Lucene search
+L

45 matches found

Talos Blog
Talos Blog
added 2024/04/16 12:0 p.m.51 views

Large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentials

Cisco Talos would like to acknowledge Anna Bennett and Brandon White of Cisco Talos and Phillip Schafer, Mike Moran, and Becca Lynch of the Duo Security Research team for their research that led to the identification of these attacks. Cisco Talos is actively monitoring a global increase in...

7.6AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/12/06 12:0 a.m.8 views

The vulnerability of the microprogrammed protection system for the SEL-451 phase-change relay exists due to insufficient verification of input data. This allows a perpetrator to trigger a malfunction and lock out arbitrary services.

The vulnerability of the microprogrammed protection system for the SEL-451 phase-change relay exists due to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause malfunctions and lock out arbitrary services...

6.1CVSS6.7AI score0.00664EPSS
Exploits0References4
0day.today
0day.today
added 2023/03/20 12:0 a.m.454 views

Open Web Analytics 1.7.3 Remote Code Execution Exploit

Open Web Analytics OWA versions prior to 1.7.4 allow an unauthenticated remote attacker to obtain sensitive user information, which can be used to gain admin privileges by leveraging cache hashes. class MetasploitModule 'Open Web Analytics 1.7.3 - Remote Code Execution RCE', 'Description' = %q Op...

9.8CVSS1AI score0.99055EPSS
Exploits14
Huntr
Huntr
added 2023/02/19 6:27 p.m.24 views

Lack of brute force protection

Issue Description • A brute-force attack is an attempt to discover a password by systematically trying every possible combination of letters, numbers, and symbols until an attacker discover the one correct combination that works. Steps to Reproduce: '1. First capture login request with BurpSuite,...

7AI score0.00591EPSS
Exploits1References1
Kitploit
Kitploit
added 2022/03/21 11:30 a.m.19 views

Oh365UserFinder - Python3 O365 User Enumeration Tool

Oh365UserFinder is used for identifying valid o365 accounts and domains without the risk of account lockouts. The tool parses responses to identify the "IfExistsResult" flag is null or not, and responds appropriately if the user is valid. The tool will attempt to identify false positives based on...

7.3AI score
Exploits0References2
Kitploit
Kitploit
added 2021/09/28 11:30 a.m.26 views

SharpSpray - Active Directory Password Spraying Tool. Auto Fetches User List And Avoids Potential Lockouts

SharpSpray is a Windows domain password spraying tool written in .NET C. Introduction SharpSpray is a C port of DomainPasswordSpray with enhanced and extra capabilities. This tool uses LDAP Protocol to communicate with the Domain active directory services. Features Can operate from inside and...

7.8AI score
Exploits0References2
Veracode
Veracode
added 2021/07/28 5:7 a.m.8 views

Insecure Access Controls

github.com/argoproj/argo-cd uses insecure access controls. The Argo API does not implement anti-automation measures such as rate limiting, account lockouts, or other anti-brute-force measures. An attacker is able to repeatedly perform authentication attempts to discover user credentials...

7.5CVSS6.8AI score0.02157EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2021/07/26 9:19 p.m.73 views

Improper Restriction of Excessive Authentication Attempts in Argo API

As of v1.5.0, the Argo API does not implement anti-automation measures such as rate limiting, account lockouts, or other anti-bruteforce measures. Attackers can submit an unlimited number of authentication attempts without consequence. Specific Go Packages Affected...

7.5CVSS7.5AI score0.02157EPSS
Exploits1References9Affected Software1
OSV
OSV
added 2021/07/26 9:19 p.m.27 views

GHSA-XCQR-9H24-VRGW Improper Restriction of Excessive Authentication Attempts in Argo API

As of v1.5.0, the Argo API does not implement anti-automation measures such as rate limiting, account lockouts, or other anti-bruteforce measures. Attackers can submit an unlimited number of authentication attempts without consequence. Specific Go Packages Affected...

7.5CVSS7.6AI score0.02157EPSS
Exploits1References8
The Hacker News
The Hacker News
added 2021/03/18 10:19 a.m.178 views

Why Cached Credentials Can Cause Account Lockouts and How to Stop it

When a user account becomes locked out, the cause is often attributed to a user who has simply entered an old or incorrect password too many times. However, this is far from being the only thing that can cause an account to become locked. Another common cause, for example, is an application or...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/18 10:19 a.m.5 views

Why Cached Credentials Can Cause Account Lockouts and How to Stop it

When a user account becomes locked out, the cause is often attributed to a user who has simply entered an old or incorrect password too many times. However, this is far from being the only thing that can cause an account to become locked. Another common cause, for example, is an application or...

5.7AI score
Exploits0
The Hacker News
The Hacker News
added 2020/11/30 12:52 p.m.60 views

Quick Guide — How to Troubleshoot Active Directory Account Lockouts

Active Directory account lockouts can be hugely problematic for organizations. There have been documented instances of attackers leveraging the account lockout feature in a type of denial of service attack. By intentionally entering numerous bad passwords, attackers can theoretically lock all of...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2020/11/30 12:52 p.m.6 views

Quick Guide — How to Troubleshoot Active Directory Account Lockouts

Active Directory account lockouts can be hugely problematic for organizations. There have been documented instances of attackers leveraging the account lockout feature in a type of denial of service attack. By intentionally entering numerous bad passwords, attackers can theoretically lock all of...

5.6AI score
Exploits0
CNVD
CNVD
added 2020/06/05 12:0 a.m.4 views

IBM Security Guardium Information Disclosure Vulnerability (CNVD-2020-32645)

IBM Security Guardium is a suite of platforms from IBM in the United States that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. IBM Security Guardium suffers from an information disclosure...

9.8CVSS6.2AI score0.01441EPSS
Exploits0References1
Prion
Prion
added 2020/04/08 8:15 p.m.23 views

Authentication flaw

As of v1.5.0, the Argo API does not implement anti-automation measures such as rate limiting, account lockouts, or other anti-bruteforce measures. Attackers can submit an unlimited number of authentication attempts without consequence...

5CVSS7.7AI score0.02157EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2020/04/08 12:0 a.m.6 views

PT-2020-20310 · Intuit · Argo Api

Name of the Vulnerable Software and Affected Versions: Argo API version 1.5.0 Description: The Argo API does not implement anti-automation measures such as rate limiting, account lockouts, or other anti-bruteforce measures, allowing attackers to submit an unlimited number of authentication attemp...

9.8CVSS7.9AI score0.02157EPSS
Exploits2References28
Prion
Prion
added 2019/07/15 7:15 p.m.17 views

Security feature bypass

A security feature bypass vulnerability exists in Active Directory Federation Services ADFS which could allow an attacker to bypass the extranet lockout policy.To exploit this vulnerability, an attacker could run a specially crafted application, which would allow an attacker to launch a password...

5CVSS6.1AI score0.04948EPSS
Exploits0References1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:31 p.m.24 views

Security Bulletin: IBM Security Access Manager for Web does not enforce account lockouts (CVE-2015-5010)

Summary IBM Security Access Manager for Web does not enforce account lockouts after a certain number of failed login attempts. A remote attacker could use a brute force attack to determine the login credentials for the administrator. Vulnerability Details CVEID: CVE-2015-5010 DESCRIPTION: IBM...

7.5CVSS2AI score0.01552EPSS
Exploits0Affected Software1
ThreatPost
ThreatPost
added 2017/06/05 4:28 p.m.8 views

QakBot Returns, Locking Out Active Directory Accounts

QakBot, a worm-like strain of information-stealing malware that’s been around since 2009, has resurfaced again. The malware has been a thorn in the side of administrators as of late. After a recent stretch of inactivity, researchers now link a rash of recent Microsoft Active Directory lockouts to...

7.7AI score
Exploits0References4
Citrix
Citrix
added 2017/05/12 12:0 a.m.8 views

AD Account Lockouts Due to Citrix PIN Password Caching

After a password change at ActiveDirectory, users are seeing account lockouts. XenMobile was causing these lockouts as the password cached with Citrix PIN was not updated...

7.2AI score
Exploits0
Rows per page
Query Builder