Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-4533

Malware in sbrugna...

5CVSS9AI score0.01834EPSS
Exploits0References8
OSV
OSV
added 2024/03/06 11:5 a.m.18 views

BIT-SPARK-2021-38296 Apache Spark Key Negotiation Vulnerability

Apache Spark supports end-to-end encryption of RPC connections via "spark.authenticate" and "spark.network.crypto.enabled". In versions 3.1.2 and earlier, it uses a bespoke mutual authentication protocol that allows for full encryption key recovery. After an initial interactive attack, this would...

7.5CVSS7.7AI score0.01817EPSS
Exploits0References3
Prion
Prion
added 2022/03/10 9:15 a.m.17 views

Authentication flaw

Apache Spark supports end-to-end encryption of RPC connections via "spark.authenticate" and "spark.network.crypto.enabled". In versions 3.1.2 and earlier, it uses a bespoke mutual authentication protocol that allows for full encryption key recovery. After an initial interactive attack, this would...

5CVSS8.2AI score0.01817EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2022/03/10 8:20 a.m.34 views

CVE-2021-38296 Apache Spark Key Negotiation Vulnerability

Apache Spark supports end-to-end encryption of RPC connections via "spark.authenticate" and "spark.network.crypto.enabled". In versions 3.1.2 and earlier, it uses a bespoke mutual authentication protocol that allows for full encryption key recovery. After an initial interactive attack, this would...

8.1AI score0.01817EPSS
Exploits0References2
0day.today
0day.today
added 2020/05/16 12:0 a.m.81 views

Microsoft Windows Task Scheduler Security Feature Bypass Vulnerability

Compass Security identified a security feature bypass vulnerability in Microsoft Windows. Due to the absence of integrity verification requirements for the RPC protocol and in particular the Task Scheduler, a man-in-the-middle attacker can relay his victim's NTLM authentication to a target of his...

9.3CVSS7.9AI score0.07277EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2016/08/18 12:0 a.m.33 views

Amazon Linux AMI : samba (ALAS-2016-732)

A flaw was found in the way Samba initiated signed DCE/RPC connections. A man-in-the-middle attacker could use this flaw to downgrade the connection to not use signing and therefore impersonate the server. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...

7.5CVSS7.1AI score0.03097EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/08/02 12:0 a.m.25 views

CentOS Update for samba4 CESA-2016:1487 centos6

Check the version of samba4 SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882525";...

7.5CVSS7.6AI score0.03097EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/07/27 12:0 a.m.34 views

CentOS 6 : samba4 (CESA-2016:1487)

An update for samba4 is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7.2AI score0.03097EPSS
Exploits0References2
CVE
CVE
added 2002/03/09 5:0 a.m.56 views

CVE-1999-1127

CVE-1999-1127 affects Windows NT 4.0. The vulnerability stems from improper handling of invalid named pipe RPC connections, leading to resource exhaustion and a denial of service when a remote attacker establishes a sequence of connections sending malformed data. The issue is tied to the shutdown...

7.5CVSS7AI score0.17745EPSS
Exploits0References3Affected Software1
NVD
NVD
added 1999/12/31 5:0 a.m.18 views

CVE-1999-1127

Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows remote attackers to cause a denial of service resource exhaustion via a series of connections containing malformed data, aka the "Named Pipes Over RPC" vulnerability...

7.5CVSS7.4AI score0.17745EPSS
Exploits0References3
Rows per page
Query Builder