Hitachi Energy's RTU500 series Unrestricted Upload of File with Dangerous Type (CVE-2024-1532)

A vulnerability exists in the stb-language file handling that affects the RTU500 series product versions listed below. A malicious actor could enforce diagnostic texts being displayed as empty strings, if an authorized user uploads a specially crafted stb-language file. This plugin only works wit...

LodaRAT Malware Resurfaces with New Variants Employing Updated Functionalities

The LodaRAT malware has resurfaced with new variants that are being deployed in conjunction with other sophisticated malware, such as RedLine Stealer and Neshta. "The ease of access to its source code makes LodaRAT an attractive tool for any threat actor who is interested in its capabilities,"...

Hitachi Energy MSM Product

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: MSM Product Vulnerability: Reliance on Uncontrolled Component 2. RISK EVALUATION Successful exploitation of this vulnerability could disrupt the functionality of the MSM web...

kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c

A flaw was found in the Linux kernel's ext4unlink function. An attacker could corrupt memory or escalate privileges when deleting a file from a recently unmounted specially crafted ext4 filesystem, including local, USB, and iSCSI...

Meet ‘TajMahal,’ A New and Highly Advanced APT Framework

SINGAPORE – Researchers at Kaspersky Lab have discovered a new, highly sophisticated advanced persistent threat APT framework targeting a single Central Asian diplomatic agency. Malware samples associated with the APT reveal a complex never-before-seen code base, making it extremely hard to detec...

Microsoft Windows: Audit Removable Storage

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winremovablestorage.nasl 11068 2018-08-21 11:51:41Z emoss $ Check value for Audit Removable Storage Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

Microsoft Windows: WPD Devices: Deny write access

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winwpddenywriteaccess.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for WPD Devices: Deny write access Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program ...

Microsoft Windows: CD and DVD: Deny execute access

This test checks the setting for policy OpenVAS Vulnerability Test $Id: wincddvddenyexecuteaccess.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for CD and DVD: Deny execute access Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This...

Microsoft Windows: CD and DVD: Deny write access

This test checks the setting for policy OpenVAS Vulnerability Test $Id: wincddvddenywriteaccess.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for CD and DVD: Deny write access Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program...

Microsoft Windows: All Removable Storage classes: Deny all access

This test checks the setting for policy OpenVAS Vulnerability Test $Id: windenyallaccessremovablestorage.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for All Removable Storage classes: Deny all access Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH,...

USB Pratirodh XML External Entity Injection Vulnerability

USB Pratirodh is a free security tool from C-DAC to control the use of removable USB storage media. USB Pratirodh suffers from an XML external entity injection vulnerability. An attacker could exploit the vulnerability to obtain sensitive information or launch a denial of service attack...

Warning! This Cross-Platform Malware Can Hack Windows, Linux and OS X Computers

Unlike specially crafted malware specifically developed to take advantage of Windows operating system platform, cyber attackers have started creating cross-platform malware for wider exploitation. Due to the rise in popularity of Mac OS X and other Windows desktop alternatives, hackers have begun...

NSA's Reactive Security Measures Too Late to Stop Snowden

The National Security Agency, as it turns out, is just as reactive when it comes to information security as 99 percent of the enterprises out there. America’s top spy agency gives out too much privileged access to employees and contractors, allows removable storage devices in sensitive areas, and...

Removable Storage access on remote sessions - Windows

The script Read Status of: Policy All Removable Storage: Allow direct access in remote sessions. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

Code injection

Microsoft Windows does not properly enforce the Autorun and NoDriveTypeAutoRun registry values, which allows physically proximate attackers to execute arbitrary code by 1 inserting CD-ROM media, 2 inserting DVD media, 3 connecting a USB device, and 4 connecting a Firewire device; 5 allows...

Motorola Good Mobile Messaging insecure file deletion

Overview When formating removable storage cards, Motorola Good Mobile Messaging products may not properly delete old data. Description Motorola Good Mobile Messaging products can create encrypted containers on removable media storage cards. During the process of creating the container old...