Systematic SitAware - NVG Denial of Service Exploit

Exploit for multiple platform in category dos / poc Exploit Title: SitAware NVG Denial of Service Date: 03/31/2018 Exploit Author: 2u53 Vendor Homepage: https://systematic.com/defence/products/c2/sitaware/ Version: 6.4 SP2 Tested on: Windows Server 2012 R2 CVE: CVE-2018-9115 Remarks: PoC needs...

TLS 1.3 is nearly here

TLS stands for "Transport Layer Security" and it's rather important. Why's that? Oh, I'm glad you asked. Here's me, yelling my password across the office to you: "PASSWORD!!!" You heard me loud and clear, right? But so did basically anyone else nearby. Now let's work in a little TLS love and...

CVE-2018-0175

Format String vulnerability in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated privileges o...

CVE-2018-0167

Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated...

CVE-2018-0167

Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated...

Making the Grade: Achieve SSL Labs A+ Grade with Imperva WAF

We all woke up to a new reality early last year. HTTPS adoption has reached the tipping point, meaning that more than half of web traffic is encrypted. The benefits of encrypting your traffic are obvious, right? It’s essentially about you securing data being transmitted by authenticating web...

CVE-2018-0175

Format String vulnerability in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated privileges o...

PT-2018-3804 · Cisco · Cisco Ios Xe +2

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software affected versions not specified Cisco IOS XE Software affected versions not specified Cisco IOS XR Software affected versions not specified Description: A Format String vulnerability in the Link Layer Discovery Protocol LLD...

PT-2018-3801 · Cisco · Cisco Ios Xr +2

Name of the Vulnerable Software and Affected Versions: Cisco IOS, Cisco IOS XE, and Cisco IOS XR Software affected versions not specified Description: The issue is related to multiple buffer overflow vulnerabilities in the Link Layer Discovery Protocol LLDP subsystem of the affected software. An...

Web Application Firewalls: The Definitive Primer

Firewalls have traditionally been focused on network layer traffic. As attacks have evolved, however, they have climbed the ladder of the Open Systems Interconnection OSI model. Web Application Firewalls WAFs have developed as a result, not only to track network traffic but also to understand...

Q4 2017 Global DDoS Threat Landscape Report

Today we are releasing our latest Global DDoS Threat Landscape Report, a statistical analysis of 5,055 network and application layer DDoS attacks mitigated by Imperva Incapsula services during Q4 2017. In Q4, the number of application layer attacks nearly doubled, just as the number of network...

Design/Logic Flaw

A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 414F-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 416-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 416F-3 PN/DP V7 All versions V7.0.3, SIMATIC CP 343-1 incl. SIPLUS varian...

CVE-2018-4843

CVE-2018-4843 affects Siemens SIMATIC/PROFINET devices (CP 343-1/CP 443-1, ET 200S/ET 200pro, S7-1500/300/400 families, WinAC RTX, SINUMERIK, Softnet PROFINET IO, etc.). The flaw is improper input validation in handling PROFINET DCP requests, allowing a specially crafted DCP packet to trigger a d...

Siemens SIMATIC, SINUMERIK, and PROFINET IO (Update D)

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

Greenhouse.io: DoS through cache poisoning using invalid HTTP parameters

I was taking a look into a related report https://hackerone.com/reports/298265 and I discovered that the https://boards.greenhouse.io/embed/jobboard/js?for= endpoint doesn't throw errors when I try to pass in an array of for parameters like this:...

erlang: TLS server vulnerable to Adaptive Chosen Ciphertext attack allowing plaintext recovery or MITM attack

An erlang TLS server configured with cipher suites using RSA key exchange, may be vulnerable to an Adaptive Chosen Ciphertext attack AKA Bleichenbacher attack against RSA. This may result in plain-text recovery of encrypted messages and/or a man-in-the-middle MiTM attack, despite the attacker not...

NetIQ iManager Authentication Vulnerability

NetIQ iManager is a WEB-based application from American NetIQ. You can use wireless devices to manage and configure eDirectory objects. A security vulnerability exists in NetIQ iManager versions prior to 3.0.3 that originates when the program sends an SSL private key from a Java application to...

Unspecified Vulnerability in TitanHQ WebTitan Gateway

TitanHQ WebTitan Gateway is a scalable web filtering appliance. The appliance is used to filter malware, ransomware botnets, malicious websites and more. A security vulnerability exists in TitanHQ WebTitan Gateway that stems from the program failing to properly validate certificates for the TLS...

AppLayering 2.x: Increase the Size of an App Layer Disk in Unidesk

This article describes how to increase the disk size of an App Layer...

Solaris 10 (x86) : 123939-05

GNOME 2.6.0x86: GNU Transport Layer Security Library Patch. Date this patch was last updated by Sun : Oct/17/16 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...