Lucene search
K

79 matches found

OSV
OSV
added 2024/08/17 9:15 a.m.4 views

UBUNTU-CVE-2024-42320

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error checks in dasdcopypairstore dasdaddbusid can return an error via ERRPTR if an allocation fails. However, two callsites in dasdcopypairstore do not check the result, potentially resulting in a NULL pointer...

5.5CVSS6.2AI score0.0021EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.4 views

kernel: ext4: improve error handling from ext4_dirhash()

In the Linux kernel, the following vulnerability has been resolved: ext4: improve error handling from ext4dirhash The ext4dirhash will almost never fail, especially when the hash tree feature was first introduced. However, with the addition of support of encrypted, casefolded file names, that...

7.8CVSS5.7AI score0.00154EPSS
Exploits0References5
Citrix
Citrix
added 2024/01/19 12:0 a.m.9 views

Will the "World Wide Web Publishing Service" be stopped during Storefront propagation

Will the "World Wide Web Publishing Service" be stopped while the StoreFront "Propagate Changes" is in progress?...

7.1AI score
Exploits0
Veracode
Veracode
added 2022/02/22 5:0 a.m.47 views

Denial Of Service (DoS)

libsolv.so is vulnerable to denial of service. An attacker can cause an application crash through the heap-overflow in the propagate function of solver.c...

3AI score
Exploits0References4Affected Software1
The Hacker News
The Hacker News
added 2022/02/16 2:3 p.m.33 views

TrickBot Malware Targeted Customers of 60 High-Profile Companies Since 2020

The notorious TrickBot malware is targeting customers of 60 financial and technology companies, including cryptocurrency firms, primarily located in the U.S., even as its operators have updated the botnet with new anti-analysis features. "TrickBot is a sophisticated and versatile malware with mor...

0.9AI score
Exploits0
Kitploit
Kitploit
added 2021/06/19 9:30 p.m.187 views

FalconEye - Real-time detection software for Windows process injections

FalconEye is a windows endpoint detection software for real-time process injections. It is a kernel-mode driver that aims to catch process injections as they are happening real-time. Since FalconEye runs in kernel mode, it provides a stronger and reliable defense against process injection...

7.5AI score
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2021/04/30 12:0 a.m.29 views

SUSE SLES12 Security Update : samba (SUSE-SU-2021:1439-1)

This update for samba fixes the following issues : CVE-2021-20254: Fixed a buffer overrun in sidstounixids bsc1184677. Adjust smbcacls '--propagate-inheritance' feature to align with upstream bsc1178469. Note that Tenable Network Security has extracted the preceding description block directly fro...

6.8CVSS7.1AI score0.01616EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2021/04/07 4:47 p.m.244 views

Fake Netflix App on Google Play Spreads Malware Via WhatsApp

Malware disguised as a Netflix app, lurking on the Google Play store, spread through WhatsApp messages, researchers have discovered. According to a Check Point Research analysis released on Wednesday, the malware masqueraded as an app called “FlixOnline,” which advertised via WhatsApp messages...

Exploits0References7
Hacker One
Hacker One
added 2021/01/26 10:3 p.m.14 views

Shopify: [h1-2102] Break permissions waterfall

Summary: Shopify Plus User permission roles will propagate changes to all the users in the role Its possible to break this If you pass FULL along with other Pemrissions into a user role edit It will propagate to the users and give them full access while the role shows partial access Steps To...

0.2AI score
Exploits0
Talos Blog
Talos Blog
added 2018/07/03 3:0 a.m.50 views

Smoking Guns - Smoke Loader learned new tricks

This post is authored by Ben Baker and Holger Unterbrink Overview Cisco Talos has been tracking a new version of Smoke Loader — a malicious application that can be used to load other malware — for the past several months following an alert from Cisco Advanced Malware Protection’s AMP Exploit...

0.1AI score
Exploits0
FireEye
FireEye
added 2018/06/28 4:0 p.m.424 views

RIG Exploit Kit Delivering Monero Miner Via PROPagate Injection Technique

Introduction Through FireEye Dynamic Threat Intelligence DTI, we observed RIG Exploit Kit EK delivering a dropper that leverages the PROPagate injection technique to inject code that downloads and executes a Monero miner similar activity has been reported by Trend Micro. Apart from leveraging a...

9.3CVSS9.1AI score0.93165EPSS
Exploits39References5
FireEye
FireEye
added 2018/06/28 12:0 p.m.1659 views

RIG Exploit Kit Delivering Monero Miner Via PROPagate Injection Technique

Introduction Through FireEye Dynamic Threat Intelligence DTI, we observed RIG Exploit Kit EK delivering a dropper that leverages the PROPagate injection technique to inject code that downloads and executes a Monero miner similar activity has been reported by Trend Micro. Apart from leveraging a...

9.3CVSS8.8AI score0.93165EPSS
Exploits39
Kitploit
Kitploit
added 2018/04/29 12:23 p.m.789 views

Infection Monkey - An Automated Pentest Tool

The Infection Monkey is an open source security tool for testing a data center's resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self propagate across a data center and reports success to a centralized Monkey Island server. The Infection Monkey i...

9.8CVSS9.5AI score0.99906EPSS
Exploits19References5
Citrix
Citrix
added 2017/09/11 12:0 a.m.7 views

How to Upgrade Receiver from StoreFront

Question: How to upgrade Receiver from StoreFront? Answer: 1. Go to C:\Program Files\Citrix\Receiver StoreFront\Receiver Clients\. Create a Windows folder if it doesn’t exist. 2. In the Windows folder, paste the Receiver for Windows with the version you want to set as the threshold, overwriting...

7AI score
Exploits0
AlpineLinux
AlpineLinux
added 2017/05/04 7:0 p.m.75 views

CVE-2017-3732

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed...

5.9CVSS7AI score0.15934EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2016/09/08 6:17 p.m.6 views

EAP7 Privilege escalation when managing domain including earlier version slaves

The domain controller will not propagate its administrative RBAC configuration to some slaves. An attacker could use this to escalate their privileges...

8.8CVSS7.4AI score0.029EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/04/08 12:0 a.m.29 views

SuSE 11.3 Security Update : Samba (SAT Patch Number 9010)

"The Samba fileserver suite was updated to fix bugs and security issues. The following security issue have been fixed : - No Password lockout or ratelimiting was enforced for SAMR password changes, making brute force guessing attacks possible. CVE-2013-4496. Also the following feature has been...

5CVSS7.3AI score0.10642EPSS
Exploits0References9
The Hacker News
The Hacker News
added 2014/02/26 12:23 a.m.12 views

Chameleon Virus that Spreads Across WiFi Access Points like Common Cold

Do you know, A Computer viruses could go Airborne over WiFi networks? Security researchers at the University of Liverpool in Britain have demonstrated a WiFi virus that can spread between computer networks just like the 'common cold' spreads between Humans. They have created a proof-of-concept...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/09/13 12:0 a.m.28 views

Here You Have Email Worm Detection

The remote Windows host has files present on the system that indicate that the 'Here You Have' email worm is present. A user of this host likely received an email containing a malicious '.scr' screen saver file and infected the host as a result of running this file. This malware has several...

5.5AI score
Exploits0References2
Rows per page
Query Builder