CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2016/06/16 2:0 p.m.•61 views

CVE-2016-5361

Libreswan vulnerable component: programs/pluto/ikev1.c in libreswan prior to 3.17. Root cause: IKEv1 initial-responder state retransmits can be abused by spoofed UDP packets to cause a denial-of-service (traffic amplification). Impact is DoS via network traffic amplification. Remediation: apply v...

7.5CVSS7.2AI score0.00953EPSS

Exploits0References4Affected Software1

Exploit DB•added 2016/04/18 12:0 a.m.•38 views

pfSense Community Edition 2.2.6 - Multiple Vulnerabilities

, , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ \ / / \ / \ / / | \ \ Y Y \ / /| / \ /||| / / /.-. / /:wq x.0 '=.|w|.=' =''"''=. presents.. PfSense Community Edition Multiple Vulnerabilities Affected versions: PfSense Community Edition = 2.2.6 PDF:...

7.4AI score

myhack58•added 2016/03/09 12:0 a.m.•12 views

Technology sharing: the CBC, Padding Oracle attack re-interpretation, how to break HTTPS-bug warning-the black bar safety net

Why is a re-interpretation? Now about the Padding Oracle attack presentation, the better the articles including the content, are taken from this article in foreign languages. However, the text in the discussion a key issue of how to confirm the Padding bits, and no mention, which makes many puris...

7.2AI score

exploitpack•added 2016/03/03 12:0 a.m.•42 views

Schneider Electric SBO AS - Multiple Vulnerabilities

Schneider Electric SBO AS - Multiple Vulnerabilities Exploit Title: Schneider Electric SBO / AS Multiple Vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: www.schneider-electric.com Versions Reported: Automation Server Series AS, AS-P, v1.7 and prior CVE-ID: CVE-2016-2278 About...

9CVSS0.4AI score0.14044EPSS

Exploits7

ThreatPost•added 2016/02/17 9:26 a.m.•7 views

Katie Moussouris on the Latest Wassenaar Arrangement Rules

Threatpost editor Mike Mimoso talks to HackerOne chief policy officer Katie Moussouris about the U.S. implementation of the Wassenaar Arrangement rules and where things stand close to seven months after the initial draft was pulled off the table for a rewrite...

1.9AI score

Prion•added 2016/01/08 7:59 p.m.•10 views

Design/Logic Flaw

Puppet Server in Puppet Enterprise before 3.8.x before 3.8.3 and 2015.2.x before 2015.2.3 uses world-readable permissions for the private key of the Certification Authority CA certificate during the initial installation and configuration, which might allow local users to obtain sensitive...

1.9CVSS6.3AI score0.00026EPSS

Exploits0References1Affected Software1

CNVD•added 2015/11/19 12:0 a.m.•2 views

StrongSwan Security Mechanism Bypass Vulnerability

strongSwan is an open source IPsec-based VPN solution for Linux. The server implementation of the EAP-MSCHAPv2 protocol in strongSwan's eap-mschapv2 plugin fails to properly validate the local state, allowing a remote attacker to bypass authentication by sending an empty Success message in respon...

5CVSS7.7AI score0.00799EPSS

Exploits0References1

Hacker One•added 2015/10/25 6:34 p.m.•19 views

Mail.ru: [api.allodsteam.com] Authentication Data

api.allodsteam.com had an open public folder with some sensitive information for initial server setup, including sensitive internal documentation and database dumps...

2.2AI score

myhack58•added 2015/09/03 12:0 a.m.•238 views

Empire: a PowerShell post-exploitation Agent tools-vulnerability warning-the black bar safety net

Empire is a purely PowerShell post-exploitation Agent tools, it is built on cryptography, secure communications and flexible architecture. Empire realize the need to powershell. exe you can run a PowerShell proxy function. Rapid deployment post-exploit module, from the keyboard recorder to...

7.4AI score

RedHat Linux•added 2015/07/30 5:14 p.m.•2 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic...

RedHat Linux•added 2015/07/27 9:8 a.m.•1 views

ICU: Uninitialized memory read fixed in Chrome 44.0.2403.89

The ucnviogetConverterName function in common/ucnvio.cpp in International Components for Unicode ICU, as used in Google Chrome before 44.0.2403.89, mishandles converter names with initial x- substrings, which allows remote attackers to cause a denial of service read of uninitialized memory or...

6.8CVSS7.5AI score0.01188EPSS

OSV•added 2015/07/22 12:0 a.m.•1 views

UBUNTU-CVE-2015-1270

6.8CVSS7.4AI score0.01188EPSS

RedHat Linux•added 2015/07/17 8:6 a.m.•4 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

RedHat Linux•added 2015/07/17 8:4 a.m.•4 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

RedHat Linux•added 2015/07/17 8:3 a.m.•0 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

RedHat Linux•added 2015/07/15 12:37 p.m.•3 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

RedHat Linux•added 2015/07/15 12:1 p.m.•3 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

Tenable Nessus•added 2015/06/25 12:0 a.m.•137 views

Wind River VxWorks TCP Predictability Vulnerability

According to its self-reported version, the Wind River VxWorks remote device is potentially affected by a TCP predictability vulnerability that allows a man-in-the-middle attacker to predict the TCP initial sequence numbers based on previous values. This can exploited to spoof or disrupt TCP...

5.8CVSS5.9AI score0.03005EPSS

Exploits0References1

RedHat Linux•added 2015/06/11 1:21 p.m.•4 views

SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher