IDPS SandBox AntiVirus Stealth Killer: MorphAES

IDPS SandBox AntiVirus Stealth Killer MorphAES is the world’s first polymorphic shellcode/malware engine, with metamorphic properties and capability to bypass sandboxes, which makes it undetectable for an IDPS, it’s cross-platform as well and library-independent. Properties: Polymorphism AES...

Cisco TelePresence VCS / Expressway 8.x < 8.8 Multiple Vulnerabilities (Bar Mitzvah)

According to its self-reported version, the Cisco TelePresence Video Communication Server VCS / Expressway running on the remote host is 8.x prior to 8.8. It is, therefore, affected by multiple vulnerabilities : - A security feature bypass vulnerability exists, known as Bar Mitzvah, due to improp...

Fedora 23 : php-ZendFramework2 / php-zendframework-zendxml (2016-8952105d59)

" 2.4.10 2016-05-09 - Fix HeaderValue throwing an exception on legal characters 2.4.9 2015-11-23 SECURITY UPDATES - ZF2015-09: Zend\Captcha\Word generates a 'word' for a CAPTCHA challenge by selecting a sequence of random letters from a character set. Prior to this vulnerability announcement, the...

Fedora 22 : php-ZendFramework2 / php-zendframework-zendxml (2016-03c0ed3127)

" 2.4.10 2016-05-09 - Fix HeaderValue throwing an exception on legal characters 2.4.9 2015-11-23 SECURITY UPDATES - ZF2015-09: Zend\Captcha\Word generates a 'word' for a CAPTCHA challenge by selecting a sequence of random letters from a character set. Prior to this vulnerability announcement, the...

OpenSSL 1.0.1 < 1.0.1t / 1.0.2 < 1.0.2h Multiple Vulnerabilities

Binary data 9390.prm...

Weakness with cookie encryption

PMASA-2016-29 Announcement-ID: PMASA-2016-29 Date: 2016-07-07 Summary Weakness with cookie encryption Description A pair of vulnerabilities were found affecting the way cookies are stored. The decryption of the username/password is vulnerable to a padding oracle attack. The can allow an attacker...

Security Advisory - Multiple Vulnerabilities in OpenSSL in May 2016

On May 3, 2016, the OpenSSL Software Foundation released a security advisory that included six vulnerabilities. Of the six vulnerabilities disclosed, four of them may cause memory corruption or excessive memory usage, one could allow a padding oracle attack to decrypt traffic when the connection...

The vulnerability of the OpenSSL software allows a malicious attacker to compromise the confidentiality of protected information.

The vulnerability exists in the SSL protocol for OpenSSL due to the use of non-deterministic padding for CBC encryption block chaining of the encryption text. Exploiting this vulnerability allows a malicious actor to obtain unencrypted data by using a padding prediction attack, known as POODLE...

The vulnerability of Cisco IPS’ software allows a malicious individual to obtain a one-time code (nonce) for ECDSA encryption.

The vulnerability exists in the implementation of the Montgomery algorithm in OpenSSL, due to the temporal impermanence of the padding operations. Exploiting this vulnerability allows local users to obtain a one-time code nonce for ECDSA by attacking the cache through external channels using the...

The vulnerability of the Cisco Unified Communications Manager software allows a malicious individual to obtain a one-time code (nonce) for an ECDSA encryption algorithm.

The vulnerability exists in the implementation of the Montgomery algorithm in OpenSSL, due to the temporal impermanence of the operations involved in padding. Exploiting this vulnerability allows local users to obtain a one-time code nonce for ECDSA by attacking the cache through external channel...

The vulnerability of the Wireshark Network Protocol Analyzer software allows a remote attacker to compromise the accessibility of protected information.

A vulnerability exists in the dissectberconstrainedbitstring function in epan/dissectors/packet-ber.c within the ASN.1 BER dissector in Wireshark, due to incorrect checks on padding values. Exploiting this vulnerability allows malicious actors to cause service failures—such as insufficient buffer...

phpwind9. x Md5 Padding Extension vulnerability analysis-vulnerability warning-the black bar safety net

0x00 Preface This is one of the more interesting vulnerabilities, exploits already in the clouds online submitted http://www.wooyun.org/bugs/wooyun-2016-0210850 that official has also released a patch（http://www.phpwind.net/read/3709549 that 并且 安全 研究员 phithon 也 第一时间 发出 了 他 的 漏洞 分析...

OpenSSL AES-NI Padding Oracle MitM Information Disclosure

The remote host is affected by a man-in-the-middle MitM information disclosure vulnerability due to an error in the implementation of ciphersuites that use AES in CBC mode with HMAC-SHA1 or HMAC-SHA256. The implementation is specially written to use the AES acceleration available in x86/amd64...

Poison Ivy 2.1.x - C2 Buffer Overflow (Metasploit)

Exploit for windows platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Poison Ivy 2.1.x C2 Buffer Overflow', 'Description' = %q This module...

用友某重要站点Padding Oracle Vulnerability漏洞可登陆内部系统

简要描述： 用友某重点站点Padding Oracle Vulnerability漏洞，泄露某员工账号，可登录包括邮箱、采购等系统,可作为跳板，严重威胁内网 详细说明： 通过burp抓包可越权访问http://i.yonyou.com,造成信息泄露 利用获取的邮箱，进行找回密码操作，在找回密码第二部页面，存在Padding Oracle Vulnerability漏洞，可以获取敏感信息 利用获取到的敏感信息登录邮箱，mail.yonyou.com也能登录 采购系统 其他系统 img s...

Updated botan packages fix security vulnerabilities

Updated botan packages fix security vulnerabilities: During RSA decryption, how long decoding of PKCS 1 v1.5 padding took was input dependent. If these differences could be measured by an attacker, it could be used to mount a Bleichenbacher million-message attack CVE-2015-7827. ECDSA and DSA...

Citrix XenServer Multiple Vulnerabilities (CTX212736)

The version of Citrix XenServer running on the remote host is affected by multiple vulnerabilities in the bundled versions of OpenSSL and QEMU : - Multiple flaws exist in the bundled version of OpenSSL in the aesnicbchmacsha1cipher and aesnicbchmacsha256cipher functions that are triggered when th...

phpwind9.x 通讯秘钥安全漏洞

来源链接：phpwind 利用哈希长度扩展攻击进行getshell 一哥新发的漏洞，还是蛮屌的： http://www.wooyun.org/bugs/wooyun-2016-0210850。分析补丁（ http://www.phpwind.net/read/3709549 ）加上一些风闻，我得知利用的是哈希长度扩展攻击。之前CTF中经常出境的MD5 Length Extension Attack，终于在实战中露了一次面。 0x01 漏洞点分析 phpwind逻辑太冗杂了，一看就是java程序员开发的。...

MGASA-2016-0196 Updated php-ZendFramework2 packages fix CVE-2015-7503

Updated php-ZendFramework2 packages fix security vulnerability: Zend\Crypt\PublicKey\Rsa\PublicKey has a call to opensslpublicencrypt which uses PHP's default $padding argument, which specifies OPENSSLPKCS1PADDING, indicating usage of PKCS1v1.5 padding. This padding has a known vulnerability, the...

Updated php-ZendFramework2 packages fix CVE-2015-7503

Updated php-ZendFramework2 packages fix security vulnerability: Zend\Crypt\PublicKey\Rsa\PublicKey has a call to opensslpublicencrypt which uses PHP's default $padding argument, which specifies OPENSSLPKCS1PADDING, indicating usage of PKCS1v1.5 padding. This padding has a known vulnerability, the...