Authorization Bypass

tomcat-catalina is vulnerable to authorization bypass. URL patterns of empty strings were not handled correctly and caused the server to ignore such security constraints when the urlPattern for a servlet is mapped to " ". This allows an attacker to bypass said security constraints and gain...

PT-2020-5329 · Gnome +7 · Librsvg +7

Name of the Vulnerable Software and Affected Versions: librsvg versions prior to 2.46.2 Description: The issue is related to a denial of service caused by a crafted SVG file with nested patterns. This file, when processed by the library, can lead to an exponential growth in the number of final...

Design/Logic Flaw

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0 and 12.0.0 - 12.1.2, undisclosed traffic patterns sent to BIG-IP virtual servers, with the TCP Fast Open and Tail Loss Probe options enabled in the associated TCP profile, may cause...

CVE-2017-6136

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0 and 12.0.0 - 12.1.2, undisclosed traffic patterns sent to BIG-IP virtual servers, with the TCP Fast Open and Tail Loss Probe options enabled in the associated TCP profile, may cause...

CVE-2017-6136

Summary: CVE-2017-6136 affects F5 BIG-IP software (LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, WebSafe) with version ranges 12.0.0–12.1.2 and 13.0.0. The root cause is undisclosed traffic patterns sent to BIG-IP virtual servers when TCP Fast Open and Tail Loss Probe are en...

Excerpts from Building a High Speed SOC: Achieving Speed (Part 2)

Carbon Black recently published an in-depth guide on what it takes to develop a "high speed" security operations center, or SOC; this is the last excerpt from that guide, which you can find here. For more information on building high speed SOCs, including how to eliminate the "response gap," chec...

Detecting Data Breaches: Why Understanding Database Types Matters

Different data characteristics and access patterns found in different database systems lead to different ways of detecting suspicious data access, which are indicators of potential data breaches. To accurately detect data access abuse we need to classify the database processing type. Is it a...

Microsoft Edge Chakra JIT - Incorrect GenerateBailOut Calling Patterns

Microsoft Edge Chakra JIT - Incorrect GenerateBailOut Calling Patterns / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1333 Bailout: "ChakraCore’s background JIT compiler generates highly optimized JIT’ed code based upon the data and infers likely usage patterns based on the...

Microsoft Edge Chakra JIT Incorrect GenerateBailOut Calling Patterns Exploit

Exploit for windows platform in category dos / poc Microsoft Edge: Chakra: JIT: Incorrect GenerateBailOut calling patterns CVE-2017-11799 Bailout: "ChakraCoreas background JIT compiler generates highly optimized JITaed code based upon the data and infers likely usage patterns based on the profile...

cross-stitch-patterns.eu XSS vulnerability

Vulnerable URL: http://www.cross-stitch-patterns.eu/big.php?id=13'"127 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3733479 VIP website status:| No Coordinated Disclosure Timelin...

Android Lockscreen Patterns Less Secure Than PINs

An academic study set out to prove whether it’s better to protect your Android phone with a PIN or a swipe pattern. The answer is PIN. At least when it comes to proximity attacks, namely someone lurking about trying to guess your PIN or unlock pattern. The study PDF, published Friday by researche...

Microsoft Edge Chakra - Incorrectly Parses Object Patterns Exploit

Exploit for windows platform in category dos / poc function f a: b = 0x1111, c = 0x2222, .c = 0x3333 = ; f; 0day.today 2018-02-05...

Microsoft Edge Chakra Incorrect Parse

Microsoft Edge: Chakra incorrectly parses object patterns CVE-2017-8729 When the Chakra's parser meets "", at first, Chakra treats it as an object literal without distinguishing whether it will be an object literali.e., a: 0x1234 or an object patterni.e., a = a: 1234. After finishing to parse it...

Equifax Suffered Data Breach After It Failed to Patch Old Apache Struts Flaw

The massive Equifax data breach that exposed highly sensitive data of as many as 143 million people was caused by exploiting a flaw in Apache Struts framework, which Apache patched over two months earlier of the security incident, Equifax has confirmed. Credit rating agency Equifax is yet another...

Hiking Club Malvertisements Drop Monero Miners Via Neptune Exploit Kit

Exploit kit EK activity has been on the decline ever since Angler Exploit Kit was shut down in 2016. Fewer people using Internet Explorer and a drop in browser support for Adobe Flash – two primary targets of many exploit kits – have also contributed to this decline. Additionally, some popular...

Unspecified vulnerability in nss_compat_ossl

nsscompatossl is a compatibility conversion program that converts OpenSSL to an NSS cryptographic library. A security vulnerability exists in the cipherstring parsing code in nsscompatossl, which stems from the program failing to match the corresponding cipherstring in multiple keyword patterns. ...

[SECURITY] Fedora 25 Update: yara-3.6.3-1.fc25

YARA is a tool aimed at but not limited to helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families or whatever you want to describe based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strin...

CVE-2016-5394

In the XSS Protection API module before 1.0.12 in Apache Sling, the encoding done by the XSSAPI.encodeForJSString method is not restrictive enough and for some input patterns allows script tags to pass through unencoded, leading to potential XSS vulnerabilities...

[SECURITY] Fedora 25 Update: yara-3.6.2-1.fc25

YARA is a tool aimed at but not limited to helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families or whatever you want to describe based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strin...

Threat Round-up for June 16 - June 23

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between June 16 and June 23. As with previous round-ups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavior characteristics,...