259 matches found
Important: Red Hat Security Advisory: wpa_supplicant security update
An update for wpasupplicant is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
Important: wpa_supplicant security update
The wpasupplicant packages contain an 802.1X Supplicant with support for WEP, WPA, WPA2 IEEE 802.11i / RSN, and various EAP authentication methods. They implement key negotiation with a WPA Authenticator for client stations and controls the roaming and IEEE 802.11 authentication and association o...
[SECURITY] Fedora 32 Update: wpa_supplicant-2.9-6.fc32
wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...
[SECURITY] Fedora 33 Update: wpa_supplicant-2.9-8.fc33
wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...
[SECURITY] Fedora 33 Update: wpa_supplicant-2.9-7.fc33
wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...
CVE-2019-16000
A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted device. The vulnerability is due to insufficient verification of the Windows Installer. An attacker...
CVE-2019-16000 Cisco Umbrella Roaming Client for Windows Install Vulnerability
A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted device. The vulnerability is due to insufficient verification of the Windows Installer. An attacker...
CVE-2019-16000
CVE-2019-16000 affects the Cisco Umbrella Roaming Client for Windows. The issue is in the automatic update process where Windows Installer verification is insufficient, allowing an authenticated, local attacker to place a file in a specific location and bypass policy to install unapproved applica...
CVE-2019-16000 Cisco Umbrella Roaming Client for Windows Install Vulnerability
A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted device. The vulnerability is due to insufficient verification of the Windows Installer. An attacker...
FakeSpy Android Malware Spread Via ‘Postal-Service’ Apps
Android mobile device users are being targeted in a new SMS phishing campaign that’s spreading the FakeSpy infostealer. The malware, which is disguised as legitimate global postal-service apps, steals SMS messages, financial data and more from the victims’ devices. The campaign was first discover...
IT threat evolution Q1 2020
Targeted attacks and malware campaigns Operation AppleJeus: the sequel In 2018, we published a report on Operation AppleJeus, one of the more notable campaigns of the threat actor Lazarus, currently one of the most active and prolific APT groups. One notable feature of this campaign was that it...
Citrix WEM 1903 - Roaming folder files are deleted by VUEMUIAgent.exe on logon
Users noticed that the icons in the task bar went white. This was due to a lot of folders and files were deleted in the User Profiles Example Appdata\Roaming\Adobe\Acrobat\2017\ Appdata\Roaming\Google\Chrome\ Appdata\Roaming\Macromedia\Flash Player\ Appdata\Roaming\Microsoft\Credentials...
Neowise CarbonFTP 1.4 - Insecure Proprietary Password Encryption Exploit
Title: Neowise CarbonFTP 1.4 - Insecure Proprietary Password Encryption Author: hyp3rlinx Vendor: CVE: CVE-2020-6857 import time, string, sys, argparse, os, codecs Fixed: updated for Python 3, the hex decode function was not working in Python 3 version. This should be compatible for Python 2 and ...
Delay occurs when you log on to a domain from a computer that is running Windows 7 or Windows Server 2008 R2
Delay occurs when you log on to a domain from a computer that is running Windows 7 or Windows Server 2008 R2 Symptoms Consider the following scenario: You have a roaming user profile or remote home directory on a client computer that is running Windows 7 or Windows Server 2008 R2 in an Active...
March 17, 2020—KB4541333 (OS Build 17134.1399)
None None...
CVE-2019-10546
Buffer overflow can occur in WLAN firmware while parsing beacon/proberesponse frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wire...
Buffer overflow
Buffer overflow can occur in WLAN firmware while parsing beacon/proberesponse frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wire...
CVE-2019-10546
Buffer overflow can occur in WLAN firmware while parsing beacon/proberesponse frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wire...
Roaming Mantis, part V
Kaspersky has continued to track the Roaming Mantis campaign. The group's attack methods have improved and new targets continuously added in order to steal more funds. The attackers' focus has also shifted to techniques that avoid tracking and research: whitelist for distribution, analysis...
The vulnerability of the automatic update function of the security service for Umbrella Roaming Client for Windows allows a hacker to install arbitrary applications on the target device.
The vulnerability of the automatic update function for the Umbrella Roaming Client security service for Windows devices relates to insufficient data authentication checks. Exploiting this vulnerability could allow attackers to install arbitrary applications on target devices...