110 matches found
CVE-2023-29485
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensitive information via DarkLayer Guard threat prevention module. NOTE: Heimdal disputes the validit...
CVE-2023-29487
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service DoS via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS...
CVE-2023-29486
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component. NOTE: Heimdal argues that the limitation described here is a...
Design/Logic Flaw
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component...
Design/Logic Flaw
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service DoS via the Threat To Process Correlation threat prevention module...
Design/Logic Flaw
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensitive information via DarkLayer Guard threat prevention module...
CVE-2023-29486
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component. Notes Author| Note ---|--- iconstantin | The heimdal package in...
CVE-2023-29487
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service DoS via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS...
CVE-2023-29485
CVE-2023-29485 affects Heimdal Thor agent: Windows 3.4.2 and earlier; macOS 2.6.9 and earlier. The issue allows bypassing network filtering, arbitrary code execution, and data exposure via the DarkLayer Guard threat prevention module. The vendor disputes the issue, arguing DNS traffic is filtered...
CVE-2023-29487
CVE-2023-29487 affects Heimdal Thor agent: Windows ≤3.4.2 and macOS ≤2.6.9. The root cause is the Threat To Process Correlation module lacking origin-process information in DNS logs, which is interpreted as a DoS. The documented impact is a denial of service, with no public exploit details provid...
CVE-2023-29485
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensitive information via DarkLayer Guard threat prevention module. NOTE: Heimdal disputes the validit...
CVE-2023-29487
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service DoS via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS...
CVE-2023-29486
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component. NOTE: Heimdal argues that the limitation described here is a...
Heimdal Access Control Error Vulnerability
Heimdal is a Kerberos implementation and security program from Heimdal open source. Heimdal suffers from an Access Control Error vulnerability that originates from allowing an attacker to bypass web filtering, execute arbitrary code, and obtain sensitive information via the DarkLayer Guard threat...
CVE-2023-29485
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensitive information via DarkLayer Guard threat prevention module. Notes Author| Note ---|---...
CVE-2023-29486
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component. NOTE: Heimdal argues that the limitation described here is a...
CVE-2023-29486
The CVE-2023-29486 entry concerns Heimdal Thor agent for Windows, affected in versions 3.4.2 and earlier than 3.7.0. The issue allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via the Next-Gen Antivirus component. Red Hat and Ubuntu ecos...
PT-2023-22277 · Heimdal · Heimdal Thor Agent
Name of the Vulnerable Software and Affected Versions: Heimdal Thor agent versions 3.4.2 and before on Windows Heimdal Thor agent versions 2.6.9 and before on macOS Description: An issue in the Heimdal Thor agent allows attackers to bypass network filtering, execute arbitrary code, and obtain...
Malicious code in data-mil-thor-ww1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8053d089451ed8507fbeeb5bab186384aa4650ed7d7b11facc30681356ae26ef Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Chinese Hackers Targeting Russian Military Personnel with Updated PlugX Malware
A China-linked government-sponsored threat actor observed striking European diplomatic entities in March may have been targeting Russian government officials with an updated version of a remote access trojan called PlugX. Secureworks attributed the attempted intrusions to a threat actor it tracks...