PT-2024-27910 · Unknown · Quick Share

Name of the Vulnerable Software and Affected Versions: Quick Share versions prior to 1.0.1724.0 Description: There exists an issue in Quick Share/Nearby, where an attacker can force a victim to stay connected to a temporary hotspot created for the sharing. As part of the sequence of packets in a...

CVE-2023-34367

Windows 7 is vulnerable to a full blind TCP/IP hijacking attack. The vulnerability exists in Windows 7 any Windows until Windows 8 and in any implementation of TCP/IP, which is vulnerable to the Idle scan attack including many IoT devices. NOTE: The vendor considers this a low severity issue...

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a Kubernetes API server security vulnerability (CVE-2021-25737)

Summary Red Hat OpenShift on IBM Cloud is affected by a security vulnerability in the Kubernetes API server that could allow a user to redirect pod traffic to private networks on a node CVE-2021-25737. Vulnerability Details CVEID: CVE-2021-25737 Description: Kubernetes could allow a remote...

Command Execution Vulnerability in China Telecom's Smart Gateway Management Platform

China Telecom Group Corporation is a large state-owned communications enterprise in China, a global partner of Shanghai World Expo, and one of the "World's Top 500 Enterprises" for many years in a row. It mainly operates integrated information services such as fixed-line telephony, mobile...

Raspberry Pi Zero Malicious USB Attack: PoisonTap

Raspberry Pi Zero Malicious USB Attack Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js. PoisonTap produces a cascading effect by exploiting the existing trust in variou...

Koobface worm makes a triumphant return

A new version of the Koobface worm is making the rounds of Facebook this week, this time in the guise of an invitation to view a fake YouTube video. The link takes users to a page asking them to install an updated version of the Flash player, which is instead a piece of malware. As Brian Krebs at...

Microsoft Windows Server 2000 - Subnet Bandwidth Manager RSVP Server Authority Hijacking

// source: https://www.securityfocus.com/bid/8397/info A problem has been identified in the RSVP Server for Microsoft Windows 2000 that may allow an attacker to hijack management of the network. This could allow an attacker control of network Quality of Service. //Network Penetration...

Microsoft Windows Server 2000 - Subnet Bandwidth Manager RSVP Server Authority Hijacking

Microsoft Windows Server 2000 - Subnet Bandwidth Manager RSVP Server Authority Hijacking // source: https://www.securityfocus.com/bid/8397/info A problem has been identified in the RSVP Server for Microsoft Windows 2000 that may allow an attacker to hijack management of the network. This could...