79 matches found
UBUNTU-CVE-2024-42320
In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error checks in dasdcopypairstore dasdaddbusid can return an error via ERRPTR if an allocation fails. However, two callsites in dasdcopypairstore do not check the result, potentially resulting in a NULL pointer...
kernel: ext4: improve error handling from ext4_dirhash()
In the Linux kernel, the following vulnerability has been resolved: ext4: improve error handling from ext4dirhash The ext4dirhash will almost never fail, especially when the hash tree feature was first introduced. However, with the addition of support of encrypted, casefolded file names, that...
Will the "World Wide Web Publishing Service" be stopped during Storefront propagation
Will the "World Wide Web Publishing Service" be stopped while the StoreFront "Propagate Changes" is in progress?...
Denial Of Service (DoS)
libsolv.so is vulnerable to denial of service. An attacker can cause an application crash through the heap-overflow in the propagate function of solver.c...
TrickBot Malware Targeted Customers of 60 High-Profile Companies Since 2020
The notorious TrickBot malware is targeting customers of 60 financial and technology companies, including cryptocurrency firms, primarily located in the U.S., even as its operators have updated the botnet with new anti-analysis features. "TrickBot is a sophisticated and versatile malware with mor...
FalconEye - Real-time detection software for Windows process injections
FalconEye is a windows endpoint detection software for real-time process injections. It is a kernel-mode driver that aims to catch process injections as they are happening real-time. Since FalconEye runs in kernel mode, it provides a stronger and reliable defense against process injection...
SUSE SLES12 Security Update : samba (SUSE-SU-2021:1439-1)
This update for samba fixes the following issues : CVE-2021-20254: Fixed a buffer overrun in sidstounixids bsc1184677. Adjust smbcacls '--propagate-inheritance' feature to align with upstream bsc1178469. Note that Tenable Network Security has extracted the preceding description block directly fro...
Fake Netflix App on Google Play Spreads Malware Via WhatsApp
Malware disguised as a Netflix app, lurking on the Google Play store, spread through WhatsApp messages, researchers have discovered. According to a Check Point Research analysis released on Wednesday, the malware masqueraded as an app called “FlixOnline,” which advertised via WhatsApp messages...
Shopify: [h1-2102] Break permissions waterfall
Summary: Shopify Plus User permission roles will propagate changes to all the users in the role Its possible to break this If you pass FULL along with other Pemrissions into a user role edit It will propagate to the users and give them full access while the role shows partial access Steps To...
Smoking Guns - Smoke Loader learned new tricks
This post is authored by Ben Baker and Holger Unterbrink Overview Cisco Talos has been tracking a new version of Smoke Loader — a malicious application that can be used to load other malware — for the past several months following an alert from Cisco Advanced Malware Protection’s AMP Exploit...
RIG Exploit Kit Delivering Monero Miner Via PROPagate Injection Technique
Introduction Through FireEye Dynamic Threat Intelligence DTI, we observed RIG Exploit Kit EK delivering a dropper that leverages the PROPagate injection technique to inject code that downloads and executes a Monero miner similar activity has been reported by Trend Micro. Apart from leveraging a...
RIG Exploit Kit Delivering Monero Miner Via PROPagate Injection Technique
Introduction Through FireEye Dynamic Threat Intelligence DTI, we observed RIG Exploit Kit EK delivering a dropper that leverages the PROPagate injection technique to inject code that downloads and executes a Monero miner similar activity has been reported by Trend Micro. Apart from leveraging a...
Infection Monkey - An Automated Pentest Tool
The Infection Monkey is an open source security tool for testing a data center's resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self propagate across a data center and reports success to a centralized Monkey Island server. The Infection Monkey i...
How to Upgrade Receiver from StoreFront
Question: How to upgrade Receiver from StoreFront? Answer: 1. Go to C:\Program Files\Citrix\Receiver StoreFront\Receiver Clients\. Create a Windows folder if it doesn’t exist. 2. In the Windows folder, paste the Receiver for Windows with the version you want to set as the threshold, overwriting...
CVE-2017-3732
There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed...
EAP7 Privilege escalation when managing domain including earlier version slaves
The domain controller will not propagate its administrative RBAC configuration to some slaves. An attacker could use this to escalate their privileges...
SuSE 11.3 Security Update : Samba (SAT Patch Number 9010)
"The Samba fileserver suite was updated to fix bugs and security issues. The following security issue have been fixed : - No Password lockout or ratelimiting was enforced for SAMR password changes, making brute force guessing attacks possible. CVE-2013-4496. Also the following feature has been...
Chameleon Virus that Spreads Across WiFi Access Points like Common Cold
Do you know, A Computer viruses could go Airborne over WiFi networks? Security researchers at the University of Liverpool in Britain have demonstrated a WiFi virus that can spread between computer networks just like the 'common cold' spreads between Humans. They have created a proof-of-concept...
Here You Have Email Worm Detection
The remote Windows host has files present on the system that indicate that the 'Here You Have' email worm is present. A user of this host likely received an email containing a malicious '.scr' screen saver file and infected the host as a result of running this file. This malware has several...