[SECURITY] Fedora 26 Update: systemd-233-4.fc26

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...

FortiOS XSS vulnerabilities via User Groups & Config Revision Comments

Two XSS vulnerabilities were reported to us affecting FortiOS that can be exploited to load and run a remote malicious Javascript in a logged in browser...

Design/Logic Flaw

An issue was discovered in Cloud Foundry Foundation cf-release versions prior to v257; UAA release 2.x versions prior to v2.7.4.14, 3.6.x versions prior to v3.6.8, 3.9.x versions prior to v3.9.10, and other versions prior to v3.15.0; and UAA bosh release uaa-release 13.x versions prior to v13.12,...

CVE-2017-4975

An issue was discovered in Pivotal PCF Tile Generator versions prior to 6.0.0. Tiles created by the PCF Tile Generator create a running open security group that overrides security groups set by the operator...

Today’s File Security is So ‘80s, Part 2: Detect Suspicious File Access with Dynamic Peer Groups

In a previous post, we shared three primary reasons why the traditional, static approach to file security no longer works for today’s modern enterprises. Working groups are formed organically and are cross-functional by nature, making a black and white approach to file access control outdated—it...

Security Bypass Via Unauthorised Overriding Security Groups

tile-generator is vulnerable to security bypass via unauthorized overriding of security groups. The vulnerability exists because applyopensecuritygroup is set to true which allows the overriding of security groups set by the operator...

kernel security and bug fix update

2.6.32-696.3.1.OL6 - Update genkey bug 25599697 2.6.32-696.3.1 - netdrv be2net: Fix endian issue in logical link config command Ivan Vecera 1442979 1436527 - scsi lpfc: update for r 11.0.0.6 Maurizio Lombardi 1439636 1429881 - scsi lpfc: The lpfc driver does not issue RFFID and RFTID in the corre...

How to Configure Multiple License Types within a Single XenApp and XenDesktop Site

A XenApp and XenDesktop license specifies 3 things: Product, Edition, and Model. Previously, each XenApp and XenDesktop site could only consume one type of license product and model at a time. The 7.14 release of XenApp and XenDesktop now includes support for multiple license products and models...

Low Risk Threat: DDoS Extortion Letters

Summary Adversaries calling themselves the Lizard Squad have been sending businesses extortion letters, demanding payment in bitcoin to prevent a Distributed Denial of Service DDoS or other attack against their applications. These letters have been sent to businesses across the globe and across...

kernel security and bug fix update

2.6.32-696.1.1.0.1.el6.OL6 - kernel sched/fair: Initialize throttlecount for new task-groups lazily orabug 25071015 - kernel sched/fair: Do not announce throttled next buddy in dequeuetaskfair orabug 25071015 - kernel sched/fair: Reorder cgroup creation code orabug 25071015 - kernel sched/fair:...

Ad-LDAP-Enum - Active Directory LDAP Enumerator

ad-ldap-enum is a Python script that was developed to discover users and their group memberships from Active Directory. In large Active Directory environments, tools such as NBTEnum were not performing fast enough. By executing LDAP queries against a domain controller, ad-ldap-enum is able to...

Hacking Ali cloud released Windows System the high-risk vulnerability solution-exploits warning-the black bar safety net

4 on 14 November, outside the hacking group discloses a comprising a plurality of Windows Remote exploit tools for the confidential documents. To ensure that the cloud on the user's business security, Ali cloud in 4 month 15 days morning nine points half released a vulnerability announcement and...

PYSEC-2017-21

OpenStack Nova-LXD before 13.1.1 uses the wrong name for the veth pairs when applying Neutron security group rules for instances, which allows remote attackers to bypass intended security restrictions...

CSRF in Facebook/Dropbox - "Mallory added a file using Dropbox"

tl;dr Facebook Groups offers the option to upload files directly from the Dropbox account. This integration is done using the OAuth 2.0 protocol and suffered from a variant of the classic OAuth CSRF defined by Egor Homakov as the the Most Common OAuth2 Vulnerability, see video below: Introduction...

Trump Signs Repeal of ISP Privacy Rules

President Trump signed congressional legislation late Monday that repeals the Federal Communications Commission’s rules that would have prevented broadband ISPs from tracking and selling its customers’ online information. Despite opposition from civil liberties groups, democrats who voted against...

CVE-2016-9464

Nextcloud Server before 9.0.54 and 10.0.0 suffers from an improper authorization check on removing shares. The Sharing Backend as implemented in Nextcloud does differentiate between shares to users and groups. In case of a received group share, users should be able to unshare the file to themselv...

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3234-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3234-1 advisory. Ralf Spenneberg discovered that the ext4 implementation in the Linux kernel did not properly validate meta block groups. An attacker with physical access...

USN-3234-1: Linux kernel vulnerabilities

Ralf Spenneberg discovered that the ext4 implementation in the Linux kernel did not properly validate meta block groups. An attacker with physical access could use this to specially craft an ext4 image that causes a denial of service system crash. CVE-2016-10208 It was discovered that the Linux...

Fiyo CMS 2.0.6.1 - Privilege Escalation

Fiyo CMS 2.0.6.1 - Privilege Escalation Exploit Title: Fiyo CMS 2.0.6.1 allows remote authenticated users to gain privileges via a modified level parameter Google Dork: no Date: 11-03-2017 Exploit Author: @runggareksya, @dvnrcy Vendor Homepage: http://www.fiyo.org Software Link:...

Tiger Post Facebook Auto Post Multi Pages/Groups/Profiles 3.0.1 SQL Injection

Exploit Title: Tiger Post - Facebook Auto Post Multi Pages/Groups/Profiles v3.0.1 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy: https://codecanyon.net/item/tiger-post-facebook-auto-post-multi-pagesgroupsprofiles/15279075 Demo:...