Microsoft Exchange – Code Execution

Gaining access to the mailbox of a domain user can lead to execution of arbitrary code by utilising the credentials that have been discovered. Various techniques have been discovered by Nick Landers and Etienne Stalmans that involve the abuse of Outlook common functionality in order to execute...

Check Point Response to CVE-2019-8461 - Endpoint Security Initial Client

...

DEBIAN-CVE-2019-12312

In Libreswan 3.27 an assertion failure can lead to a pluto IKE daemon restart. An attacker can trigger a NULL pointer dereference by initiating an IKEv2 IKESAINIT exchange, followed by a bogus INFORMATIONAL exchange instead of the normallly expected IKEAUTH exchange. This affects...

UBUNTU-CVE-2019-12098

In the client side of Heimdal before 7.6.0, failure to verify anonymous PKINIT PA-PKINIT-KX key exchange permits a man-in-the-middle attack. This issue is in krb5initcredsstep in lib/krb5/initcredspw.c...

Rockwell Automation/Allen-Bradley MicroLogix Controllers <= 16.00 Predictable Value Range

Binary data 720125.prm...

Denial Of Service (DoS)

NTP is vulnerable to denial of service attacks. A remote, unauthenticated attacker could set the jitter value to be higher than expected causing an error in the calculation of root sync delay leading to denial of service conditions. Affected component is Initial Sync Calculation...

Fedora 30 : 1:gnome-bluetooth / at-spi2-core / atomix / bijiben / containers / etc (2019-ac2a21ff07)

This update fixes a bug in the Meson build system which caused binaries and libraries to incorrectly be marking as requiring an executable stack. This makes them more vulnerable to security issues, and also can result in errors caused by SELinux denials. This update also provides rebuilds of all...

DHS Orders Federal Agencies to Patch Critical Flaws Within 15 Days

In recent years, we have seen how hackers prey on those too lazy or ignorant to install security patches, which, if applied on time, would have prevented some devastating cyber attacks and data breaches that happened in major organisations. The United States Department of Homeland Security DHS ha...

Explained: like-farming

Like-farming, aka like-harvesting, is a method used by commercial parties and scammers alike to raise the popularity of a site or domain. The ultimate dream of every like-farmer is for his post to go viral by accumulating as many likes and shares as possible from all over the world. Like-farmers...

[SECURITY] Fedora 30 Update: gnome-initial-setup-3.32.1-2.fc30

GNOME Initial Setup is an alternative to firstboot, providing a good setup experience to welcome you to your system, and walks you through configuring it. It is integrated with gdm...

AXIS Camera Unconfigured Password Detection

The remote host seems to be an Axis Network Camera. Initial configuration of this device has not yet been performed, allowing anyone to set the administrator password. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid123935; scriptversion"1.5"; scriptcvsdate"Date:...

DEBIAN-CVE-2019-10723

An issue was discovered in PoDoFo 0.9.6. The PdfPagesTreeCache class in doc/PdfPagesTreeCache.cpp has an attempted excessive memory allocation because nInitialSize is not validated...

PT-2019-12012 · Podofo +5 · Podofo +5

Name of the Vulnerable Software and Affected Versions: PoDoFo version 0.9.6 Description: An issue was discovered in the PdfPagesTreeCache class where there is an attempted excessive memory allocation due to the lack of validation of the nInitialSize variable. Recommendations: For PoDoFo version...

CVE-2018-15782

The Quick Setup component of RSA Authentication Manager versions prior to 8.4 is vulnerable to a relative path traversal vulnerability. A local attacker could potentially provide an administrator with a crafted license that if used during the quick setup deployment of the initial RSA Authenticati...

PyLocky Ransomware Decryption Tool Released — Unlock Files For Free

If your computer has been infected with PyLocky Ransomware and you are searching for a free ransomware decryption tool to unlock or decrypt your files—your search might end here. Security researcher Mike Bautista at Cisco's Talos cyber intelligence unit have released a free decryption tool that...

PyLocky Ransomware Decryption Tool Released — Unlock Files For Free

If your computer has been infected with PyLocky Ransomware and you are searching for a free ransomware decryption tool to unlock or decrypt your files—your search might end here. Security researcher Mike Bautista at Cisco's Talos cyber intelligence unit have released a free decryption tool that...

ZTE ZXR10 8905E TCP Initial Serial Number (ISN) Reuse Vulnerability

The ZTE ZXR10 8905E is a router product from China's ZTE ZTE. A security vulnerability exists in the ZTE ZXR10 8905E 3.03.10.B23P2 and previous versions. A remote attacker can exploit this vulnerability to conduct spoofing attacks...

CVE-2018-7356

All versions up to V3.03.10.B23P2 of ZTE ZXR10 8905E product are impacted by TCP Initial Sequence Number ISN reuse vulnerability, which can generate easily predictable ISN, and allows remote attackers to spoof connections...

CVE-2018-15318

In BIG-IP 14.0.0-14.0.0.2, 13.1.0.4-13.1.1.1, or 12.1.3.4-12.1.3.6, If an MPTCP connection receives an abort signal while the initial flow is not the primary flow, the initial flow will remain after the closing procedure is complete. TMM may restart and produce a core file as a result of this...

Web Testing Framework Samurai

The Samurai Web Testing Framework is a virtual machine, supported on VirtualBox and VMWare, that has been pre-configured to function as a web pen-testing environment. The VM contains the best of the open source and free tools that focus on testing and attacking websites. In developing this...