Lucene search
K

7691 matches found

FireEye
FireEye
added 2017/11/28 2:0 p.m.506 views

Newly Observed Ursnif Variant Employs Malicious TLS Callback Technique to Achieve Process Injection

Introduction TLS Thread Local Storage callbacks are provided by the Windows operating system to support additional initialization and termination for per-thread data structures. As previously reported, malicious TLS callbacks, as an anti-analysis trick, have been observed for quite some time and...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2017/11/27 10:29 p.m.102 views

Google Detects Android Spyware That Spies On WhatsApp, Skype Calls

In an attempt to protect Android users from malware and shady apps, Google has been continuously working to detect and remove malicious apps from your devices using its newly launched Google Play Protect service. Google Play Protect—a security feature that uses machine learning and app usage...

7.2CVSS7.3AI score0.47709EPSS
Exploits49
Citrix
Citrix
added 2017/11/27 12:0 a.m.8 views

How to force HTTPS on the ELM

Many customers have security requirements mandating the use of https. There is no way within the management console of the Enterprise Layer Manager to force https, so Engineering has approved this as the officially supported method to configure the appliance to be https-only...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2017/11/25 2:27 a.m.44 views

OSX Meterpreter, Reverse HTTPS Inline

Run the Meterpreter / Mettle server payload stageless This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Module generated by tools/modules/generatemettlepayloads.rb module MetasploitModule CachedSize = 815032 include...

7.3AI score
Exploits0
Metasploit
Metasploit
added 2017/11/25 2:27 a.m.43 views

Linux Meterpreter, Reverse HTTPS Inline

Run the Meterpreter / Mettle server payload stageless This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Module generated by tools/modules/generatemettlepayloads.rb module MetasploitModule CachedSize = 1622448 include...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2017/11/24 12:0 a.m.28 views

Microsoft Windows Rogue Root Certificate Authorities Detection

One or more dangerous self-signed certificates are present on the host machine. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3AI score
Exploits0References4
Trend Micro Simply Security
Trend Micro Simply Security
added 2017/11/22 2:10 p.m.59 views

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of November 20, 2017

It’s that time of year again, when many will gather with their families, eat way too much, and catch those crazy Black Friday sales. I’ve been seeing “Black Friday” sales for almost two weeks now. Cyber Monday, which falls on the Monday after the U.S. Thanksgiving holiday, is probably going to be...

8.4AI score0.1692EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/11/22 12:0 a.m.11 views

Fedora 26 : python-copr (2017-60c61b6e79)

Change default COPR URL route from http://copr.fedoraproject.org to https://copr.fedorainfracloud.org Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much...

5.5AI score
Exploits0References3
Metasploit
Metasploit
added 2017/11/21 7:53 p.m.140 views

Python Meterpreter Shell, Reverse HTTPS Inline

Connect back to the attacker and spawn a Meterpreter shell This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = :dynamic include Msf::Payload::Single include Msf::Payload::Python includ...

0.3AI score
Exploits0
Veracode
Veracode
added 2017/11/21 7:1 a.m.17 views

Cross-site Request Forgery (CSRF) Bypass

Symfony is vulnerable to cross-site request forgery CSRF attacks. The library uses the same CSRF tokens for HTTP and HTTPS connections, allowing a malicious user to sniff tokens sent through HTTP and use them to conduct CSRF attacks...

5.9CVSS6AI score0.01472EPSS
Exploits0References4Affected Software1
Kitploit
Kitploit
added 2017/11/17 9:11 p.m.42 views

SpookFlare - Meterpreter Loader Generator With Multiple Features For Bypassing Client-Side And Network-Side Countermeasures

SpookFlare has a different perspective to bypass security measures and it gives you the opportunity to bypass the endpoint countermeasures at the client-side detection and network-side detection. SpookFlare is a loader generator for Meterpreter Reverse HTTP and HTTPS stages. SpookFlare has custom...

7.8AI score
Exploits0References1
Symfony
Symfony
added 2017/11/17 12:0 a.m.53 views

CVE-2017-16653: CSRF protection does not use different tokens for HTTP and HTTPS

Affected versions Symfony 2.7.0 to 2.7.37, 2.8.0 to 2.8.30, 3.2.0 to 3.2.13, and 3.3.0 to 3.3.12 versions of the Symfony Security component are affected by this security issue. The issue has been fixed in Symfony 2.7.38, 2.8.31, 3.2.14, 3.3.13, 3.4-BETA5, and 4.0-BETA5. Note that no fixes are...

5.9CVSS5.7AI score0.01472EPSS
Exploits0
Friends Of PHP
Friends Of PHP
added 2017/11/16 3:12 p.m.35 views

CVE-2017-16653: CSRF protection does not use different tokens for HTTP and HTTPS

More info at https://symfony.com/cve-2017-16653...

5.9CVSS7.2AI score0.01472EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2017/11/16 3:12 p.m.26 views

CVE-2017-16653: CSRF protection does not use different tokens for HTTP and HTTPS

More info at https://symfony.com/cve-2017-16653...

5.9CVSS7.2AI score0.01472EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2017/11/16 3:12 p.m.28 views

CVE-2017-16653: CSRF protection does not use different tokens for HTTP and HTTPS

More info at https://symfony.com/cve-2017-16653...

5.9CVSS7.2AI score0.01472EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2017/11/15 12:0 a.m.20 views

CVE-2017-7835

Mixed content blocking of insecure HTTP sub-resources in a secure HTTPS document was not correctly applied for resources that redirect from HTTPS to HTTP, allowing content that should be blocked, such as scripts, to be loaded on a page. This vulnerability affects Firefox 57...

7.5CVSS7.1AI score0.01522EPSS
Exploits0References3
OSV
OSV
added 2017/11/14 8:29 p.m.28 views

CVE-2017-12636

CouchDB administrative users can configure the database server via HTTPS. Some of the configuration options include paths for operating system-level binaries that are subsequently launched by CouchDB. This allows an admin user in Apache CouchDB before 1.7.0 and 2.x before 2.1.1 to execute arbitra...

7.2CVSS9.8AI score
Exploits0References6
RedHat Linux
RedHat Linux
added 2017/11/13 5:36 p.m.5 views

httpd: mod_ssl NULL pointer dereference

A NULL pointer dereference flaw was found in the httpd's modssl module. A remote attacker could use this flaw to cause an httpd child process to crash if another module used by httpd called a certain API function during the processing of an HTTPS request...

9.8CVSS7.3AI score0.19953EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2017/11/13 5:35 p.m.70 views

Important: Red Hat Security Advisory: httpd security update

An update for httpd is now available for Red Hat Enterprise Linux 7.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS6.8AI score0.94999EPSS
Exploits13References7
RedHat Linux
RedHat Linux
added 2017/11/13 5:35 p.m.12 views

httpd: mod_ssl NULL pointer dereference

A NULL pointer dereference flaw was found in the httpd's modssl module. A remote attacker could use this flaw to cause an httpd child process to crash if another module used by httpd called a certain API function during the processing of an HTTPS request...

9.8CVSS7.3AI score0.19953EPSS
Exploits0References6
Rows per page
Query Builder