50 matches found
CVE-2018-5407
A microprocessor side-channel vulnerability was found on SMT e.g, Hyper-Threading architectures. An attacker running a malicious process on the same core of the processor as the victim process can extract certain secret information. Mitigation At this time Red Hat Engineering is working on patche...
CVE-2019-11875
In AutomateAppCore.dll in Blue Prism Robotic Process Automation 6.4.0.8445, a vulnerability in access control can be exploited to escalate privileges. The vulnerability allows for abusing the application for fraud or unauthorized access to certain information. The attack requires a valid user...
GLSA-201903-10 : OpenSSL: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201903-10 OpenSSL: Multiple vulnerabilities Multiple vulnerabilities have been discovered in OpenSSL. Please review the CVE identifiers referenced below for details. Impact : A remote attacker to obtain sensitive information, caus...
OpenSSL: Multiple vulnerabilities
Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been discovered in OpenSSL. Please review the CVE identifiers referenced...
First-Ever Ransomware Found Using 'Process Doppelgänging' Attack to Evade Detection
Security researchers have spotted the first-ever ransomware exploiting Process Doppelgänging, a new fileless code injection technique that could help malware evade detection. The Process Doppelgänging attack takes advantage of a built-in Windows function, i.e., NTFS Transactions, and an outdated...
JShielder - Automates The Process Of Installing All The Necessary Packages To Host A Web Application And Hardening A Linux Server
JSHielder is an Open Source tool developed to help SysAdmin and developers secure there Linux Servers in which they will be deploying any web application or services. This tool automates the process of installing all the necessary packages to host a web application and Hardening a Linux server wi...
Malicious Process Detection: Authenticode Microsoft Manufacturer
Binary data wmimalwareauthenticodemanufacturermicrosoft.nbin...
Malicious Process Detection: Authenticode Not Verified
Binary data wmimalwareauthenticodeinvalidsignedinfo.nbin...
Malicious Process Detection: Authenticode Signed
Binary data wmimalwareauthenticodesigned.nbin...
Malicious Process Detection: Authenticode Not Signed
Binary data wmimalwareauthenticodenotsigned.nbin...
Malicious Process Detection: Authenticode With Invalid Signature
Binary data wmimalwareauthenticodeinvalidsigned.nbin...
Malicious Process Detection: Authenticode Signed Bad Date
Binary data wmimalwareauthenticodebaddate.nbin...
Apache Impala Authentication Bypass Vulnerability
Apache Impala is an open source distributed SQL query engine for Apache Hadoop. When Apache Impala is Kerberos-enabled, a malicious process emulates the Impala backend program, allowing attackers to exploit vulnerabilities to submit special requests, bypass authentication, and perform unauthorize...
Apache Impala 2.8.0 Authentication Bypass Vulnerability
Apache Impala versions 2.7.0 through 2.8.0 suffers from an information disclosure vulnerability. It was noticed that a malicious process impersonating an Impala daemon could cause Impala daemons to skip authentication checks when Kerberos is enabled but TLS is not. If the malicious server respond...
Updated iperf packages fix security vulnerability
A malicious process can connect to an iperf server and, by sending a malformed message on the control channel, corrupt the server process's heap area. This can lead to a crash and a denial of service, or theoretically a remote code execution as the user running the iperf server. A malicious iperf...
Malicious Process Detection: User Defined Malware Running (Linux)
Binary data linuxusermd5s.nbin...
Nessus本地权限提升漏洞
Nessus是一款流行的系统漏洞扫描与分析软件。 Nessus恶意进程检测插件存在安全漏洞,由于该插件会创建一个以SYSTEM运行的服务程序,并且低权限用户可允许修改该程序,允许攻击者利用漏洞创建恶意程序并执行,提升权限。 0 Nessus appliance engine 5.2.1 目前没有详细解决方案提供: http://www.nessus.org/...
NCC00643 Technical Advisory: Nessus Authenticated Scan Local Privilege Escalation
...................................... Vulnerability Summary ...................................... Title Nessus Authenticated Scan - Local Privilege Escalation Release Date 20 March 2014 Reference NGS00643 Discoverer Neil Jones Vendor Tenable Vendor Reference RWZ-21387-181 Systems Affected Nessu...
Mac OS X Malicious Process Detection
Binary data macosxmalwarescan.nbin...
Linux Malicious Process Detection
Binary data linuxmalwarescan.nbin...