118 matches found
EUVD-2018-17259
Malware in sbrugna...
EUVD-2024-40717
Malicious code in bioql PyPI...
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft
This is a proof-of-concept PoC exploit for CVE-2020-0796, also known as SMBGhost, a pre-authentication remote code execution vulnerability in the SMBv3 server of Windows operating systems. The exploit is written in Python and uses the SMB protocol to exploit the vulnerability. The exploit targets...
CVE-2020-1206
An information disclosure vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 SMBv3 protocol handles certain requests, aka 'Windows SMBv3 Client/Server Information Disclosure Vulnerability'...
CVE-2020-1284
A denial of service vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 SMBv3 protocol handles certain requests, aka 'Windows SMBv3 Client/Server Denial of Service Vulnerability'...
CVE-2024-43447
Windows SMBv3 Server Remote Code Execution Vulnerability...
CVE-2024-43447
Windows SMBv3 Server Remote Code Execution Vulnerability...
CVE-2024-43447
CVE-2024-43447 is identified in Windows SMBv3 Server/Client as a remote code execution vulnerability. Connected sources corroborate a Windows SMBv3-related issue with impact listed as executing arbitrary code, affecting SMBv3 Server/Client components. The NCSC advisory consolidates Windows-wide f...
CVE-2024-43447 Windows SMBv3 Server Remote Code Execution Vulnerability
...
CVE-2024-43447 Windows SMBv3 Server Remote Code Execution Vulnerability
...
Windows SMBv3 Server Remote Code Execution Vulnerability
...
CVE-2024-35999
In the Linux kernel, the following vulnerability has been resolved: smb3: missing lock when picking channel Coverity spotted a place where we should have been holding the channel lock when accessing the ses channel index. Addresses-Coverity: 1582039 "Data race condition MISSINGLOCK"...
CVE-2022-32230
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death BSOD crash of the Windows kernel. For most...
Null pointer dereference
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death BSOD crash of the Windows kernel. For most...
CVE-2022-32230 SMBv3 FileNormalizedNameInformation NULL Pointer Dereference
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death BSOD crash of the Windows kernel. For most...
CVE-2022-32230
CVE-2022-32230 affects Microsoft Windows SMBv3 prior to the April 2022 patch set. A malformed FileNormalizedNameInformation SMBv3 request sent over a named pipe can trigger a null pointer dereference in the Windows kernel, resulting in a Blue Screen of Death (BSOD) and reboot of the SMBv3 server....
EUVD-2022-53430
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death BSOD crash of the Windows kernel. For most...
Microsoft Patch Tuesday March 2022
Hello everyone! I am glad to greet you from the most sanctioned country in the world. Despite all the difficulties, we carry on. I even have some time to release new episodes. This time it will be about Microsoft Patch Tuesday for March 2022. Alternative video link for Russia: I do the analysis a...
Microsoft Patch Tuesday, March 2022 Edition
Microsoft on Tuesday released software updates to plug at least 70 security holes in its Windows operating systems and related software. For the second month running, there are no scary zero-day threats looming for Windows users, and relatively few "critical" fixes. And yet we know from experienc...
Critical Security Patches Issued by Microsoft, Adobe and Other Major Software Firms
Microsoft's Patch Tuesday update for the month of March has been made officially available with 71 fixes spanning across its software products such as Windows, Office, Exchange, and Defender, among others. Of the total 71 patches, three are rated Critical and 68 are rated Important in severity...