CVE-2019-13554

CVE-2019-13554 affects the GE Mark VIe Controller, where an unsecured Telnet protocol may allow an attacker to create an authenticated session using default credentials. The vulnerability is documented with concrete details: affected product and a root cause of unauthenticated Telnet access with ...

Moderate: Red Hat Security Advisory: python security update

An update for python is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impac...

[SECURITY] Fedora 32 Update: xmlrpc-3.1.3-24.fc32

Apache XML-RPC is a Java implementation of XML-RPC, a popular protocol that uses XML over HTTP to implement remote procedure calls...

SMBv3 Compression Buffer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMBv3 Compression Buffer Overflow', 'Description' = %q A vulnerability exists within the Microsoft Server Message Block 3.1.1 SMBv3 protocol that...

[SECURITY] Fedora 31 Update: telnet-0.17-78.fc31

Telnet is a popular protocol for logging into remote systems over the Internet. The package provides a command line Telnet client...

CVE-2020-11501

GnuTLS 3.6.x before 3.6.13 uses incorrect cryptography for DTLS. The earliest affected version is 3.6.3 2018-07-16 because of an error in a 2017-10-06 commit. The DTLS client always uses 32 '\0' bytes instead of a random value, and thus contributes no randomness to a DTLS negotiation. This breaks...

CVE-2020-11501

GnuTLS 3.6.x before 3.6.13 uses incorrect cryptography for DTLS. The earliest affected version is 3.6.3 2018-07-16 because of an error in a 2017-10-06 commit. The DTLS client always uses 32 '\0' bytes instead of a random value, and thus contributes no randomness to a DTLS negotiation. This breaks...

Fedora: Security Advisory for telnet (FEDORA-2020-11ea78ff8e)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

GLSA-202004-06 : GnuTLS: DTLS protocol regression

The remote host is affected by the vulnerability described in GLSA-202004-06 GnuTLS: DTLS protocol regression It was discovered that DTLS client did not contribute any randomness to the DTLS negotiation. Impact : Please review the referenced advisory for details. Workaround : There is no known...

GnuTLS: DTLS protocol regression

Background GnuTLS is an Open Source implementation of the TLS and SSL protocols. Description It was discovered that DTLS client did not contribute any randomness to the DTLS negotiation. Impact Please review the referenced advisory for details. Workaround There is no known workaround at this time...

GnuTLS -- flaw in DTLS protocol implementation

The GnuTLS project reports: It was found that GnuTLS 3.6.3 introduced a regression in the DTLS protocol implementation. This caused the DTLS client to not contribute any randomness to the DTLS negotiation breaking the security guarantees of the DTLS protocol...

rsync Service Detection (TCP)

TCP based detections of services supporting the rsync protocol. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Protecting gRPC applications and APIs

Wallarm has always stood out from its competitors when it comes to supporting modern stacks. For a long time Wallarm has been the only product to provide comprehensive protection for WebSockets-based web applications. Once again, Wallarm is glad to be the pioneer and add support for the gRPC...

[SECURITY] Fedora 32 Update: opensmtpd-6.6.4p1-2.fc32

OpenSMTPD is a FREE implementation of the server-side SMTP protocol as defi ned by RFC 5321, with some additional standard extensions. It allows ordinary machines to exchange e-mails with other systems speaking the SMTP protocol. Started out of dissatisfaction with other implementations, OpenSMTP...

CVE-2020-0796

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 SMBv3 protocol handles certain requests, aka 'Windows SMBv3 Client/Server Remote Code Execution Vulnerability'...

CVE-2020-0796

CVE-2020-0796 (SMBGhost) is a Windows SMBv3 Client/Server remote code execution vulnerability. The CIRCL sighting notes publicly available PoC activity and a Metasploit module trajectory, indicating a pre-auth RCE path via SMBv3 processing. References cited include PoC/exploit context for SMBGhos...

SMBGhost – Analysis of CVE-2020-0796

ARCHIVED STORY SMBGhost – Analysis of CVE-2020-0796 By Eoin Carrol - March 12, 2020 The Vulnerability The latest vulnerability in SMBv3 is a “wormable” vulnerability given its potential ability to replicate or spread over network shares using the latest version of the protocol SMB 3.1.1. As of...

Security Bulletin: A vulnerability in Samba affects IBM Spectrum Scale SMB protocol access method ( CVE-2019-14907)

Summary A Samba vulnerability affects IBM Spectrum Scale SMB protocol access method that could cause denial of service. A fix for this vulnerability is available. Vulnerability Details CVEID: CVE-2019-14907 DESCRIPTION: Samba is vulnerable to a denial of service, caused by an error after a failed...

CVE-2020-3182

Cisco Webex Meetings Client for MacOS is affected by an information-disclosure vulnerability in the mDNS configuration. An unauthenticated adjacent attacker can exploit this by issuing an mDNS query for a specific service to obtain device information from affected Webex clients. The issue is docu...

Apache JServ Protocol (AJP) Public WAN (Internet) / Public LAN Accessible (TCP)

The script checks if the target host is running a service supporting the Apache JServ Protocol AJP accessible from a public WAN Internet / public LAN. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respecti...