EUVD-1999-0408

Malware in sbrugna...

Vulnerabilities fixed in Schneider Electric Saitel

Schneider Electric has fixed vulnerabilities in Saitel components. The vulnerabilities are in how the BLMon Console handles special elements in operating system commands during SSH sessions. A malicious party could exploit these vulnerabilities to execute unauthorized shell commands, which could...

CVE-1999-0408

Files created from interactive shell sessions in Cobalt RaQ microservers e.g. .bashhistory are world readable, and thus are accessible from the web server...

Cisco UCS Manager 资源管理错误漏洞

A denial-of-service vulnerability exists in the way Cisco UCS Manager handles SSH sessions, which can be exploited by an attacker to open a large number of SSH sessions to cause the internal Cisco UCS Manager software process to crash and restart...

Metasploit Wrap-Up

Nagios modules Community member Erik Wynter has contributed two more Nagios XI modules this week, on top of the previous week’s contributions! If you’ve noticed Nagios XI 5.6.0 to 5.7.5 running within your target’s infrastructure during a pen test, be sure to check both these new modules out as...

Metasploit Framework 3.7.0 Released !

Metasploit Framework 3.7.0 Released ! The Metasploit team has spent the last two months focused on one of the least-visible, but most important pieces of the Metasploit Framework; the session backend. Metasploit 3.7 represents a complete overhaul of how sessions are tracked within the framework a...