OpenSSH 安全漏洞

OpenSSH OpenBSD Secure Shell is a set of open-source tools developed by OpenBSD in Canada for secure access to remote computers. This tool is an open-source implementation of the SSH protocol, supporting encryption of all transmissions. It effectively prevents eavesdropping, connection hijacking,...

EUVD-2000-1119

Malware in sbrugna...

AvosLocker Ransomware group has targeted 50+ Organizations Worldwide

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here Federal Bureau of Investigation and Cybersecurity and Infrastructure Security Agency released threat advisories on AvosLocker Ransomware. It is a Ransomware as a Service RaaS affiliate-based group that has targeted 50+...

Rocket.Chat: Insecure use of shell.openExternal() in Rocket.Chat Desktop App leading to RCE

Summary: The Rocket.Chat Desktop app passes the links users click on to Electron's shell.openExternal function which can lead to remote code execution. Description: The filtering on the URLs passed to shell.openExternal is insufficient. An attacker can craft and send a link that when clicked will...

EUVD-2019-13102

Insufficient sanitization of arguments passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the SSH package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

New Twist On The Old PHF Vulnerability

!/usr/bin/perl greets to josh arielle matt carley use WWW::Mechanize; if scalar@ARGV newtimeout = 3; print "Connecting...\n"; print "Checking if exploitable...\n"; $scrape-get"http://@ARGV0/cgi-bin/phf?Qalias=%0Auname%20-a"; $unamea = $scrape-content; @unameafeed = split/\n/, $unamea; for...

MS08-075: Vulnerabilities in Windows Search Could Allow Remote Code Execution (959349)

The remote version of Windows contains a version of the Windows Shell that contains a vulnerability in the way it handles saved seaches. An attacker might use this flaw to trick an administrator to execute a saved search and therefore execute arbitrary commands on his behalf. C Tenable Network...

Microsoft Windows Shell multiple vulnerabilities

Problems with .lnk files processing, HTML files preview...

FW: [Unpatched] Shell and Drag'n'Drop vulnerabilities

This is a post forwarded from the Unpatched mailing list http://www.pivx.com/pivxlabsUnpatched.asp , a mailing list that receive advance notification of any security research from PivX Labs. Cheers Thor From: Thor Larholm To: [email protected] Subject: Unpatched Shell and Drag'n'Drop...

Generic Shell Detection (HP JetDirect)

Binary data 1931.prm...

Generic Shell Detection (Windows NT Telnet)

Binary data 1933.prm...

DSA-241 kdeutils - several vulnerabilities

Bulletin has no description...