Linux Distros Unpatched Vulnerability : CVE-2017-15407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds Write in the QUIC networking stack in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to gain code execution via a malicious server...

Store Configuration by Server Based Discovery Fails

When attempting to configure Receiver Stores by entering in address of StoreFront server in Email/Server Based Discovery dialog, the following error appears: "Your account cannot be added using this server address. Make sure you entered it correctly. You may need to enter your email address...

Daimler Truck: Server-based source code disclosures

URL: https://www.bharatbenz.com/TEST.PHP CWE: CWE-538 CVSS: 7.5-CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N One or more pages disclosing source code were found. This check is using pattern matching to determine if server side tags are found in the file. In some cases this alert may generate fals...

State-Sponsored Sidewinder Hacker Group's Covert Attack Infrastructure Uncovered

Cybersecurity researchers have unearthed previously undocumented attack infrastructure used by the prolific state-sponsored group SideWinder to strike entities located in Pakistan and China. This comprises a network of 55 domains and IP addresses used by the threat actor, cybersecurity companies...

State-Sponsored Sidewinder Hacker Group's Covert Attack Infrastructure Uncovered

Cybersecurity researchers have unearthed previously undocumented attack infrastructure used by the prolific state-sponsored group SideWinder to strike entities located in Pakistan and China. This comprises a network of 55 domains and IP addresses used by the threat actor, cybersecurity companies...

Researchers Uncover SideWinder's Latest Server-Based Polymorphism Technique

The advanced persistent threat APT actor known as SideWinder has been accused of deploying a backdoor in attacks directed against Pakistan government organizations as part of a campaign that commenced in late November 2022. "In this campaign, the SideWinder advanced persistent threat APT group us...

Researchers Uncover SideWinder's Latest Server-Based Polymorphism Technique

The advanced persistent threat APT actor known as SideWinder has been accused of deploying a backdoor in attacks directed against Pakistan government organizations as part of a campaign that commenced in late November 2022. "In this campaign, the SideWinder advanced persistent threat APT group us...

CVE-2021-45036

Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server...

Emerson Xweb-500 授权问题漏洞

Emerson Xweb-500 is a data logging and remote monitoring system based on Web server technology from Emerson Electric Company USA. An authorization issue vulnerability exists in Emerson Xweb-500 that arises from the Emerson Dixell XWEB-500 product being affected by /cgi-bin/logoextraupload.cgi,...

[SECURITY] Fedora 34 Update: spamassassin-3.4.5-1.fc34

SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email SPAM from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring...

DaviewIndy Memory Misreference Vulnerability

DaViewIndy is a server-based viewer software. A security vulnerability exists in DaviewIndy 8.98.7 and earlier versions. An attacker can exploit the vulnerability to execute arbitrary code via specially crafted files...

Arbitrary File Read Vulnerability in Pleasure Print RiTrac

Enjoy Print RiTrac is a server-based, entry-level smart office copy solution. An arbitrary file read vulnerability exists in Enjoy Print RiTrac. An attacker can exploit the vulnerability to obtain sensitive information...

Digital Arts i-FILTER Code Execution Vulnerability

Digital Arts i-FILTER is a server-based Web filtering software from Digital Arts Japan. The software is mainly used to monitor Web access and protect outbound and inbound traffic. A security vulnerability exists in Digital Arts i-FILTER 9.50R05 and earlier versions. An attacker can exploit the...

DATAC RealWin <= 2.0 (Build 6.1.8.10) Buffer Overflow Vulnerabilities

No description provided by source. Source: http://aluigi.org/adv/realwin1-adv.txt Luigi Auriemma Application: DATAC RealWin http://www.dataconline.com/software/realwin.php http://www.realflex.com Versions: = 2.0 Build 6.1.8.10 Platforms: Windows Bugs: A stack overflow in SCPCINITIALIZE and...

Sparx Systems Enterprise Architect 9.3.931 Corporate Password Disclosure

Subject ======= Simple password obfuscation in Sparx Systems "Enterprise Architect" when using server based repositories Affected product ================ Product: Enterprise Architect Vendor: Sparx Systems Affected versions ================= Tested with 9.3.931 Corporate, other versions likely t...

IT-Grundschutz M5.037: Einschraenken der Peer-to-Peer-Funktionalitaeten in einem servergestuetzten Netz - Windows

IT-Grundschutz M5.037: Einschraenken der Peer-to-Peer-Funktionalitaeten in einem servergestuetzten Netz Windows. ACHTUNG: Dieser Test wird nicht mehr unterstuetzt. Er wurde zudem in neueren EL gestrichen. Diese Pruefung bezieht sich auf die 10. Ergaenzungslieferung 10. EL des IT- Grundschutz. Die...

Skulltag &lt;= 0.96f (Version String) Remote Format String PoC

No description provided by source. Luigi Auriemma Application: Skulltag http://www.skulltag.com Versions: = 0.96f Platforms: Windows Bug: format string Exploitation: remote, versus server Date: 23 Apr 2006 Author: Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org Backu...