Code injection

SteelCentral Aternity Agent 11.0.0.120 on Windows mishandles IPC. It uses an executable running as a high privileged Windows service to perform administrative tasks and collect data from other processes. It distributes functionality among different processes and uses IPC Inter-Process Communicati...

openSUSE Security Update : cni-plugins (openSUSE-2020-1049)

This update for cni-plugins fixes the following issues : cni-plugins updated to version 0.8.6 - CVE-2020-10749: Fixed a potential Man-in-the-Middle attacks in IPv4 clusters by spoofing IPv6 router advertisements bsc1172410. Release notes:...

openSUSE Security Update : cni-plugins (openSUSE-2020-1050)

This update for cni-plugins fixes the following issues : cni-plugins updated to version 0.8.6 - CVE-2020-10749: Fixed a potential Man-in-the-Middle attacks in IPv4 clusters by spoofing IPv6 router advertisements bsc1172410. Release notes:...

openSUSE: Security Advisory for cni-plugins (openSUSE-SU-2020:1049-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE: Security Advisory for cni-plugins (openSUSE-SU-2020:1050-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2020:1050-1 Security update for cni-plugins

This update for cni-plugins fixes the following issues: cni-plugins updated to version 0.8.6 - CVE-2020-10749: Fixed a potential Man-in-the-Middle attacks in IPv4 clusters by spoofing IPv6 router advertisements bsc1172410. Release notes:...

OPENSUSE-SU-2020:1049-1 Security update for cni-plugins

This update for cni-plugins fixes the following issues: cni-plugins updated to version 0.8.6 - CVE-2020-10749: Fixed a potential Man-in-the-Middle attacks in IPv4 clusters by spoofing IPv6 router advertisements bsc1172410. Release notes:...

Security update for cni-plugins (moderate)

openSUSE Security Update: Security update for cni-plugins Announcement ID: openSUSE-SU-2020:1050-1 Rating: moderate References: 1172410 Cross-References: CVE-2020-10749 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...

Security update for cni-plugins (moderate)

openSUSE Security Update: Security update for cni-plugins Announcement ID: openSUSE-SU-2020:1049-1 Rating: moderate References: 1172410 Cross-References: CVE-2020-10749 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

Lazarus Group Surfaces with Advanced Malware Framework

The North Korea-linked APT known as Lazarus Group has debuted an advanced, multipurpose malware framework, called MATA, to target Windows, Linux and macOS operating systems. Kaspersky researchers uncovered a series of attacks utilizing MATA so-called because the malware authors themselves call...

MATA: Multi-platform targeted malware framework

As the IT and OT environment becomes more complex, adversaries are quick to adapt their attack strategy. For example, as users work environments diversify, adversaries are busy acquiring the TTPs to infiltrate systems. Recently, we reported to our Threat Intelligence Portal customers a similar...

GReAT thoughts: Awesome IDA Pro plugins

The Global Research & Analysis Team here at Kaspersky has a tradition of meeting up once a month and sharing cutting-edge research, interesting techniques and useful tools. We recently took the unprecedented decision to make our internal meetings public for a few months and present them as a seri...

SUSE SLES15 Security Update : cni-plugins (SUSE-SU-2020:1957-1)

This update for cni-plugins fixes the following issues : cni-plugins updated to version 0.8.6 CVE-2020-10749: Fixed a potential Man-in-the-Middle attacks in IPv4 clusters by spoofing IPv6 router advertisements bsc1172410. Release notes:...

SUSE-SU-2020:1957-1 Security update for cni-plugins

This update for cni-plugins fixes the following issues: cni-plugins updated to version 0.8.6 - CVE-2020-10749: Fixed a potential Man-in-the-Middle attacks in IPv4 clusters by spoofing IPv6 router advertisements bsc1172410. Release notes:...

@braneframe/plugin-github (>=0.1.53-main.0b45885 <=0.6.7-staging.e9eb1ed), @dxos/plugin-github (>=0.6.8 <=0.7.4-staging.f7e8224) +26 more potentially affected by CVE-2020-8203 via lodash.update (=4.10.2)

lodash.update NPM version =4.10.2 is affected by a known vulnerability. The following packages have a transitive dependency on lodash.update and may be impacted: - @braneframe/plugin-github =0.1.53-main.0b45885, =0.6.8, =0.2.19, =0.0.1, =5.5.0, =22.1.0, =5.2.0, =4.0.0, =1.0.0, =1.12.0, =1.0.0,...

SUSE SLED15 / SLES15 Security Update : gstreamer-plugins-base (SUSE-SU-2020:1300-2)

This update for gstreamer-plugins-base fixes the following issue : Security issue fixed : CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser bsc1133375. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory...

SUSE-SU-2020:1300-2 Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issue: Security issue fixed: - CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser bsc1133375...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.2.36 containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat OpenShift Container Platform 4.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2020-14947

OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mibfile in plugins/mainsections/msconfig/mssnmpconfig.php is mishandled in getmiboid...

CVE-2020-14947

OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mibfile in plugins/mainsections/msconfig/mssnmpconfig.php is mishandled in getmiboid...