there is an integer truncation from 64bit to 32bit on a size variable that is used to allocate the up-case table: c int...
IBM Security Network Protection / IBM QRadar Network Security / XGS Technote Index
Question What Technotes exist for the IBM Security Network Protection / IBM QRadar Network Security XGS sensor? Answer The content below includes a list of all technical notes published under IBM Security Network Protection / IBM QRadar Network Security by category and sorted by popularity. Users...
Cisco Secure Web Appliance Elevation of Privilege Vulnerability
Cisco AsyncOS is an operating system for Cisco devices from Cisco USA. Cisco AsyncOS for the Cisco Secure Web Appliance suffers from an operating system command injection vulnerability that stems from insufficient validation of user-supplied web interface and CLI input. The vulnerability can be...
CVE-2018-17177
An issue was discovered on Neato Botvac Connected 2.2.0 and Botvac 85 1.2.1 devices. Static encryption is used for the copying of so-called "black box" logs event logs and core dumps to a USB stick. These logs are RC4-encrypted with a 9-character password of ^JEd4W!I that is obfuscated by hiding ...
IBM Storwize for Lenovo initialization USB drives contain malware - us
Lenovo Security Advisory: LEN-14957 Potential Impact: Malware infection on system used to launch initialization tool Severity: Medium Summary Description: Some USB flash drives containing the initialization tool shipped with the IBM Storwize for Lenovo V3500, V3700 and V5000 Gen 1 storage systems...
Cisco AnyConnect SBL 4.3.04027 Local Privilege Escalation (CVE-2017-3813)
Run CMD.EXE with system privileges 1. Start Cisco anyconnect from logon screen. 2. Once the Cisco app comes up where you can select a profile and hit connect hold CTRL and hit B. 3. When the Cisco about window appears then select the URL at the bottom. This will open Internet Explorer or you can...
Cisco AnyConnect SBL 4.3.04027 Local Privilege Escalation
Exploit Title: Cisco AnyConnect Start Before Logon SBL local privilege escalation. CVE-2017-3813 Date: 02/27/2017 Exploit Author: @Pcchillin Software Link: http://www.cisco.com/c/en/us/support/security/anyconnect-secure-mobility-client/tsd-products-support-series-home.html Version: 4.3.04027 and...
Cisco AnyConnect Secure Mobility Client 4.3.04027 - Local Privilege Escalation
Cisco AnyConnect Secure Mobility Client 4.3.04027 - Local Privilege Escalation Exploit Title: Cisco AnyConnect Start Before Logon SBL local privilege escalation. CVE-2017-3813 Date: 02/27/2017 Exploit Author: @Pcchillin Software Link:...
Anonymous Offline Communications System: PirateBox
Anonymous Offline Communications System PirateBox creates offline wireless networks designed for anonymous file sharing, chatting, message boarding, and media streaming. You can think of it as your very own portable offline Internet in a box! When users join the PirateBox wireless network and ope...
NetworkMiner 2.0 - Network Forensic Analysis Tool (NFAT)
NetworkMiner is a Network Forensic Analysis Tool NFAT for Windows but also works in Linux / Mac OS X / FreeBSD. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the...
CVE-2015-5901
The Secure Empty Trash feature in Finder in Apple OS X before 10.11 improperly deletes Trash files, which might allow local users to obtain sensitive information by reading storage media, as demonstrated by reading a flash drive...
Design/Logic Flaw
The Secure Empty Trash feature in Finder in Apple OS X before 10.11 improperly deletes Trash files, which might allow local users to obtain sensitive information by reading storage media, as demonstrated by reading a flash drive...
CVE-2015-5901
CVE-2015-5901 affects Apple OS X Finder’s Secure Empty Trash feature, where Trash files may not be securely deleted due to improper deletion, enabling local attackers to read data from storage media (e.g., a flash drive). Affected: OS X versions prior to 10.11. Root cause: implementation failure ...
CVE-2015-5901
The Secure Empty Trash feature in Finder in Apple OS X before 10.11 improperly deletes Trash files, which might allow local users to obtain sensitive information by reading storage media, as demonstrated by reading a flash drive...
USB&WiFi Flash Drive v1.3 iOS - Code Execution Vulnerability
Document Title: =============== USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1316 Release Date: ============= 2014-09-15 Vulnerability Laboratory ID VL-ID: ===================================...
USBWiFi Flash Drive 1.3 iOS - Code Execution
USBWiFi Flash Drive 1.3 iOS - Code Execution Document Title: =============== USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1316 Release Date: ============= 2014-09-15 Vulnerability Laboratory ...
USB&WiFi Flash Drive 1.3 iOS - Code Execution
Document Title: =============== USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1316 Release Date: ============= 2014-09-15 Vulnerability Laboratory ID VL-ID: ===================================...
Phone Drive v3.0.3 iOS - Multiple Critical Vulnerabilities
Document Title: =============== Phone Drive v3.0.3 iOS - Multiple Critical Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1037 Release Date: ============= 2013-07-30 Vulnerability Laboratory ID VL-ID: ====================================...
Anonymous Offline File-Sharing and Communications System: PirateBox
PirateBox creates offline wireless networks designed for anonymous file sharing, chatting, message boarding, and media streaming. You can think of it as your very own portable offline Internet in a box! When users join the PirateBox wireless network and open a web browser, they are automatically...