Lucene search
K

135 matches found

OpenVAS
OpenVAS
added 2013/02/28 12:0 a.m.221 views

Nmap NSE 6.01: socks-open-proxy

Checks if an open socks proxy is running on the target. The script attempts to connect to a proxy server and send socks4 and socks5 payloads. It is considered an open proxy if the script receives a Request Granted response from the target port. The payloads try to open a connection to...

7.2AI score
Exploits0
ThreatPost
ThreatPost
added 2012/12/11 7:26 p.m.14 views

Tor-Powered Botnet Linked to Malware Coder's AMA on Reddit

In the process of analyzing a seemingly new and fairly small botnet called Skynet, Rapid7 security researchers determined that this was precisely the same network described by its creator in a particularly bold ‘Ask Me Anything’ AMA on the social news site Reddit earlier this year. Claudio...

7.4AI score
Exploits0References2
Nmap
Nmap
added 2012/01/02 11:34 a.m.247 views

socks-auth-info NSE Script

Determines the supported authentication mechanisms of a remote SOCKS proxy server. Starting with SOCKS version 5 socks servers may support authentication. The script checks for the following authentication types: 0 - No authentication 1 - GSSAPI 2 - Username and password Example Usage nmap -p 108...

10CVSS0.4AI score0.99448EPSS
Exploits33
NVD
NVD
added 2011/12/23 3:59 a.m.21 views

CVE-2011-2778

Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code by 1 establishing a SOCKS connection to SocksPort or 2 leveraging a SOCKS proxy configuration...

7.6CVSS8AI score0.03823EPSS
Exploits0References2
Prion
Prion
added 2011/12/23 3:59 a.m.16 views

Heap overflow

Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code by 1 establishing a SOCKS connection to SocksPort or 2 leveraging a SOCKS proxy configuration...

7.6CVSS8.6AI score0.03823EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2011/12/23 2:0 a.m.71 views

CVE-2011-2778

Tor vulnerability CVE-2011-2778 involves a heap-based buffer overflow in or/buffers.c that could allow remote code execution or memory corruption when using SocksPort or SOCKS proxy configuration. Affected product: Tor. Impact: remote attacker may cause memory corruption or execute arbitrary code...

7.6CVSS8AI score0.03823EPSS
Exploits0References2Affected Software1
The Hacker News
The Hacker News
added 2011/09/22 1:8 a.m.4 views

Aldi Bot - Buy a Botnet just in 10 Euros

Aldi Bot - Buy a Botnet just in 10 Euros Researchers of German security firm G Data have discovered that a bot builder dubbed "Aldi Bot" is currently being offered for that much on underground forums. The Aldi Bot Builder appears to be based on the ZeuS source code. The malware has nothing to do...

7.4AI score
Exploits0
Fedora
Fedora
added 2011/06/07 4:41 a.m.30 views

[SECURITY] Fedora 14 Update: tor-0.2.1.30-1400.fc14

Tor is a connection-based low-latency anonymous communication system. Applications connect to the local Tor proxy using the SOCKS protocol. The local proxy chooses a path through a set of relays, in which each relay knows its predecessor and successor, but no others. Traffic flowing down the...

6.8CVSS3.4AI score0.04444EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/01/20 12:0 a.m.34 views

Nmap NSE: Socks Open Proxy

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/03/17 12:38 p.m.4 views

Mozilla data corruption with SOCKS5 reply

Mozilla Firefox before 3.0.12, and 3.5.x before 3.5.2, allows remote SOCKS5 proxy servers to cause a denial of service data stream corruption via a long domain name in a reply...

5CVSS7.4AI score0.01991EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/01/14 4:32 p.m.5 views

OpenJDK Proxy mechanism information leaks (6801071)

The SOCKS proxy implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted 1 applet or 2 Java Web Start application via unspecified vectors...

5CVSS6.2AI score0.04326EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/11/12 6:15 p.m.3 views

OpenJDK Proxy mechanism information leaks (6801071)

The SOCKS proxy implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted 1 applet or 2 Java Web Start application via unspecified vectors...

5CVSS6.2AI score0.04326EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2009/11/05 12:0 a.m.33 views

SuSE 11 Security Update : IBM Java 1.6.0 (SAT Patch Number 1497)

The IBM Java 6 JRE/SDK was updated to Service Release 6, fixing various bugs and security issues. The following security issues were fixed : - A security vulnerability in the JNLPAppletLauncher might impact users of the Sun JDK and JRE. Non-current versions of the JNLPAppletLauncher might be...

10CVSS6.9AI score0.43389EPSS
Exploits5References21
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.33 views

SuSE 11 Security Update : Sun Java 1.6.0 (SAT Patch Number 1163)

The Sun Java JRE /JDK 6 was updated to Update 15 fixing various security issues. - The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted applets and 2 Java...

10CVSS6AI score0.0639EPSS
Exploits2References19
RedHat Linux
RedHat Linux
added 2009/08/28 8:57 a.m.3 views

OpenJDK Proxy mechanism information leaks (6801071)

The SOCKS proxy implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted 1 applet or 2 Java Web Start application via unspecified vectors...

5CVSS6.2AI score0.04326EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2009/08/24 12:0 a.m.45 views

Mandriva Linux Security Advisory : java-1.6.0-openjdk (MDVSA-2009:209)

Multiple Java OpenJDK security vulnerabilities has been identified and fixed : The design of the W3C XML Signature Syntax and Processing XMLDsig recommendation specifies an HMAC truncation length HMACOutputLength but does not require a minimum for its length, which allows attackers to spoof...

10CVSS7AI score0.3038EPSS
Exploits3References12
Tenable Nessus
Tenable Nessus
added 2009/08/10 12:0 a.m.33 views

openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-1161)

The Sun Java JRE /JDK 6 was updated to Update 15 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted apple...

10CVSS5.9AI score0.0639EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2009/08/10 12:0 a.m.32 views

openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-1161)

The Sun Java JRE /JDK 6 was updated to Update 15 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by 1 untrusted apple...

10CVSS5.9AI score0.0639EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2009/08/06 9:14 p.m.4 views

OpenJDK Proxy mechanism information leaks (6801071)

The SOCKS proxy implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted 1 applet or 2 Java Web Start application via unspecified vectors...

5CVSS6.2AI score0.04326EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/08/06 8:41 p.m.6 views

OpenJDK Proxy mechanism information leaks (6801071)

The SOCKS proxy implementation in Sun Java Runtime Environment JRE in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted 1 applet or 2 Java Web Start application via unspecified vectors...

5CVSS6.2AI score0.04326EPSS
Exploits0References4
Rows per page
Query Builder